You are viewing a plain text version of this content. The canonical link for it is here.

Posted to rampart-dev@ws.apache.org by Ruchith Fernando <ru...@apache.org> on 2007/12/05 05:43:51 UTC

Re: Missing wsse:Security header in request

Can you please explain how your service is secured? i.e. What security
operations are you enforcing?

Thanks,
Ruchith

Rajesh, Peter (CLAIMS, WIP) wrote:
> 
> Hi,
> 
> Attached is the soap request & response captured in tcpmon when the
> webservice deployed in Weblogic is contacted using Axis2 java client.
> But in the command prompt in the client side below exception is thrown.
> 
> Please advice what I am doing wrong. Even though security header is
> available in request I couldn't identify the reason for this exception
> thrown.
> 
> 
>  [java]* org.apache.axis2.AxisFault: Missing wsse:Security header in
> request*
>  [java]     at
> org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:92)
>  [java]     at org.apache.axis2.engine.Phase.invoke(Phase.java:292)
>  [java]     at
> org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:212)
>  [java]     at
> org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:132)
>  [java]     at
> org.apache.axis2.description.OutInAxisOperationClient.handleResponse(OutInAxisOperation.java:336)
> 
>  [java]     at
> org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisOperation.java:389)
> 
>  [java]     at
> org.apache.axis2.description.OutInAxisOperationClient.executeImpl(OutInAxisOperation.java:211)
> 
>  [java]     at
> org.apache.axis2.client.OperationClient.execute(OperationClient.java:163)
>  [java]     at
> org.apache.axis2.client.ServiceClient.sendReceive(ServiceClient.java:528)
>  [java]     at
> org.apache.axis2.client.ServiceClient.sendReceive(ServiceClient.java:508)
>  [java]     at
> org.apache.rampart.weblogic.sample.Client.main(Client.java:82)
>  [java] Caused by: org.apache.rampart.RampartException: Missing
> wsse:Security header in request
>  [java]     at
> org.apache.rampart.RampartEngine.process(RampartEngine.java:106)
>  [java]     at
> org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:85)
>  [java]     ... 10 more
>  [java] Exception in thread "main"
>  [java] Java Result: 1
> 
> 
> 
> <<soap-request-response-30Nov07.txt>>
> 
> 
> Thanks & Regards,
> 
> Peter Rajesh
> 
> 
> 
> *************************************************************************
> This communication, including attachments, is
> for the exclusive use of addressee and may contain proprietary,
> confidential and/or privileged information. If you are not the intended
> recipient, any use, copying, disclosure, dissemination or distribution is
> strictly prohibited. If you are not the intended recipient, please notify
> the sender immediately by return e-mail, delete this communication and
> destroy all copies.
> *************************************************************************
>

RE: Missing wsse:Security header in request

Posted by "Rajesh, Peter (CLAIMS, WIP)" <Pe...@thehartford.com>.

 
Sorry, attached the file.



Thanks & Regards,

Peter Rajesh | 860-547-3881

-----Original Message-----
From: Rajesh, Peter (CLAIMS, WIP) 
Sent: Wednesday, December 05, 2007 2:46 PM
To: 'rampart-dev@ws.apache.org'
Subject: RE: Missing wsse:Security header in request

Hi All,

I am using Axis2-1.3 and Rampart 1.3. We use digital certificates to
encrypt and decrypt messages.
 
Attached the zip file contains the services.xml from the webservice and
Policy.xml used in the Axis2 java client side.

Please let me know if more information is needed.


Thanks & Regards,

Peter Rajesh 

-----Original Message-----
From: Ruchith Fernando [mailto:ruchithf@apache.org]
Sent: Tuesday, December 04, 2007 11:44 PM
To: rampart-dev@ws.apache.org
Subject: Re: Missing wsse:Security header in request

Can you please explain how your service is secured? i.e. What security
operations are you enforcing?

Thanks,
Ruchith

Rajesh, Peter (CLAIMS, WIP) wrote:
> 
> Hi,
> 
> Attached is the soap request & response captured in tcpmon when the 
> webservice deployed in Weblogic is contacted using Axis2 java client.
> But in the command prompt in the client side below exception is
thrown.
> 
> Please advice what I am doing wrong. Even though security header is 
> available in request I couldn't identify the reason for this exception

> thrown.
> 
> 
>  [java]* org.apache.axis2.AxisFault: Missing wsse:Security header in
> request*
>  [java]     at
>
org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:9
2)
>  [java]     at org.apache.axis2.engine.Phase.invoke(Phase.java:292)
>  [java]     at
> org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:212)
>  [java]     at
> org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:132)
>  [java]     at
> org.apache.axis2.description.OutInAxisOperationClient.handleResponse(O
> utInAxisOperation.java:336)
> 
>  [java]     at
> org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisOp
> eration.java:389)
> 
>  [java]     at
> org.apache.axis2.description.OutInAxisOperationClient.executeImpl(OutI
> nAxisOperation.java:211)
> 
>  [java]     at
>
org.apache.axis2.client.OperationClient.execute(OperationClient.java:163
)
>  [java]     at
>
org.apache.axis2.client.ServiceClient.sendReceive(ServiceClient.java:528
)
>  [java]     at
>
org.apache.axis2.client.ServiceClient.sendReceive(ServiceClient.java:508
)
>  [java]     at
> org.apache.rampart.weblogic.sample.Client.main(Client.java:82)
>  [java] Caused by: org.apache.rampart.RampartException: Missing 
> wsse:Security header in request
>  [java]     at
> org.apache.rampart.RampartEngine.process(RampartEngine.java:106)
>  [java]     at
>
org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:8
5)
>  [java]     ... 10 more
>  [java] Exception in thread "main"
>  [java] Java Result: 1
> 
> 
> 
> <<soap-request-response-30Nov07.txt>>
> 
> 
> Thanks & Regards,
> 
> Peter Rajesh
> 
> 
> 
> **********************************************************************
> *** This communication, including attachments, is for the exclusive 
> use of addressee and may contain proprietary, confidential and/or 
> privileged information. If you are not the intended recipient, any 
> use, copying, disclosure, dissemination or distribution is strictly 
> prohibited. If you are not the intended recipient, please notify the 
> sender immediately by return e-mail, delete this communication and 
> destroy all copies.
> **********************************************************************
> ***
> 




*************************************************************************
This communication, including attachments, is
for the exclusive use of addressee and may contain proprietary,
confidential and/or privileged information.  If you are not the intended
recipient, any use, copying, disclosure, dissemination or distribution is
strictly prohibited.  If you are not the intended recipient, please notify
the sender immediately by return e-mail, delete this communication and
destroy all copies.
*************************************************************************

RE: Missing wsse:Security header in request

Posted by "Rajesh, Peter (CLAIMS, WIP)" <Pe...@thehartford.com>.

Hi All,

I am using Axis2-1.3 and Rampart 1.3. We use digital certificates to
encrypt and decrypt messages.
 
Attached the zip file contains the services.xml from the webservice and
Policy.xml used in the Axis2 java client side.

Please let me know if more information is needed.


Thanks & Regards,

Peter Rajesh 

-----Original Message-----
From: Ruchith Fernando [mailto:ruchithf@apache.org] 
Sent: Tuesday, December 04, 2007 11:44 PM
To: rampart-dev@ws.apache.org
Subject: Re: Missing wsse:Security header in request

Can you please explain how your service is secured? i.e. What security
operations are you enforcing?

Thanks,
Ruchith

Rajesh, Peter (CLAIMS, WIP) wrote:
> 
> Hi,
> 
> Attached is the soap request & response captured in tcpmon when the 
> webservice deployed in Weblogic is contacted using Axis2 java client.
> But in the command prompt in the client side below exception is
thrown.
> 
> Please advice what I am doing wrong. Even though security header is 
> available in request I couldn't identify the reason for this exception

> thrown.
> 
> 
>  [java]* org.apache.axis2.AxisFault: Missing wsse:Security header in
> request*
>  [java]     at
>
org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:9
2)
>  [java]     at org.apache.axis2.engine.Phase.invoke(Phase.java:292)
>  [java]     at
> org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:212)
>  [java]     at
> org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:132)
>  [java]     at
> org.apache.axis2.description.OutInAxisOperationClient.handleResponse(O
> utInAxisOperation.java:336)
> 
>  [java]     at
> org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisOp
> eration.java:389)
> 
>  [java]     at
> org.apache.axis2.description.OutInAxisOperationClient.executeImpl(OutI
> nAxisOperation.java:211)
> 
>  [java]     at
>
org.apache.axis2.client.OperationClient.execute(OperationClient.java:163
)
>  [java]     at
>
org.apache.axis2.client.ServiceClient.sendReceive(ServiceClient.java:528
)
>  [java]     at
>
org.apache.axis2.client.ServiceClient.sendReceive(ServiceClient.java:508
)
>  [java]     at
> org.apache.rampart.weblogic.sample.Client.main(Client.java:82)
>  [java] Caused by: org.apache.rampart.RampartException: Missing 
> wsse:Security header in request
>  [java]     at
> org.apache.rampart.RampartEngine.process(RampartEngine.java:106)
>  [java]     at
>
org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:8
5)
>  [java]     ... 10 more
>  [java] Exception in thread "main"
>  [java] Java Result: 1
> 
> 
> 
> <<soap-request-response-30Nov07.txt>>
> 
> 
> Thanks & Regards,
> 
> Peter Rajesh
> 
> 
> 
> **********************************************************************
> *** This communication, including attachments, is for the exclusive 
> use of addressee and may contain proprietary, confidential and/or 
> privileged information. If you are not the intended recipient, any 
> use, copying, disclosure, dissemination or distribution is strictly 
> prohibited. If you are not the intended recipient, please notify the 
> sender immediately by return e-mail, delete this communication and 
> destroy all copies.
> **********************************************************************
> ***
> 




*************************************************************************
This communication, including attachments, is
for the exclusive use of addressee and may contain proprietary,
confidential and/or privileged information.  If you are not the intended
recipient, any use, copying, disclosure, dissemination or distribution is
strictly prohibited.  If you are not the intended recipient, please notify
the sender immediately by return e-mail, delete this communication and
destroy all copies.
*************************************************************************