You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cxf.apache.org by "dev.cxf (JIRA)" <ji...@apache.org> on 2018/11/15 10:03:00 UTC

[jira] [Created] (CXF-7901) [WS-SECURITY] : instead 

dev.cxf created CXF-7901:
----------------------------

             Summary: [WS-SECURITY] : <SecurityTokenReference> instead <X509Certificate>
                 Key: CXF-7901
                 URL: https://issues.apache.org/jira/browse/CXF-7901
             Project: CXF
          Issue Type: Bug
    Affects Versions: 3.1.3
            Reporter: dev.cxf


Hello Team,
 
I would like to contact you about a problemI have during 2 week on WS-SECURITY  using CXF *3.1.3* (jax-ws).
Indeed, my configuration file spring is as follows:
 
*{color:#ff0000}<jaxws:endpoint id="my_WS" implementor="#my_WS"  address="/services"  wsdlLocation="wsdl/xxxx.wsdl">{color}* 
 *{color:#ff0000}<jaxws:outInterceptors>{color}*
 *{color:#ff0000}<bean class="org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor">{color}*
 *{color:#ff0000}<constructor-arg>{color}*
 *{color:#ff0000}<map>{color}*
 *{color:#ff0000}<entry key="action" value="Signature" />{color}*
 *{color:#ff0000}<entry key="signaturePropFile" value="security.out.properties"/>{color}*
 *{color:#ff0000}<entry key="user" value="${user}"/>{color}*
 *{color:#ff0000}<entry key="passwordCallbackRef">{color}*
 *{color:#ff0000}<ref bean="serverPasswordCallback"/>{color}*
 *{color:#ff0000}</entry>{color}*
 *{color:#ff0000}<entry key="signatureKeyIdentifier" value="X509KeyIdentifier"/>{color}*
 *{color:#ff0000}<entry key="signatureDigestAlgorithm" value="[http://www.w3.org/2001/04/xmlenc#sha256]"/>{color}*
 *{color:#ff0000}<entry key="signatureAlgorithm" value="[http://www.w3.org/2001/04/xmldsig-more#rsa-sha256]"/>{color}*
 *{color:#ff0000}<entry key="signatureParts" value="\{Content}{}Body "/>{color}*
    *{color:#ff0000}</map>{color}*
 *{color:#ff0000}</constructor-arg>{color}* 
 *{color:#ff0000}</bean>{color}*
 *{color:#ff0000}</jaxws:outInterceptors>{color}*
 *{color:#ff0000}<jaxws:properties>{color}*
 *{color:#ff0000}<entry key="schema-validation-enabled" value="false" />{color}*
 *{color:#ff0000}<entry key="security.sts.token.usecert" value="true" />{color}*
 *{color:#ff0000}</jaxws:properties>{color}*
*{color:#ff0000}</jaxws:endpoint>{color}*
 
By specifying key "*signatureKeyIdentifier*" as  "*+X509KeyIdentifier+*" value, I got a result at the section "keyInfo" as follows:
 *{color:#ff0000}{color}* 
*{color:#ff0000}<ds: KeyInfo>{color}*
    *{color:#ff0000}<wsse: SecurityTokenReference>{color}*
        *{color:#ff0000}<wsse: KeyIdentifier EncodingType = "... # Base64Binary"{color}*
            *{color:#ff0000}ValueType = "# ... X509v3"> MIIB ...{color}*
        *{color:#ff0000}</ wsse: KeyIdentifier>{color}*
    *{color:#ff0000}</ wsse: SecurityTokenReference>{color}*
*{color:#ff0000}</ ds: KeyInfo>{color}*
 
By cons, this is not the result I want, I want a result like this:
 
*{color:#0000ff}<ds: KeyInfo Id = "KI-ED321E02A6CAE33F8615378788884713">{color}*
     *{color:#0000ff}<ds: X509Data>{color}*
            *{color:#0000ff}<X509Certificate> MIICXTCCA .. </ X509Certificate>{color}*
     *{color:#0000ff}</ds: X509Data>{color}*
*{color:#0000ff}</ds: KeyInfo>{color}*
 
It's been 2 weeks that I try to find a solution to this, but always in vain.
Thank you for your help.
 
Cordially,



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)