You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@cxf.apache.org by pe...@risko.hu on 2014/09/29 17:04:16 UTC

CXF Fediz: can't drive wsClientWebapp via SoapUI

Hello All!

   I would like to drive the "wsClientWebapp" demo in CXF Fediz via SoapUI.

   I've set up the demo successfully (with Colm's help, thanks Colm!).  
It's working: I can go to  
https://localhost:8443/fedizhelloworld/secure/fedservlet , sign in  
there then go to  
https://localhost:8443/fedizhelloworld/secure/service.jsp and use the  
GreeterService service with the signed in user.

   After this, I tried to use the GreeterService via SoapUI.

   A. First I requested a Security Token at the IDP/STS (9443) via  
SoapUI. That worked, I got back a Security Token with a  
<saml2:Assertion> inside which was valid for 20 minutes. See attached  
files for the message exchange.

   B. Next I tried to request the GreeterService (10443) via SoapUI  
with the <saml2:Assertion> I got the previous step. But the result was  
a "The message has expired" response. Note that I created the request  
like this:
1. copied the request from the GreeterService's log after it had  
driven via the eaxmple's "Relying Party" web app,
2. replaced the <saml2:Assertion> part with the assertion from A.
   See attached files for the message exchange.

   I was in the 20 minutes time window, I guess that couldn't be the problem.

   I don't know what's the problem.

   Is my aproach with this experiment valid at all (getting the token,  
then use it for requesting the service)?

   Also attached the GReetingService's relevant log excerpt.

   Any help is really appreciated!

   Thank you, best regards, Peter

---

Peter Risko

Re: CXF Fediz: can't drive wsClientWebapp via SoapUI

Posted by Colm O hEigeartaigh <co...@apache.org>.

Hi Peter,

The problem is that the Timestamp is expired. That only has a 5 minute
window. From the log:

> Sep 29, 2014 4:51:22 PM

> <wsu:Expires>2014-09-29T14:49:02.380Z</wsu:Expires>

So I guess you could try again with a 5 minute window + see if it works.

Colm.

On Mon, Sep 29, 2014 at 4:04 PM, <pe...@risko.hu> wrote:

> Hello All!
>
>   I would like to drive the "wsClientWebapp" demo in CXF Fediz via SoapUI.
>
>   I've set up the demo successfully (with Colm's help, thanks Colm!). It's
> working: I can go to https://localhost:8443/fedizhelloworld/secure/
> fedservlet , sign in there then go to https://localhost:8443/
> fedizhelloworld/secure/service.jsp and use the GreeterService service
> with the signed in user.
>
>   After this, I tried to use the GreeterService via SoapUI.
>
>   A. First I requested a Security Token at the IDP/STS (9443) via SoapUI.
> That worked, I got back a Security Token with a <saml2:Assertion> inside
> which was valid for 20 minutes. See attached files for the message exchange.
>
>   B. Next I tried to request the GreeterService (10443) via SoapUI with
> the <saml2:Assertion> I got the previous step. But the result was a "The
> message has expired" response. Note that I created the request like this:
> 1. copied the request from the GreeterService's log after it had driven
> via the eaxmple's "Relying Party" web app,
> 2. replaced the <saml2:Assertion> part with the assertion from A.
>   See attached files for the message exchange.
>
>   I was in the 20 minutes time window, I guess that couldn't be the
> problem.
>
>   I don't know what's the problem.
>
>   Is my aproach with this experiment valid at all (getting the token, then
> use it for requesting the service)?
>
>   Also attached the GReetingService's relevant log excerpt.
>
>   Any help is really appreciated!
>
>   Thank you, best regards, Peter
>
> ---
>
> Peter Risko
>



-- 
Colm O hEigeartaigh

Talend Community Coder
http://coders.talend.com

Re: CXF Fediz: can't drive wsClientWebapp via SoapUI

Posted by JE <ne...@weseewhathappens.com>.

unsubscribe

On Mon, Sep 29, 2014 at 11:04 AM, <pe...@risko.hu> wrote:

> Hello All!
>
>   I would like to drive the "wsClientWebapp" demo in CXF Fediz via SoapUI.
>
>   I've set up the demo successfully (with Colm's help, thanks Colm!). It's
> working: I can go to https://localhost:8443/fedizhelloworld/secure/
> fedservlet , sign in there then go to https://localhost:8443/
> fedizhelloworld/secure/service.jsp and use the GreeterService service
> with the signed in user.
>
>   After this, I tried to use the GreeterService via SoapUI.
>
>   A. First I requested a Security Token at the IDP/STS (9443) via SoapUI.
> That worked, I got back a Security Token with a <saml2:Assertion> inside
> which was valid for 20 minutes. See attached files for the message exchange.
>
>   B. Next I tried to request the GreeterService (10443) via SoapUI with
> the <saml2:Assertion> I got the previous step. But the result was a "The
> message has expired" response. Note that I created the request like this:
> 1. copied the request from the GreeterService's log after it had driven
> via the eaxmple's "Relying Party" web app,
> 2. replaced the <saml2:Assertion> part with the assertion from A.
>   See attached files for the message exchange.
>
>   I was in the 20 minutes time window, I guess that couldn't be the
> problem.
>
>   I don't know what's the problem.
>
>   Is my aproach with this experiment valid at all (getting the token, then
> use it for requesting the service)?
>
>   Also attached the GReetingService's relevant log excerpt.
>
>   Any help is really appreciated!
>
>   Thank you, best regards, Peter
>
> ---
>
> Peter Risko
>