[jboss-user] [JBoss Web Services] - Re: WS-Security - Invalid timestamp, message claimed to be c

Himaja Thovi do-not-reply at jboss.com
Mon Feb 7 05:24:08 EST 2011


Himaja Thovi [http://community.jboss.org/people/t.himaja] created the discussion

"Re: WS-Security - Invalid timestamp, message claimed to be c"

To view the discussion, visit: http://community.jboss.org/message/585873#585873

--------------------------------------------------------------
we tried with just adding timestamp configurations in jboss-wsse-server.xml and jboss-wsse-client.xml file.

jboss-wsse-client.xml

<jboss-ws-security
 xmlns="http://www.jboss.com/ws-security/config"
 xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 xsi:schemaLocation="http://www.jboss.com/ws-security/config
 http://www.jboss.com/ws-security/schema/jboss-ws-security_1_0.xsd">
  <key-store-file>META-INF/client.keystore</key-store-file>
  <key-store-type>jks</key-store-type>
  <key-store-password>client</key-store-password>
  <trust-store-file>META-INF/client.truststore</trust-store-file>
  <trust-store-type>jks</trust-store-type>
  <trust-store-password>client</trust-store-password>
  <timestamp-verification createdTolerance="20" warnCreated="true" expiresTolerance="20" warnExpires="true" />
    <config>
     <encrypt type="x509v3" alias="gaurav"/>
     <sign type="x509v3" alias="client" includeTimestamp="true"/>
     <timestamp ttl="1500"/>
   <requires>
    <encryption/>
   <signature />
   </requires>
  </config>
</jboss-ws-security>




jboss-wsse-server.xml


<jboss-ws-security
 xmlns="http://www.jboss.com/ws-security/config"
 xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
 xsi:schemaLocation="http://www.jboss.com/ws-security/config
http://www.jboss.com/ws-security/schema/jboss-ws-security_1_0.xsd">
 <timestamp-verification createdTolerance="20" warnCreated="true" expiresTolerance="10" warnExpires="true" />
 <key-store-file>META-INF/server.keystore</key-store-file>
 <key-store-type>jks</key-store-type>
 <key-store-password>server</key-store-password>
 <trust-store-file>META-INF/server.truststore</trust-store-file>
 <trust-store-type>jks</trust-store-type>
 <trust-store-password>server</trust-store-password>
 <config>
   <sign type="x509v3" alias="gaurav" includeTimestamp="true" />
   <encrypt type="x509v3" />
   <timestamp ttl="1500"/>
   <requires>
       <signature />
    <encryption />
   </requires>
 </config>
</jboss-ws-security>



but had no change...
N even doubt that its taking effect(not read).
--------------------------------------------------------------

Reply to this message by going to Community
[http://community.jboss.org/message/585873#585873]

Start a new discussion in JBoss Web Services at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2044]

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-user/attachments/20110207/66523857/attachment.html 


More information about the jboss-user mailing list