You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@santuario.apache.org by "david leruse (JIRA)" <ji...@apache.org> on 2016/05/17 14:43:13 UTC

[jira] [Closed] (SANTUARIO-442) invalid signature in case of soap fault

     [ https://issues.apache.org/jira/browse/SANTUARIO-442?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

david leruse closed SANTUARIO-442.
----------------------------------
    Resolution: Duplicate

moved back to CXF jira

> invalid signature in case of soap fault
> ----------------------------------------
>
>                 Key: SANTUARIO-442
>                 URL: https://issues.apache.org/jira/browse/SANTUARIO-442
>             Project: Santuario
>          Issue Type: Bug
>          Components: Java
>    Affects Versions: Java 2.0.6
>            Reporter: david leruse
>            Assignee: Colm O hEigeartaigh
>         Attachments: server7.log
>
>
> Hello, this issue is a forwarded  issue from CXF (https://issues.apache.org/jira/browse/CXF-6900). 
> Hello,
> Having signature verification problems on the cxf client-side with a .NET Ws-fed protected webservice, I ask you a little help...
>  Here is a summary of the problem :
>  Most of the time, communication works well excepted when we got a soap fault message.
>  Indeed signature validation works usually well excepted when
>  we receive a fault message inside the body of the soap message. Even In this boundary case, signature verification works well excepted for one element, the fault message (see the enclosed server7.log file). 
> After digging a bit, i've found that the calculated digest couldn't be equal to the claimed one because the content of the message given to the DigesterOutpustrream is not well canonicalized or normalized.
> Partial decrypted msg
> ...
>  <s:Body u:Id="_3">
>  <Fault xmlns="http://www.w3.org/2003/05/soap-envelope"><Code><Value>DataNotFoundFault</Value></Code><Reason><Text xml:lang="nl-BE">ContextContactInfo with Id '1' does not exist.</Text></Reason><Detail><DataNotFoundFault xmlns="http://schemas.riziv.fgov.be/contact/2015/08/faults" xmlns:i="http://www.w3.org/2001/XMLSchema-instance"><ErrorCode>ContextContactInfoNotFound</ErrorCode><Message>ContextContactInfo with Id '1' does not exist.</Message></DataNotFoundFault></Detail></Fault>
>  </s:Body>
>  ...
> Predigested input :
> <s:Body xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" u:Id="_3"><env:Fault><Code xmlns="http://www.w3.org/2003/05/soap-envelope"><Value>DataNotFoundFault</Value></Code><Reason xmlns="http://www.w3.org/2003/05/soap-envelope"><Text xml:lang="nl-BE">ContextContactInfo with Id '1' does not exist.</Text></Reason><env:Detail><DataNotFoundFault xmlns="http://schemas.riziv.fgov.be/contact/2015/08/faults"><ErrorCode>ContextContactInfoNotFound</ErrorCode><Message>ContextContactInfo with Id '1' does not exist.</Message></DataNotFoundFault></env:Detail></env:Fault></s:Body>
> Could you please check this problem and give me an advice ?
> The library used are :
> cxf 3.0.3
>  wss4j 2.0.2
>  xmlsec 2.0.2 or xmlsec 2.0.4 or xmlsec 2.0.6   
> on a jdk 1.6.0_45
> Thanks in advance
>  David L



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)