You are viewing a plain text version of this content. The canonical link for it is here.
Posted to fx-dev@ws.apache.org by Yves Langisch <li...@langisch.ch> on 2004/06/14 16:43:49 UTC
C#/WSE 2.0 client
All,
I have written a small C# client with the new WSE 2.0 library. The
client just signs its messages and sends them to the Java web service.
The signature verification works well but there seems to be a problem in
the WSDoAllReceiver with verifying security actions. I always get the
message: actions number mismatch (line 297 in WSDoAllReceiver). I just
did a quick debugging and for me it seems that the number of actions
elements is compared to the number of known subelements of Signature
element but I'm not sure here. Following the C# request:
<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:xsd="http://www.w3.org/2001/XMLSchema"
xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/03/addressing"
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
<soap:Header>
<wsa:Action
wsu:Id="Id-3f9f7f95-bb17-4dbb-ae4c-0f3eefd3fb27"></wsa:Action>
<wsa:MessageID
wsu:Id="Id-82f124fc-ab6c-4747-a8cb-5ba29f36c3c4">uuid:db8d6fcf-680b-495f-83e0-884a489657d2</wsa:MessageID>
<wsa:ReplyTo wsu:Id="Id-3ed8bbf2-bb9f-4330-9d4c-e9d0c87a6939">
<wsa:Address>http://schemas.xmlsoap.org/ws/2004/03/addressing/role/anonymous</wsa:Address>
</wsa:ReplyTo>
<wsa:To
wsu:Id="Id-c5606dbf-8b70-4825-8d83-45c16e1e7eb4">http://kesch.itserve.ch:9090/axis/services/SalaryDeclaration</wsa:To>
<wsse:Security soap:mustUnderstand="1">
<wsu:Timestamp
wsu:Id="Timestamp-90e10bae-0151-4448-9aa2-3468d8e95b8c">
<wsu:Created>2004-06-14T13:59:58Z</wsu:Created>
<wsu:Expires>2004-06-14T14:04:58Z</wsu:Expires>
</wsu:Timestamp>
<wsse:BinarySecurityToken
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="SecurityToken-e5f4a1b3-7eb8-4ee0-8b7d-554b021b9b0d">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</wsse:BinarySecurityToken>
<Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
<SignedInfo>
<CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<SignatureMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<Reference URI="#Id-3f9f7f95-bb17-4dbb-ae4c-0f3eefd3fb27">
<Transforms>
<Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>bvIZnlRauVyyJtyjHc1Tpue0tp8=</DigestValue>
</Reference>
<Reference URI="#Id-82f124fc-ab6c-4747-a8cb-5ba29f36c3c4">
<Transforms>
<Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>QckdvqaVzUM94LWhPZrrpV17xiQ=</DigestValue>
</Reference>
<Reference URI="#Id-3ed8bbf2-bb9f-4330-9d4c-e9d0c87a6939">
<Transforms>
<Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>r0MwogDA/2ybpCWBt+z3XdUvBDg=</DigestValue>
</Reference>
<Reference URI="#Id-c5606dbf-8b70-4825-8d83-45c16e1e7eb4">
<Transforms>
<Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>eV94dw7ptFR320CjnUnsob2qz/o=</DigestValue>
</Reference>
<Reference
URI="#Timestamp-90e10bae-0151-4448-9aa2-3468d8e95b8c">
<Transforms>
<Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>c/BOWd1T7ozNrZcnFvL9P0ObkHI=</DigestValue>
</Reference>
<Reference URI="#Id-86d1f2d1-0fd1-4d88-94c0-322e8c186b76">
<Transforms>
<Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>jdE2UYil2BfAEgZhB1sX5OdCraU=</DigestValue>
</Reference>
</SignedInfo>
<SignatureValue>rchYIAunUC83HWngBQ9ih/UENQvKRpMumw82qWu44g6NIEnOkIbj17+0fhPtIm9+ZK2W7XH5xSGiyq3v8yPEM6skZZf+LfsIw/0TarMfouIPr8qsjZp4HJgN+oY06+uKph3fJPmw2JE/tHeecz9T0IV4hm9PiPgKTyhL1+dabxk=</SignatureValue>
<KeyInfo>
<wsse:SecurityTokenReference>
<wsse:Reference
URI="#SecurityToken-e5f4a1b3-7eb8-4ee0-8b7d-554b021b9b0d"
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/>
</wsse:SecurityTokenReference>
</KeyInfo>
</Signature>
</wsse:Security>
</soap:Header> ...
Any ideas?
Regards,
Yves
Re: C#/WSE 2.0 client
Posted by Yves Langisch <li...@langisch.ch>.
Werner, Lee
I forgot to include the Timestamp action in my config file. That was the
problem.
Thanks!
Yves
On Mon, 2004-06-14 at 16:56, Lee Coomber wrote:
> Hi Yves,
>
> Have you included the Timestamp action in you WSS4J config as well as
> Signature?
>
> Got caught by that one last week...
>
> Lee
>
> Yves Langisch wrote:
>
> >All,
> >
> >I have written a small C# client with the new WSE 2.0 library. The
> >client just signs its messages and sends them to the Java web service.
> >The signature verification works well but there seems to be a problem in
> >the WSDoAllReceiver with verifying security actions. I always get the
> >message: actions number mismatch (line 297 in WSDoAllReceiver). I just
> >did a quick debugging and for me it seems that the number of actions
> >elements is compared to the number of known subelements of Signature
> >element but I'm not sure here. Following the C# request:
> >
> ><soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"
> >xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
> >xmlns:xsd="http://www.w3.org/2001/XMLSchema"
> >xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/03/addressing"
> >xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
> > <soap:Header>
> > <wsa:Action
> >wsu:Id="Id-3f9f7f95-bb17-4dbb-ae4c-0f3eefd3fb27"></wsa:Action>
> > <wsa:MessageID
> >wsu:Id="Id-82f124fc-ab6c-4747-a8cb-5ba29f36c3c4">uuid:db8d6fcf-680b-495f-83e0-884a489657d2</wsa:MessageID>
> > <wsa:ReplyTo wsu:Id="Id-3ed8bbf2-bb9f-4330-9d4c-e9d0c87a6939">
> >
> ><wsa:Address>http://schemas.xmlsoap.org/ws/2004/03/addressing/role/anonymous</wsa:Address>
> > </wsa:ReplyTo>
> > <wsa:To
> >wsu:Id="Id-c5606dbf-8b70-4825-8d83-45c16e1e7eb4">http://kesch.itserve.ch:9090/axis/services/SalaryDeclaration</wsa:To>
> > <wsse:Security soap:mustUnderstand="1">
> > <wsu:Timestamp
> >wsu:Id="Timestamp-90e10bae-0151-4448-9aa2-3468d8e95b8c">
> > <wsu:Created>2004-06-14T13:59:58Z</wsu:Created>
> > <wsu:Expires>2004-06-14T14:04:58Z</wsu:Expires>
> > </wsu:Timestamp>
> > <wsse:BinarySecurityToken
> >ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="SecurityToken-e5f4a1b3-7eb8-4ee0-8b7d-554b021b9b0d">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</wsse:BinarySecurityToken>
> > <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
> > <SignedInfo>
> > <CanonicalizationMethod
> >Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> > <SignatureMethod
> >Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
> > <Reference URI="#Id-3f9f7f95-bb17-4dbb-ae4c-0f3eefd3fb27">
> > <Transforms>
> > <Transform
> >Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> > </Transforms>
> > <DigestMethod
> >Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> > <DigestValue>bvIZnlRauVyyJtyjHc1Tpue0tp8=</DigestValue>
> > </Reference>
> > <Reference URI="#Id-82f124fc-ab6c-4747-a8cb-5ba29f36c3c4">
> > <Transforms>
> > <Transform
> >Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> > </Transforms>
> > <DigestMethod
> >Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> > <DigestValue>QckdvqaVzUM94LWhPZrrpV17xiQ=</DigestValue>
> > </Reference>
> > <Reference URI="#Id-3ed8bbf2-bb9f-4330-9d4c-e9d0c87a6939">
> > <Transforms>
> > <Transform
> >Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> > </Transforms>
> > <DigestMethod
> >Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> > <DigestValue>r0MwogDA/2ybpCWBt+z3XdUvBDg=</DigestValue>
> > </Reference>
> > <Reference URI="#Id-c5606dbf-8b70-4825-8d83-45c16e1e7eb4">
> > <Transforms>
> > <Transform
> >Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> > </Transforms>
> > <DigestMethod
> >Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> > <DigestValue>eV94dw7ptFR320CjnUnsob2qz/o=</DigestValue>
> > </Reference>
> > <Reference
> >URI="#Timestamp-90e10bae-0151-4448-9aa2-3468d8e95b8c">
> > <Transforms>
> > <Transform
> >Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> > </Transforms>
> > <DigestMethod
> >Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> > <DigestValue>c/BOWd1T7ozNrZcnFvL9P0ObkHI=</DigestValue>
> > </Reference>
> > <Reference URI="#Id-86d1f2d1-0fd1-4d88-94c0-322e8c186b76">
> > <Transforms>
> > <Transform
> >Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> > </Transforms>
> > <DigestMethod
> >Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> > <DigestValue>jdE2UYil2BfAEgZhB1sX5OdCraU=</DigestValue>
> > </Reference>
> > </SignedInfo>
> >
> ><SignatureValue>rchYIAunUC83HWngBQ9ih/UENQvKRpMumw82qWu44g6NIEnOkIbj17+0fhPtIm9+ZK2W7XH5xSGiyq3v8yPEM6skZZf+LfsIw/0TarMfouIPr8qsjZp4HJgN+oY06+uKph3fJPmw2JE/tHeecz9T0IV4hm9PiPgKTyhL1+dabxk=</SignatureValue>
> > <KeyInfo>
> > <wsse:SecurityTokenReference>
> > <wsse:Reference
> >URI="#SecurityToken-e5f4a1b3-7eb8-4ee0-8b7d-554b021b9b0d"
> >ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/>
> > </wsse:SecurityTokenReference>
> > </KeyInfo>
> > </Signature>
> > </wsse:Security>
> > </soap:Header> ...
> >
> >Any ideas?
> >
> >Regards,
> >Yves
> >
> >
> >
> >
Re: C#/WSE 2.0 client
Posted by Lee Coomber <le...@lshift.net>.
Hi Yves,
Have you included the Timestamp action in you WSS4J config as well as
Signature?
Got caught by that one last week...
Lee
Yves Langisch wrote:
>All,
>
>I have written a small C# client with the new WSE 2.0 library. The
>client just signs its messages and sends them to the Java web service.
>The signature verification works well but there seems to be a problem in
>the WSDoAllReceiver with verifying security actions. I always get the
>message: actions number mismatch (line 297 in WSDoAllReceiver). I just
>did a quick debugging and for me it seems that the number of actions
>elements is compared to the number of known subelements of Signature
>element but I'm not sure here. Following the C# request:
>
><soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"
>xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
>xmlns:xsd="http://www.w3.org/2001/XMLSchema"
>xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/03/addressing"
>xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
> <soap:Header>
> <wsa:Action
>wsu:Id="Id-3f9f7f95-bb17-4dbb-ae4c-0f3eefd3fb27"></wsa:Action>
> <wsa:MessageID
>wsu:Id="Id-82f124fc-ab6c-4747-a8cb-5ba29f36c3c4">uuid:db8d6fcf-680b-495f-83e0-884a489657d2</wsa:MessageID>
> <wsa:ReplyTo wsu:Id="Id-3ed8bbf2-bb9f-4330-9d4c-e9d0c87a6939">
>
><wsa:Address>http://schemas.xmlsoap.org/ws/2004/03/addressing/role/anonymous</wsa:Address>
> </wsa:ReplyTo>
> <wsa:To
>wsu:Id="Id-c5606dbf-8b70-4825-8d83-45c16e1e7eb4">http://kesch.itserve.ch:9090/axis/services/SalaryDeclaration</wsa:To>
> <wsse:Security soap:mustUnderstand="1">
> <wsu:Timestamp
>wsu:Id="Timestamp-90e10bae-0151-4448-9aa2-3468d8e95b8c">
> <wsu:Created>2004-06-14T13:59:58Z</wsu:Created>
> <wsu:Expires>2004-06-14T14:04:58Z</wsu:Expires>
> </wsu:Timestamp>
> <wsse:BinarySecurityToken
>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="SecurityToken-e5f4a1b3-7eb8-4ee0-8b7d-554b021b9b0d">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</wsse:BinarySecurityToken>
> <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
> <SignedInfo>
> <CanonicalizationMethod
>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> <SignatureMethod
>Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
> <Reference URI="#Id-3f9f7f95-bb17-4dbb-ae4c-0f3eefd3fb27">
> <Transforms>
> <Transform
>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod
>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>bvIZnlRauVyyJtyjHc1Tpue0tp8=</DigestValue>
> </Reference>
> <Reference URI="#Id-82f124fc-ab6c-4747-a8cb-5ba29f36c3c4">
> <Transforms>
> <Transform
>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod
>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>QckdvqaVzUM94LWhPZrrpV17xiQ=</DigestValue>
> </Reference>
> <Reference URI="#Id-3ed8bbf2-bb9f-4330-9d4c-e9d0c87a6939">
> <Transforms>
> <Transform
>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod
>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>r0MwogDA/2ybpCWBt+z3XdUvBDg=</DigestValue>
> </Reference>
> <Reference URI="#Id-c5606dbf-8b70-4825-8d83-45c16e1e7eb4">
> <Transforms>
> <Transform
>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod
>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>eV94dw7ptFR320CjnUnsob2qz/o=</DigestValue>
> </Reference>
> <Reference
>URI="#Timestamp-90e10bae-0151-4448-9aa2-3468d8e95b8c">
> <Transforms>
> <Transform
>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod
>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>c/BOWd1T7ozNrZcnFvL9P0ObkHI=</DigestValue>
> </Reference>
> <Reference URI="#Id-86d1f2d1-0fd1-4d88-94c0-322e8c186b76">
> <Transforms>
> <Transform
>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod
>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>jdE2UYil2BfAEgZhB1sX5OdCraU=</DigestValue>
> </Reference>
> </SignedInfo>
>
><SignatureValue>rchYIAunUC83HWngBQ9ih/UENQvKRpMumw82qWu44g6NIEnOkIbj17+0fhPtIm9+ZK2W7XH5xSGiyq3v8yPEM6skZZf+LfsIw/0TarMfouIPr8qsjZp4HJgN+oY06+uKph3fJPmw2JE/tHeecz9T0IV4hm9PiPgKTyhL1+dabxk=</SignatureValue>
> <KeyInfo>
> <wsse:SecurityTokenReference>
> <wsse:Reference
>URI="#SecurityToken-e5f4a1b3-7eb8-4ee0-8b7d-554b021b9b0d"
>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/>
> </wsse:SecurityTokenReference>
> </KeyInfo>
> </Signature>
> </wsse:Security>
> </soap:Header> ...
>
>Any ideas?
>
>Regards,
>Yves
>
>
>
>