You are viewing a plain text version of this content. The canonical link for it is here.
Posted to java-user@axis.apache.org by "Wang, Jason" <Ja...@delta.com> on 2006/07/06 04:12:26 UTC
[Axis2] 1.0 problem when access ASP.NET2.0 WSE3.0 by X509SerialNumber
I use Axis2 client with WS-Security to call APS.NET2.0 WSE3.0 Web
Service.
Set <encryptionKeyIdentifier>IssuerSerial</encryptionKeyIdentifier>
The message send out like below:
<xenc:EncryptedKey Id="EncKeyId-4779445">
<xenc:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5" />
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<wsse:SecurityTokenReference>
<ds:X509Data>
<ds:X509IssuerSerial>
<ds:X509IssuerName>CN=Root Agency</ds:X509IssuerName>
<ds:X509SerialNumber>119177920819346963742949139381104551659</ds:X509Ser
ialNumber>
</ds:X509IssuerSerial>
</ds:X509Data>
</wsse:SecurityTokenReference>
</ds:KeyInfo>
*******
</xenc:EncryptedKey>
I got error message:
**************************************************************
Microsoft.Web.Services3.Security.SecurityFault:
Referenced security token could not be retrieved --->
System.Exception: WSE590: Failed to resolve the following Key Info
*****************************************************************
If I use a .NET client with the same setting, and it works fine. The
message like below.
<xenc:EncryptedKey
Id="SecurityToken-556aaf5e-3155-4a3a-b55b-40e80410bf12"
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
<xenc:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5" />
<KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
<wsse:SecurityTokenReference>
<X509Data>
<X509IssuerSerial>
<X509IssuerName>CN=Root Agency</X509IssuerName>
<X509SerialNumber>119177920819346963742949139381104551659</X509SerialNum
ber>
</X509IssuerSerial>
</X509Data>
</wsse:SecurityTokenReference>
</KeyInfo>
*********
</xenc:EncryptedKey>
These two messages are almost equivalent, they apply the same namespace,
but the Axis2 using a prefix "ds", .NET is using the default namespace
declaration (not specifying a prefix).
Is there any way on java side to change to match the .NET format?
Or is there any config need be changed on .NET side?
thanks for your time.
Jason
Re: [Axis2] 1.0 problem when access ASP.NET2.0 WSE3.0 by X509SerialNumber
Posted by Ruchith Fernando <ru...@gmail.com>.
Hi Jason,
IMHO declaring a namespace should not matter since both cases are
valid XMLs that confirms to the xml-dsig schema.
Thanks,
Ruchith
On 7/6/06, Wang, Jason <Ja...@delta.com> wrote:
>
>
>
> I use Axis2 client with WS-Security to call APS.NET2.0 WSE3.0 Web Service.
> Set
> <encryptionKeyIdentifier>IssuerSerial</encryptionKeyIdentifier>
> The message send out like below:
>
>
> <xenc:EncryptedKey Id="EncKeyId-4779445">
> <xenc:EncryptionMethod
> Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5" />
> <ds:KeyInfo
> xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
> <wsse:SecurityTokenReference>
> <ds:X509Data>
> <ds:X509IssuerSerial>
> <ds:X509IssuerName>CN=Root Agency</ds:X509IssuerName>
>
> <ds:X509SerialNumber>119177920819346963742949139381104551659</ds:X509SerialNumber>
> </ds:X509IssuerSerial>
> </ds:X509Data>
> </wsse:SecurityTokenReference>
> </ds:KeyInfo>
>
> *******
>
> </xenc:EncryptedKey>
>
>
> I got error message:
> **************************************************************
> Microsoft.Web.Services3.Security.SecurityFault:
> Referenced security token could not be retrieved --->
> System.Exception: WSE590: Failed to resolve the following Key Info
> *****************************************************************
>
> If I use a .NET client with the same setting, and it works fine. The message
> like below.
>
>
> <xenc:EncryptedKey
> Id="SecurityToken-556aaf5e-3155-4a3a-b55b-40e80410bf12"
> xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
>
> <xenc:EncryptionMethod
> Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5" />
> <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
> <wsse:SecurityTokenReference>
> <X509Data>
> <X509IssuerSerial>
> <X509IssuerName>CN=Root Agency</X509IssuerName>
>
> <X509SerialNumber>119177920819346963742949139381104551659</X509SerialNumber>
> </X509IssuerSerial>
> </X509Data>
> </wsse:SecurityTokenReference>
> </KeyInfo>
>
> *********
>
> </xenc:EncryptedKey>
>
>
> These two messages are almost equivalent, they apply the same namespace,
> but the Axis2 using a prefix "ds", .NET is using the default namespace
> declaration (not specifying a prefix).
>
> Is there any way on java side to change to match the .NET format?
> Or is there any config need be changed on .NET side?
>
> thanks for your time.
> Jason
--
www.ruchith.org
---------------------------------------------------------------------
To unsubscribe, e-mail: axis-user-unsubscribe@ws.apache.org
For additional commands, e-mail: axis-user-help@ws.apache.org