You are viewing a plain text version of this content. The canonical link for it is here.
Posted to fx-dev@ws.apache.org by ru...@apache.org on 2006/05/02 11:36:30 UTC
svn commit: r398880 [9/10] - in /webservices/wss4j/site/xref-test: ./
components/ interop/ policy/ sandbox/ secconv/ secconv/components/
secconv/scenarios/ secconv/scenarios/ping/ secconv/scenarios/ping/impl/
wssec/
Added: webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewSCT.html
URL: http://svn.apache.org/viewcvs/webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewSCT.html?rev=398880&view=auto
==============================================================================
--- webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewSCT.html (added)
+++ webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewSCT.html Tue May 2 02:36:22 2006
@@ -0,0 +1,352 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head>
+<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1" /><title>TestWSSecurityNewSCT xref</title>
+<link type="text/css" rel="stylesheet" href="../stylesheet.css" />
+</head>
+<body>
+<pre>
+
+<a name="1" href="#1">1</a> <em class="comment">/*</em>
+<a name="2" href="#2">2</a> <em class="comment"> * Copyright 2004,2005 The Apache Software Foundation.</em>
+<a name="3" href="#3">3</a> <em class="comment"> *</em>
+<a name="4" href="#4">4</a> <em class="comment"> * Licensed under the Apache License, Version 2.0 (the "License");</em>
+<a name="5" href="#5">5</a> <em class="comment"> * you may not use this file except in compliance with the License.</em>
+<a name="6" href="#6">6</a> <em class="comment"> * You may obtain a copy of the License at</em>
+<a name="7" href="#7">7</a> <em class="comment"> *</em>
+<a name="8" href="#8">8</a> <em class="comment"> * <a href="http://www.apache.org/licenses/LICENSE-2.0" target="alexandria_uri">http://www.apache.org/licenses/LICENSE-2.0</a></em>
+<a name="9" href="#9">9</a> <em class="comment"> *</em>
+<a name="10" href="#10">10</a> <em class="comment"> * Unless required by applicable law or agreed to in writing, software</em>
+<a name="11" href="#11">11</a> <em class="comment"> * distributed under the License is distributed on an "AS IS" BASIS,</em>
+<a name="12" href="#12">12</a> <em class="comment"> * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.</em>
+<a name="13" href="#13">13</a> <em class="comment"> * See the License for the specific language governing permissions and</em>
+<a name="14" href="#14">14</a> <em class="comment"> * limitations under the License.</em>
+<a name="15" href="#15">15</a> <em class="comment"> */</em>
+<a name="16" href="#16">16</a>
+<a name="17" href="#17">17</a> <strong>package</strong> <a href="../wssec/package-summary.html">wssec</a>;
+<a name="18" href="#18">18</a>
+<a name="19" href="#19">19</a> <strong>import</strong> java.io.ByteArrayInputStream;
+<a name="20" href="#20">20</a> <strong>import</strong> java.io.IOException;
+<a name="21" href="#21">21</a> <strong>import</strong> java.io.InputStream;
+<a name="22" href="#22">22</a> <strong>import</strong> java.security.SecureRandom;
+<a name="23" href="#23">23</a> <strong>import</strong> java.util.Hashtable;
+<a name="24" href="#24">24</a>
+<a name="25" href="#25">25</a> <strong>import</strong> javax.security.auth.callback.Callback;
+<a name="26" href="#26">26</a> <strong>import</strong> javax.security.auth.callback.CallbackHandler;
+<a name="27" href="#27">27</a> <strong>import</strong> javax.security.auth.callback.UnsupportedCallbackException;
+<a name="28" href="#28">28</a>
+<a name="29" href="#29">29</a> <strong>import</strong> junit.framework.TestCase;
+<a name="30" href="#30">30</a>
+<a name="31" href="#31">31</a> <strong>import</strong> org.apache.axis.Message;
+<a name="32" href="#32">32</a> <strong>import</strong> org.apache.axis.MessageContext;
+<a name="33" href="#33">33</a> <strong>import</strong> org.apache.axis.client.AxisClient;
+<a name="34" href="#34">34</a> <strong>import</strong> org.apache.axis.configuration.NullProvider;
+<a name="35" href="#35">35</a> <strong>import</strong> org.apache.axis.message.SOAPEnvelope;
+<a name="36" href="#36">36</a> <strong>import</strong> org.apache.ws.security.WSConstants;
+<a name="37" href="#37">37</a> <strong>import</strong> org.apache.ws.security.WSPasswordCallback;
+<a name="38" href="#38">38</a> <strong>import</strong> org.apache.ws.security.WSSecurityEngine;
+<a name="39" href="#39">39</a> <strong>import</strong> org.apache.ws.security.components.crypto.Crypto;
+<a name="40" href="#40">40</a> <strong>import</strong> org.apache.ws.security.components.crypto.CryptoFactory;
+<a name="41" href="#41">41</a> <strong>import</strong> org.apache.ws.security.conversation.ConversationConstants;
+<a name="42" href="#42">42</a> <strong>import</strong> org.apache.ws.security.message.WSSecDKEncrypt;
+<a name="43" href="#43">43</a> <strong>import</strong> org.apache.ws.security.message.WSSecDKSign;
+<a name="44" href="#44">44</a> <strong>import</strong> org.apache.ws.security.message.WSSecHeader;
+<a name="45" href="#45">45</a> <strong>import</strong> org.apache.ws.security.message.WSSecSecurityContextToken;
+<a name="46" href="#46">46</a> <strong>import</strong> org.apache.xml.security.signature.XMLSignature;
+<a name="47" href="#47">47</a> <strong>import</strong> org.w3c.dom.Document;
+<a name="48" href="#48">48</a>
+<a name="49" href="#49">49</a> <em>/**<em>*</em></em>
+<a name="50" href="#50">50</a> <em> * Testcase to test WSSecSecurityContextToken</em>
+<a name="51" href="#51">51</a> <em> * </em>
+<a name="52" href="#52">52</a> <em> * @see org.apache.ws.security.message.WSSecSecurityContextToken</em>
+<a name="53" href="#53">53</a> <em> * </em>
+<a name="54" href="#54">54</a> <em> * @author Ruchith Fernando (ruchith.fernando@gmail.com)</em>
+<a name="55" href="#55">55</a> <em> */</em>
+<a name="56" href="#56">56</a> <strong>public</strong> <strong>class</strong> <a href="../wssec/TestWSSecurityNewSCT.html">TestWSSecurityNewSCT</a> <strong>extends</strong> TestCase implements CallbackHandler {
+<a name="57" href="#57">57</a>
+<a name="58" href="#58">58</a> <strong>static</strong> <strong>final</strong> String soapMsg = <span class="string">"<?xml version=\"1.0\" encoding=\"UTF-8\"?>"</span>
+<a name="59" href="#59">59</a> + <span class="string">"<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:xsd=\"http://www.w3.org/2001/XMLSchema\" xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\">"</span>
+<a name="60" href="#60">60</a> + <span class="string">" <soapenv:Body>"</span>
+<a name="61" href="#61">61</a> + <span class="string">" <ns1:testMethod xmlns:ns1=\"uri:LogTestService2\"></ns1:testMethod>"</span>
+<a name="62" href="#62">62</a> + <span class="string">" </soapenv:Body>"</span> + <span class="string">"</soapenv:Envelope>"</span>;
+<a name="63" href="#63">63</a>
+<a name="64" href="#64">64</a> <strong>static</strong> <strong>final</strong> WSSecurityEngine secEngine = <strong>new</strong> WSSecurityEngine();
+<a name="65" href="#65">65</a>
+<a name="66" href="#66">66</a> <strong>static</strong> <strong>final</strong> Crypto crypto = CryptoFactory
+<a name="67" href="#67">67</a> .getInstance(<span class="string">"cryptoSKI.properties"</span>);
+<a name="68" href="#68">68</a>
+<a name="69" href="#69">69</a> MessageContext msgContext;
+<a name="70" href="#70">70</a>
+<a name="71" href="#71">71</a> Message message;
+<a name="72" href="#72">72</a>
+<a name="73" href="#73">73</a> <em>/**<em>*</em></em>
+<a name="74" href="#74">74</a> <em> * Table of secrets idexd by the sct identifiers</em>
+<a name="75" href="#75">75</a> <em> */</em>
+<a name="76" href="#76">76</a> <strong>private</strong> Hashtable secrets = <strong>new</strong> Hashtable();
+<a name="77" href="#77">77</a>
+<a name="78" href="#78">78</a> <em>/**<em>*</em></em>
+<a name="79" href="#79">79</a> <em> * @param arg0</em>
+<a name="80" href="#80">80</a> <em> */</em>
+<a name="81" href="#81">81</a> <strong>public</strong> <a href="../wssec/TestWSSecurityNewSCT.html">TestWSSecurityNewSCT</a>(String arg0) {
+<a name="82" href="#82">82</a> <strong>super</strong>(arg0);
+<a name="83" href="#83">83</a> }
+<a name="84" href="#84">84</a>
+<a name="85" href="#85">85</a> <em>/**<em>*</em></em>
+<a name="86" href="#86">86</a> <em> * Setup method <p/></em>
+<a name="87" href="#87">87</a> <em> * </em>
+<a name="88" href="#88">88</a> <em> * @throws Exception</em>
+<a name="89" href="#89">89</a> <em> * Thrown when there is a problem in setup</em>
+<a name="90" href="#90">90</a> <em> */</em>
+<a name="91" href="#91">91</a> <strong>protected</strong> <strong>void</strong> setUp() throws Exception {
+<a name="92" href="#92">92</a> AxisClient tmpEngine = <strong>new</strong> AxisClient(<strong>new</strong> NullProvider());
+<a name="93" href="#93">93</a> msgContext = <strong>new</strong> MessageContext(tmpEngine);
+<a name="94" href="#94">94</a> message = getSOAPMessage();
+<a name="95" href="#95">95</a> }
+<a name="96" href="#96">96</a>
+<a name="97" href="#97">97</a> <strong>public</strong> <strong>void</strong> testBuild() {
+<a name="98" href="#98">98</a> <strong>try</strong> {
+<a name="99" href="#99">99</a> SOAPEnvelope unsignedEnvelope = message.getSOAPEnvelope();
+<a name="100" href="#100">100</a> Document doc = unsignedEnvelope.getAsDocument();
+<a name="101" href="#101">101</a> WSSecHeader secHeader = <strong>new</strong> WSSecHeader();
+<a name="102" href="#102">102</a> secHeader.insertSecurityHeader(doc);
+<a name="103" href="#103">103</a>
+<a name="104" href="#104">104</a> WSSecSecurityContextToken sctBuilder = <strong>new</strong> WSSecSecurityContextToken();
+<a name="105" href="#105">105</a> sctBuilder.prepare(doc, crypto);
+<a name="106" href="#106">106</a>
+<a name="107" href="#107">107</a> sctBuilder.prependSCTElementToHeader(doc, secHeader);
+<a name="108" href="#108">108</a>
+<a name="109" href="#109">109</a> String out = org.apache.ws.security.util.XMLUtils
+<a name="110" href="#110">110</a> .PrettyDocumentToString(doc);
+<a name="111" href="#111">111</a>
+<a name="112" href="#112">112</a> assertTrue(
+<a name="113" href="#113">113</a> <span class="string">"SecurityContextToken missing"</span>,
+<a name="114" href="#114">114</a> out
+<a name="115" href="#115">115</a> .indexOf(ConversationConstants.SECURITY_CONTEXT_TOKEN_LN) > 0);
+<a name="116" href="#116">116</a> assertTrue(<span class="string">"wsc:Identifier missing"</span>, out
+<a name="117" href="#117">117</a> .indexOf(ConversationConstants.IDENTIFIER_LN) > 0);
+<a name="118" href="#118">118</a>
+<a name="119" href="#119">119</a> <em class="comment">// System.out.println(out);</em>
+<a name="120" href="#120">120</a>
+<a name="121" href="#121">121</a> } <strong>catch</strong> (Exception e) {
+<a name="122" href="#122">122</a> e.printStackTrace();
+<a name="123" href="#123">123</a> fail(e.getMessage());
+<a name="124" href="#124">124</a> }
+<a name="125" href="#125">125</a> }
+<a name="126" href="#126">126</a>
+<a name="127" href="#127">127</a> <em>/**<em>*</em></em>
+<a name="128" href="#128">128</a> <em> * Test encryption using a derived key which is based on a secret associated</em>
+<a name="129" href="#129">129</a> <em> * with a security context token</em>
+<a name="130" href="#130">130</a> <em> */</em>
+<a name="131" href="#131">131</a> <strong>public</strong> <strong>void</strong> testSCTDKTEncrypt() {
+<a name="132" href="#132">132</a> <strong>try</strong> {
+<a name="133" href="#133">133</a> SOAPEnvelope unsignedEnvelope = message.getSOAPEnvelope();
+<a name="134" href="#134">134</a> Document doc = unsignedEnvelope.getAsDocument();
+<a name="135" href="#135">135</a> WSSecHeader secHeader = <strong>new</strong> WSSecHeader();
+<a name="136" href="#136">136</a> secHeader.insertSecurityHeader(doc);
+<a name="137" href="#137">137</a>
+<a name="138" href="#138">138</a> WSSecSecurityContextToken sctBuilder = <strong>new</strong> WSSecSecurityContextToken();
+<a name="139" href="#139">139</a> sctBuilder.prepare(doc, crypto);
+<a name="140" href="#140">140</a>
+<a name="141" href="#141">141</a> SecureRandom random = SecureRandom.getInstance(<span class="string">"SHA1PRNG"</span>);
+<a name="142" href="#142">142</a> byte[] tempSecret = <strong>new</strong> byte[16];
+<a name="143" href="#143">143</a> random.nextBytes(tempSecret);
+<a name="144" href="#144">144</a>
+<a name="145" href="#145">145</a> <em class="comment">// Store the secret</em>
+<a name="146" href="#146">146</a> <strong>this</strong>.secrets.put(sctBuilder.getIdentifier(), tempSecret);
+<a name="147" href="#147">147</a>
+<a name="148" href="#148">148</a> String tokenId = sctBuilder.getSctId();
+<a name="149" href="#149">149</a>
+<a name="150" href="#150">150</a> <em class="comment">// Derived key encryption</em>
+<a name="151" href="#151">151</a> WSSecDKEncrypt encrBuilder = <strong>new</strong> WSSecDKEncrypt();
+<a name="152" href="#152">152</a> encrBuilder.setSymmetricEncAlgorithm(WSConstants.AES_128);
+<a name="153" href="#153">153</a> encrBuilder.setExternalKey(tempSecret, tokenId);
+<a name="154" href="#154">154</a> encrBuilder.build(doc, crypto, secHeader);
+<a name="155" href="#155">155</a>
+<a name="156" href="#156">156</a> sctBuilder.prependSCTElementToHeader(doc, secHeader);
+<a name="157" href="#157">157</a>
+<a name="158" href="#158">158</a> <em class="comment">// String out = org.apache.ws.security.util.XMLUtils</em>
+<a name="159" href="#159">159</a> <em class="comment">// .PrettyDocumentToString(doc);</em>
+<a name="160" href="#160">160</a> <em class="comment">// System.out.println(out);</em>
+<a name="161" href="#161">161</a>
+<a name="162" href="#162">162</a> verify(doc);
+<a name="163" href="#163">163</a> } <strong>catch</strong> (Exception e) {
+<a name="164" href="#164">164</a> e.printStackTrace();
+<a name="165" href="#165">165</a> fail(e.getMessage());
+<a name="166" href="#166">166</a> }
+<a name="167" href="#167">167</a> }
+<a name="168" href="#168">168</a>
+<a name="169" href="#169">169</a> <strong>public</strong> <strong>void</strong> testSCTKDKTSign() {
+<a name="170" href="#170">170</a> <strong>try</strong> {
+<a name="171" href="#171">171</a> SOAPEnvelope unsignedEnvelope = message.getSOAPEnvelope();
+<a name="172" href="#172">172</a> Document doc = unsignedEnvelope.getAsDocument();
+<a name="173" href="#173">173</a> WSSecHeader secHeader = <strong>new</strong> WSSecHeader();
+<a name="174" href="#174">174</a> secHeader.insertSecurityHeader(doc);
+<a name="175" href="#175">175</a>
+<a name="176" href="#176">176</a> WSSecSecurityContextToken sctBuilder = <strong>new</strong> WSSecSecurityContextToken();
+<a name="177" href="#177">177</a> sctBuilder.prepare(doc, crypto);
+<a name="178" href="#178">178</a>
+<a name="179" href="#179">179</a> SecureRandom random = SecureRandom.getInstance(<span class="string">"SHA1PRNG"</span>);
+<a name="180" href="#180">180</a> byte[] tempSecret = <strong>new</strong> byte[16];
+<a name="181" href="#181">181</a> random.nextBytes(tempSecret);
+<a name="182" href="#182">182</a>
+<a name="183" href="#183">183</a> <em class="comment">// Store the secret</em>
+<a name="184" href="#184">184</a> <strong>this</strong>.secrets.put(sctBuilder.getIdentifier(), tempSecret);
+<a name="185" href="#185">185</a>
+<a name="186" href="#186">186</a> String tokenId = sctBuilder.getSctId();
+<a name="187" href="#187">187</a>
+<a name="188" href="#188">188</a> <em class="comment">// Derived key signature</em>
+<a name="189" href="#189">189</a> WSSecDKSign sigBuilder = <strong>new</strong> WSSecDKSign();
+<a name="190" href="#190">190</a> sigBuilder.setExternalKey(tempSecret, tokenId);
+<a name="191" href="#191">191</a> sigBuilder.setSignatureAlgorithm(XMLSignature.ALGO_ID_MAC_HMAC_SHA1);
+<a name="192" href="#192">192</a> sigBuilder.build(doc, crypto, secHeader);
+<a name="193" href="#193">193</a>
+<a name="194" href="#194">194</a> sctBuilder.prependSCTElementToHeader(doc, secHeader);
+<a name="195" href="#195">195</a>
+<a name="196" href="#196">196</a> <em class="comment">// String out = org.apache.ws.security.util.XMLUtils</em>
+<a name="197" href="#197">197</a> <em class="comment">// .PrettyDocumentToString(doc);</em>
+<a name="198" href="#198">198</a> <em class="comment">// System.out.println(out);</em>
+<a name="199" href="#199">199</a>
+<a name="200" href="#200">200</a> verify(doc);
+<a name="201" href="#201">201</a> } <strong>catch</strong> (Exception e) {
+<a name="202" href="#202">202</a> e.printStackTrace();
+<a name="203" href="#203">203</a> fail(e.getMessage());
+<a name="204" href="#204">204</a> }
+<a name="205" href="#205">205</a> }
+<a name="206" href="#206">206</a>
+<a name="207" href="#207">207</a> <strong>public</strong> <strong>void</strong> testSCTKDKTSignEncrypt() {
+<a name="208" href="#208">208</a> <strong>try</strong> {
+<a name="209" href="#209">209</a> SOAPEnvelope unsignedEnvelope = message.getSOAPEnvelope();
+<a name="210" href="#210">210</a> Document doc = unsignedEnvelope.getAsDocument();
+<a name="211" href="#211">211</a> WSSecHeader secHeader = <strong>new</strong> WSSecHeader();
+<a name="212" href="#212">212</a> secHeader.insertSecurityHeader(doc);
+<a name="213" href="#213">213</a>
+<a name="214" href="#214">214</a> WSSecSecurityContextToken sctBuilder = <strong>new</strong> WSSecSecurityContextToken();
+<a name="215" href="#215">215</a> sctBuilder.prepare(doc, crypto);
+<a name="216" href="#216">216</a>
+<a name="217" href="#217">217</a> SecureRandom random = SecureRandom.getInstance(<span class="string">"SHA1PRNG"</span>);
+<a name="218" href="#218">218</a> byte[] tempSecret = <strong>new</strong> byte[16];
+<a name="219" href="#219">219</a> random.nextBytes(tempSecret);
+<a name="220" href="#220">220</a>
+<a name="221" href="#221">221</a> <em class="comment">// Store the secret</em>
+<a name="222" href="#222">222</a> <strong>this</strong>.secrets.put(sctBuilder.getIdentifier(), tempSecret);
+<a name="223" href="#223">223</a>
+<a name="224" href="#224">224</a> String tokenId = sctBuilder.getSctId();
+<a name="225" href="#225">225</a>
+<a name="226" href="#226">226</a> <em class="comment">// Derived key signature</em>
+<a name="227" href="#227">227</a> WSSecDKSign sigBuilder = <strong>new</strong> WSSecDKSign();
+<a name="228" href="#228">228</a> sigBuilder.setExternalKey(tempSecret, tokenId);
+<a name="229" href="#229">229</a> sigBuilder.setSignatureAlgorithm(XMLSignature.ALGO_ID_MAC_HMAC_SHA1);
+<a name="230" href="#230">230</a> sigBuilder.build(doc, crypto, secHeader);
+<a name="231" href="#231">231</a>
+<a name="232" href="#232">232</a> <em class="comment">// Derived key encryption</em>
+<a name="233" href="#233">233</a> WSSecDKEncrypt encrBuilder = <strong>new</strong> WSSecDKEncrypt();
+<a name="234" href="#234">234</a> encrBuilder.setSymmetricEncAlgorithm(WSConstants.AES_128);
+<a name="235" href="#235">235</a> encrBuilder.setExternalKey(tempSecret, tokenId);
+<a name="236" href="#236">236</a> encrBuilder.build(doc, crypto, secHeader);
+<a name="237" href="#237">237</a>
+<a name="238" href="#238">238</a> sctBuilder.prependSCTElementToHeader(doc, secHeader);
+<a name="239" href="#239">239</a>
+<a name="240" href="#240">240</a> <em class="comment">// String out = org.apache.ws.security.util.XMLUtils</em>
+<a name="241" href="#241">241</a> <em class="comment">// .PrettyDocumentToString(doc);</em>
+<a name="242" href="#242">242</a>
+<a name="243" href="#243">243</a> <em class="comment">// System.out.println(out);</em>
+<a name="244" href="#244">244</a>
+<a name="245" href="#245">245</a> verify(doc);
+<a name="246" href="#246">246</a> } <strong>catch</strong> (Exception e) {
+<a name="247" href="#247">247</a> e.printStackTrace();
+<a name="248" href="#248">248</a> fail(e.getMessage());
+<a name="249" href="#249">249</a> }
+<a name="250" href="#250">250</a> }
+<a name="251" href="#251">251</a>
+<a name="252" href="#252">252</a> <strong>public</strong> <strong>void</strong> testSCTKDKTEncryptSign() {
+<a name="253" href="#253">253</a> <strong>try</strong> {
+<a name="254" href="#254">254</a> SOAPEnvelope unsignedEnvelope = message.getSOAPEnvelope();
+<a name="255" href="#255">255</a> Document doc = unsignedEnvelope.getAsDocument();
+<a name="256" href="#256">256</a> WSSecHeader secHeader = <strong>new</strong> WSSecHeader();
+<a name="257" href="#257">257</a> secHeader.insertSecurityHeader(doc);
+<a name="258" href="#258">258</a>
+<a name="259" href="#259">259</a> WSSecSecurityContextToken sctBuilder = <strong>new</strong> WSSecSecurityContextToken();
+<a name="260" href="#260">260</a> sctBuilder.prepare(doc, crypto);
+<a name="261" href="#261">261</a>
+<a name="262" href="#262">262</a> SecureRandom random = SecureRandom.getInstance(<span class="string">"SHA1PRNG"</span>);
+<a name="263" href="#263">263</a> byte[] tempSecret = <strong>new</strong> byte[16];
+<a name="264" href="#264">264</a> random.nextBytes(tempSecret);
+<a name="265" href="#265">265</a>
+<a name="266" href="#266">266</a> <em class="comment">// Store the secret</em>
+<a name="267" href="#267">267</a> <strong>this</strong>.secrets.put(sctBuilder.getIdentifier(), tempSecret);
+<a name="268" href="#268">268</a>
+<a name="269" href="#269">269</a> String tokenId = sctBuilder.getSctId();
+<a name="270" href="#270">270</a>
+<a name="271" href="#271">271</a> <em class="comment">// Derived key encryption</em>
+<a name="272" href="#272">272</a> WSSecDKEncrypt encrBuilder = <strong>new</strong> WSSecDKEncrypt();
+<a name="273" href="#273">273</a> encrBuilder.setSymmetricEncAlgorithm(WSConstants.AES_128);
+<a name="274" href="#274">274</a> encrBuilder.setExternalKey(tempSecret, tokenId);
+<a name="275" href="#275">275</a> encrBuilder.build(doc, crypto, secHeader);
+<a name="276" href="#276">276</a>
+<a name="277" href="#277">277</a> <em class="comment">// Derived key signature</em>
+<a name="278" href="#278">278</a> WSSecDKSign sigBuilder = <strong>new</strong> WSSecDKSign();
+<a name="279" href="#279">279</a> sigBuilder.setExternalKey(tempSecret, tokenId);
+<a name="280" href="#280">280</a> sigBuilder.setSignatureAlgorithm(XMLSignature.ALGO_ID_MAC_HMAC_SHA1);
+<a name="281" href="#281">281</a> sigBuilder.build(doc, crypto, secHeader);
+<a name="282" href="#282">282</a>
+<a name="283" href="#283">283</a> sctBuilder.prependSCTElementToHeader(doc, secHeader);
+<a name="284" href="#284">284</a>
+<a name="285" href="#285">285</a> <em class="comment">// String out = org.apache.ws.security.util.XMLUtils</em>
+<a name="286" href="#286">286</a> <em class="comment">// .PrettyDocumentToString(doc);</em>
+<a name="287" href="#287">287</a> <em class="comment">// System.out.println(out);</em>
+<a name="288" href="#288">288</a>
+<a name="289" href="#289">289</a> verify(doc);
+<a name="290" href="#290">290</a> } <strong>catch</strong> (Exception e) {
+<a name="291" href="#291">291</a> e.printStackTrace();
+<a name="292" href="#292">292</a> fail(e.getMessage());
+<a name="293" href="#293">293</a> }
+<a name="294" href="#294">294</a> }
+<a name="295" href="#295">295</a>
+<a name="296" href="#296">296</a> <em>/**<em>*</em></em>
+<a name="297" href="#297">297</a> <em> * Verifies the soap envelope <p/></em>
+<a name="298" href="#298">298</a> <em> * </em>
+<a name="299" href="#299">299</a> <em> * @param envelope</em>
+<a name="300" href="#300">300</a> <em> * @throws Exception</em>
+<a name="301" href="#301">301</a> <em> * Thrown when there is a problem in verification</em>
+<a name="302" href="#302">302</a> <em> */</em>
+<a name="303" href="#303">303</a> <strong>private</strong> <strong>void</strong> verify(Document doc) throws Exception {
+<a name="304" href="#304">304</a> secEngine.processSecurityHeader(doc, <strong>null</strong>, <strong>this</strong>, crypto);
+<a name="305" href="#305">305</a> SOAPUtil.updateSOAPMessage(doc, message);
+<a name="306" href="#306">306</a> String decryptedString = message.getSOAPPartAsString();
+<a name="307" href="#307">307</a> assertTrue(decryptedString.indexOf(<span class="string">"LogTestService2"</span>) > 0 ? <strong>true</strong>
+<a name="308" href="#308">308</a> : false);
+<a name="309" href="#309">309</a> }
+<a name="310" href="#310">310</a>
+<a name="311" href="#311">311</a> <em>/**<em>*</em></em>
+<a name="312" href="#312">312</a> <em> * Constructs a soap envelope <p/></em>
+<a name="313" href="#313">313</a> <em> * </em>
+<a name="314" href="#314">314</a> <em> * @return soap envelope</em>
+<a name="315" href="#315">315</a> <em> * @throws Exception</em>
+<a name="316" href="#316">316</a> <em> * if there is any problem constructing the soap envelope</em>
+<a name="317" href="#317">317</a> <em> */</em>
+<a name="318" href="#318">318</a> <strong>protected</strong> Message getSOAPMessage() throws Exception {
+<a name="319" href="#319">319</a> InputStream in = <strong>new</strong> ByteArrayInputStream(soapMsg.getBytes());
+<a name="320" href="#320">320</a> Message msg = <strong>new</strong> Message(in);
+<a name="321" href="#321">321</a> msg.setMessageContext(msgContext);
+<a name="322" href="#322">322</a> <strong>return</strong> msg;
+<a name="323" href="#323">323</a> }
+<a name="324" href="#324">324</a>
+<a name="325" href="#325">325</a> <strong>public</strong> <strong>void</strong> handle(Callback[] callbacks) throws IOException,
+<a name="326" href="#326">326</a> UnsupportedCallbackException {
+<a name="327" href="#327">327</a> <strong>for</strong> (<strong>int</strong> i = 0; i < callbacks.length; i++) {
+<a name="328" href="#328">328</a> <strong>if</strong> (callbacks[i] instanceof WSPasswordCallback) {
+<a name="329" href="#329">329</a> WSPasswordCallback pc = (WSPasswordCallback) callbacks[i];
+<a name="330" href="#330">330</a> byte[] secret = (byte[]) <strong>this</strong>.secrets.get(pc.getIdentifer());
+<a name="331" href="#331">331</a> pc.setKey(secret);
+<a name="332" href="#332">332</a> } <strong>else</strong> {
+<a name="333" href="#333">333</a> <strong>throw</strong> <strong>new</strong> UnsupportedCallbackException(callbacks[i],
+<a name="334" href="#334">334</a> <span class="string">"Unrecognized Callback"</span>);
+<a name="335" href="#335">335</a> }
+<a name="336" href="#336">336</a> }
+<a name="337" href="#337">337</a> }
+<a name="338" href="#338">338</a>
+<a name="339" href="#339">339</a> }
+</pre>
+<hr/><div id="footer">This page was automatically generated by <a href="http://maven.apache.org/">Maven</a></div></body>
+</html>
+
Added: webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewSOAP12.html
URL: http://svn.apache.org/viewcvs/webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewSOAP12.html?rev=398880&view=auto
==============================================================================
--- webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewSOAP12.html (added)
+++ webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewSOAP12.html Tue May 2 02:36:22 2006
@@ -0,0 +1,194 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head>
+<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1" /><title>TestWSSecurityNewSOAP12 xref</title>
+<link type="text/css" rel="stylesheet" href="../stylesheet.css" />
+</head>
+<body>
+<pre>
+
+<a name="1" href="#1">1</a> <em class="comment">/*</em>
+<a name="2" href="#2">2</a> <em class="comment"> * Copyright 2003-2004 The Apache Software Foundation.</em>
+<a name="3" href="#3">3</a> <em class="comment"> *</em>
+<a name="4" href="#4">4</a> <em class="comment"> * Licensed under the Apache License, Version 2.0 (the "License");</em>
+<a name="5" href="#5">5</a> <em class="comment"> * you may not use this file except in compliance with the License.</em>
+<a name="6" href="#6">6</a> <em class="comment"> * You may obtain a copy of the License at</em>
+<a name="7" href="#7">7</a> <em class="comment"> *</em>
+<a name="8" href="#8">8</a> <em class="comment"> * <a href="http://www.apache.org/licenses/LICENSE-2.0" target="alexandria_uri">http://www.apache.org/licenses/LICENSE-2.0</a></em>
+<a name="9" href="#9">9</a> <em class="comment"> *</em>
+<a name="10" href="#10">10</a> <em class="comment"> * Unless required by applicable law or agreed to in writing, software</em>
+<a name="11" href="#11">11</a> <em class="comment"> * distributed under the License is distributed on an "AS IS" BASIS,</em>
+<a name="12" href="#12">12</a> <em class="comment"> * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.</em>
+<a name="13" href="#13">13</a> <em class="comment"> * See the License for the specific language governing permissions and</em>
+<a name="14" href="#14">14</a> <em class="comment"> * limitations under the License.</em>
+<a name="15" href="#15">15</a> <em class="comment"> *</em>
+<a name="16" href="#16">16</a> <em class="comment"> */</em>
+<a name="17" href="#17">17</a>
+<a name="18" href="#18">18</a> <strong>package</strong> <a href="../wssec/package-summary.html">wssec</a>;
+<a name="19" href="#19">19</a>
+<a name="20" href="#20">20</a> <strong>import</strong> junit.framework.Test;
+<a name="21" href="#21">21</a> <strong>import</strong> junit.framework.TestCase;
+<a name="22" href="#22">22</a> <strong>import</strong> junit.framework.TestSuite;
+<a name="23" href="#23">23</a> <strong>import</strong> org.apache.axis.Message;
+<a name="24" href="#24">24</a> <strong>import</strong> org.apache.axis.MessageContext;
+<a name="25" href="#25">25</a> <strong>import</strong> org.apache.axis.client.AxisClient;
+<a name="26" href="#26">26</a> <strong>import</strong> org.apache.axis.configuration.NullProvider;
+<a name="27" href="#27">27</a> <strong>import</strong> org.apache.axis.message.SOAPEnvelope;
+<a name="28" href="#28">28</a> <strong>import</strong> org.apache.axis.utils.XMLUtils;
+<a name="29" href="#29">29</a> <strong>import</strong> org.apache.commons.logging.Log;
+<a name="30" href="#30">30</a> <strong>import</strong> org.apache.commons.logging.LogFactory;
+<a name="31" href="#31">31</a> <strong>import</strong> org.apache.ws.security.WSSecurityEngine;
+<a name="32" href="#32">32</a> <strong>import</strong> org.apache.ws.security.components.crypto.Crypto;
+<a name="33" href="#33">33</a> <strong>import</strong> org.apache.ws.security.components.crypto.CryptoFactory;
+<a name="34" href="#34">34</a> <strong>import</strong> org.apache.ws.security.message.WSSecSignature;
+<a name="35" href="#35">35</a> <strong>import</strong> org.apache.ws.security.message.WSSecHeader;
+<a name="36" href="#36">36</a> <strong>import</strong> org.w3c.dom.Document;
+<a name="37" href="#37">37</a>
+<a name="38" href="#38">38</a> <strong>import</strong> java.io.ByteArrayInputStream;
+<a name="39" href="#39">39</a> <strong>import</strong> java.io.InputStream;
+<a name="40" href="#40">40</a> <strong>import</strong> java.io.PrintWriter;
+<a name="41" href="#41">41</a>
+<a name="42" href="#42">42</a>
+<a name="43" href="#43">43</a> <em>/**<em>*</em></em>
+<a name="44" href="#44">44</a> <em> * WS-Security Test Case</em>
+<a name="45" href="#45">45</a> <em> * <p/></em>
+<a name="46" href="#46">46</a> <em> * </em>
+<a name="47" href="#47">47</a> <em> * @author Davanum Srinivas (dims@yahoo.com)</em>
+<a name="48" href="#48">48</a> <em> */</em>
+<a name="49" href="#49">49</a> <strong>public</strong> <strong>class</strong> TestWSSecurityNewSOAP12 <strong>extends</strong> TestCase {
+<a name="50" href="#50">50</a> <strong>private</strong> <strong>static</strong> Log log = LogFactory.getLog(TestWSSecurityNewSOAP12.<strong>class</strong>);
+<a name="51" href="#51">51</a> <strong>static</strong> <strong>final</strong> String NS = <span class="string">"http://www.w3.org/2000/09/xmldsig#"</span>;
+<a name="52" href="#52">52</a> <strong>static</strong> <strong>final</strong> String soapMsg = <span class="string">"<?xml version=\"1.0\" encoding=\"UTF-8\"?>"</span> + <span class="string">"<SOAP-ENV:Envelope xmlns:SOAP-ENV=\"http://www.w3.org/2003/05/soap-envelope\" xmlns:xsd=\"http://www.w3.org/2001/XMLSchema\" xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\">"</span> + <span class="string">"<SOAP-ENV:Body>"</span> + <span class="string">"<add xmlns=\"http://ws.apache.org/counter/counter_port_type\">"</span> + <span class="string">"<value xmlns=\"\">15</value>"</span> + <span class="string">"</add>"</span> + <span class="string">"</SOAP-ENV:Body>\r\n \r\n"</span> + <span class="string">"</SOAP-ENV:Envelope>"</span>;
+<a name="53" href="#53">53</a> <strong>static</strong> <strong>final</strong> WSSecurityEngine secEngine = <strong>new</strong> WSSecurityEngine();
+<a name="54" href="#54">54</a> <strong>static</strong> <strong>final</strong> Crypto crypto = CryptoFactory.getInstance();
+<a name="55" href="#55">55</a>
+<a name="56" href="#56">56</a> MessageContext msgContext;
+<a name="57" href="#57">57</a> SOAPEnvelope unsignedEnvelope;
+<a name="58" href="#58">58</a>
+<a name="59" href="#59">59</a> <em>/**<em>*</em></em>
+<a name="60" href="#60">60</a> <em> * TestWSSecurity constructor</em>
+<a name="61" href="#61">61</a> <em> * <p/></em>
+<a name="62" href="#62">62</a> <em> * </em>
+<a name="63" href="#63">63</a> <em> * @param name name of the test</em>
+<a name="64" href="#64">64</a> <em> */</em>
+<a name="65" href="#65">65</a> <strong>public</strong> TestWSSecurityNewSOAP12(String name) {
+<a name="66" href="#66">66</a> <strong>super</strong>(name);
+<a name="67" href="#67">67</a> }
+<a name="68" href="#68">68</a>
+<a name="69" href="#69">69</a> <em>/**<em>*</em></em>
+<a name="70" href="#70">70</a> <em> * JUnit suite</em>
+<a name="71" href="#71">71</a> <em> * <p/></em>
+<a name="72" href="#72">72</a> <em> * </em>
+<a name="73" href="#73">73</a> <em> * @return a junit test suite</em>
+<a name="74" href="#74">74</a> <em> */</em>
+<a name="75" href="#75">75</a> <strong>public</strong> <strong>static</strong> Test suite() {
+<a name="76" href="#76">76</a> <strong>return</strong> <strong>new</strong> TestSuite(TestWSSecurityNewSOAP12.<strong>class</strong>);
+<a name="77" href="#77">77</a> }
+<a name="78" href="#78">78</a>
+<a name="79" href="#79">79</a> <em>/**<em>*</em></em>
+<a name="80" href="#80">80</a> <em> * Main method</em>
+<a name="81" href="#81">81</a> <em> * <p/></em>
+<a name="82" href="#82">82</a> <em> * </em>
+<a name="83" href="#83">83</a> <em> * @param args command line args</em>
+<a name="84" href="#84">84</a> <em> */</em>
+<a name="85" href="#85">85</a> <strong>public</strong> <strong>static</strong> <strong>void</strong> main(String[] args) {
+<a name="86" href="#86">86</a> junit.textui.TestRunner.run(suite());
+<a name="87" href="#87">87</a> }
+<a name="88" href="#88">88</a>
+<a name="89" href="#89">89</a> <em>/**<em>*</em></em>
+<a name="90" href="#90">90</a> <em> * Setup method</em>
+<a name="91" href="#91">91</a> <em> * <p/></em>
+<a name="92" href="#92">92</a> <em> * </em>
+<a name="93" href="#93">93</a> <em> * @throws java.lang.Exception Thrown when there is a problem in setup</em>
+<a name="94" href="#94">94</a> <em> */</em>
+<a name="95" href="#95">95</a> <strong>protected</strong> <strong>void</strong> setUp() throws Exception {
+<a name="96" href="#96">96</a> AxisClient tmpEngine = <strong>new</strong> AxisClient(<strong>new</strong> NullProvider());
+<a name="97" href="#97">97</a> msgContext = <strong>new</strong> MessageContext(tmpEngine);
+<a name="98" href="#98">98</a> unsignedEnvelope = getSOAPEnvelope();
+<a name="99" href="#99">99</a> }
+<a name="100" href="#100">100</a>
+<a name="101" href="#101">101</a> <em>/**<em>*</em></em>
+<a name="102" href="#102">102</a> <em> * Constructs a soap envelope</em>
+<a name="103" href="#103">103</a> <em> * <p/></em>
+<a name="104" href="#104">104</a> <em> * </em>
+<a name="105" href="#105">105</a> <em> * @return soap envelope</em>
+<a name="106" href="#106">106</a> <em> * @throws java.lang.Exception if there is any problem constructing the soap envelope</em>
+<a name="107" href="#107">107</a> <em> */</em>
+<a name="108" href="#108">108</a> <strong>protected</strong> SOAPEnvelope getSOAPEnvelope() throws Exception {
+<a name="109" href="#109">109</a> InputStream in = <strong>new</strong> ByteArrayInputStream(soapMsg.getBytes());
+<a name="110" href="#110">110</a> Message msg = <strong>new</strong> Message(in);
+<a name="111" href="#111">111</a> msg.setMessageContext(msgContext);
+<a name="112" href="#112">112</a> <strong>return</strong> msg.getSOAPEnvelope();
+<a name="113" href="#113">113</a> }
+<a name="114" href="#114">114</a>
+<a name="115" href="#115">115</a> <em>/**<em>*</em></em>
+<a name="116" href="#116">116</a> <em> * Test that signs and verifies a WS-Security envelope</em>
+<a name="117" href="#117">117</a> <em> * <p/></em>
+<a name="118" href="#118">118</a> <em> * </em>
+<a name="119" href="#119">119</a> <em> * @throws java.lang.Exception Thrown when there is any problem in signing or verification</em>
+<a name="120" href="#120">120</a> <em> */</em>
+<a name="121" href="#121">121</a> <strong>public</strong> <strong>void</strong> testX509Signature() throws Exception {
+<a name="122" href="#122">122</a> SOAPEnvelope envelope = <strong>null</strong>;
+<a name="123" href="#123">123</a> WSSecSignature builder = <strong>new</strong> WSSecSignature();
+<a name="124" href="#124">124</a> builder.setUserInfo(<span class="string">"16c73ab6-b892-458f-abf5-2f875f74882e"</span>, <span class="string">"security"</span>);
+<a name="125" href="#125">125</a> <em class="comment">// builder.setUserInfo("john", "keypass");</em>
+<a name="126" href="#126">126</a> log.info(<span class="string">"Before Signing...."</span>);
+<a name="127" href="#127">127</a> Document doc = unsignedEnvelope.getAsDocument();
+<a name="128" href="#128">128</a>
+<a name="129" href="#129">129</a> WSSecHeader secHeader = <strong>new</strong> WSSecHeader();
+<a name="130" href="#130">130</a> secHeader.insertSecurityHeader(doc);
+<a name="131" href="#131">131</a>
+<a name="132" href="#132">132</a> Document signedDoc = builder.build(doc, crypto, secHeader);
+<a name="133" href="#133">133</a>
+<a name="134" href="#134">134</a> <em class="comment">/*</em>
+<a name="135" href="#135">135</a> <em class="comment"> * convert the resulting document into a message first. The toSOAPMessage()</em>
+<a name="136" href="#136">136</a> <em class="comment"> * mehtod performs the necessary c14n call to properly set up the signed</em>
+<a name="137" href="#137">137</a> <em class="comment"> * document and convert it into a SOAP message. After that we extract it</em>
+<a name="138" href="#138">138</a> <em class="comment"> * as a document again for further processing.</em>
+<a name="139" href="#139">139</a> <em class="comment"> */</em>
+<a name="140" href="#140">140</a>
+<a name="141" href="#141">141</a> Message signedMsg = (Message) SOAPUtil.toSOAPMessage(signedDoc);
+<a name="142" href="#142">142</a> <strong>if</strong> (log.isDebugEnabled()) {
+<a name="143" href="#143">143</a> log.debug(<span class="string">"Signed message SOAP 1.2:"</span>);
+<a name="144" href="#144">144</a> XMLUtils.PrettyElementToWriter(signedMsg.getSOAPEnvelope().getAsDOM(), <strong>new</strong> PrintWriter(System.out));
+<a name="145" href="#145">145</a> }
+<a name="146" href="#146">146</a> signedDoc = signedMsg.getSOAPEnvelope().getAsDocument();
+<a name="147" href="#147">147</a> log.info(<span class="string">"After Signing...."</span>);
+<a name="148" href="#148">148</a> verify(signedDoc);
+<a name="149" href="#149">149</a> }
+<a name="150" href="#150">150</a>
+<a name="151" href="#151">151</a> <em>/**<em>*</em></em>
+<a name="152" href="#152">152</a> <em> * Test that signs (twice) and verifies a WS-Security envelope</em>
+<a name="153" href="#153">153</a> <em> * <p/></em>
+<a name="154" href="#154">154</a> <em> * </em>
+<a name="155" href="#155">155</a> <em> * @throws java.lang.Exception Thrown when there is any problem in signing or verification</em>
+<a name="156" href="#156">156</a> <em> */</em>
+<a name="157" href="#157">157</a> <strong>public</strong> <strong>void</strong> testDoubleX509Signature() throws Exception {
+<a name="158" href="#158">158</a> SOAPEnvelope envelope = <strong>null</strong>;
+<a name="159" href="#159">159</a> WSSecSignature builder = <strong>new</strong> WSSecSignature();
+<a name="160" href="#160">160</a> builder.setUserInfo(<span class="string">"16c73ab6-b892-458f-abf5-2f875f74882e"</span>, <span class="string">"security"</span>);
+<a name="161" href="#161">161</a> <em class="comment">// builder.setUserInfo("john", "keypass");</em>
+<a name="162" href="#162">162</a> Document doc = unsignedEnvelope.getAsDocument();
+<a name="163" href="#163">163</a>
+<a name="164" href="#164">164</a> WSSecHeader secHeader = <strong>new</strong> WSSecHeader();
+<a name="165" href="#165">165</a> secHeader.insertSecurityHeader(doc);
+<a name="166" href="#166">166</a>
+<a name="167" href="#167">167</a> Document signedDoc = builder.build(doc, crypto, secHeader);
+<a name="168" href="#168">168</a> Document signedDoc1 = builder.build(signedDoc, crypto, secHeader);
+<a name="169" href="#169">169</a> verify(signedDoc1);
+<a name="170" href="#170">170</a> }
+<a name="171" href="#171">171</a>
+<a name="172" href="#172">172</a> <em>/**<em>*</em></em>
+<a name="173" href="#173">173</a> <em> * Verifies the soap envelope</em>
+<a name="174" href="#174">174</a> <em> * </em>
+<a name="175" href="#175">175</a> <em> * @param env soap envelope</em>
+<a name="176" href="#176">176</a> <em> * @throws java.lang.Exception Thrown when there is a problem in verification</em>
+<a name="177" href="#177">177</a> <em> */</em>
+<a name="178" href="#178">178</a> <strong>private</strong> <strong>void</strong> verify(Document doc) throws Exception {
+<a name="179" href="#179">179</a> secEngine.processSecurityHeader(doc, <strong>null</strong>, <strong>null</strong>, crypto);
+<a name="180" href="#180">180</a> }
+<a name="181" href="#181">181</a> }
+</pre>
+<hr/><div id="footer">This page was automatically generated by <a href="http://maven.apache.org/">Maven</a></div></body>
+</html>
+
Added: webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewST1.html
URL: http://svn.apache.org/viewcvs/webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewST1.html?rev=398880&view=auto
==============================================================================
--- webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewST1.html (added)
+++ webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewST1.html Tue May 2 02:36:22 2006
@@ -0,0 +1,214 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head>
+<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1" /><title>TestWSSecurityNewST1 xref</title>
+<link type="text/css" rel="stylesheet" href="../stylesheet.css" />
+</head>
+<body>
+<pre>
+
+<a name="1" href="#1">1</a> <em class="comment">/*</em>
+<a name="2" href="#2">2</a> <em class="comment"> * Copyright 2003-2004 The Apache Software Foundation.</em>
+<a name="3" href="#3">3</a> <em class="comment"> *</em>
+<a name="4" href="#4">4</a> <em class="comment"> * Licensed under the Apache License, Version 2.0 (the "License");</em>
+<a name="5" href="#5">5</a> <em class="comment"> * you may not use this file except in compliance with the License.</em>
+<a name="6" href="#6">6</a> <em class="comment"> * You may obtain a copy of the License at</em>
+<a name="7" href="#7">7</a> <em class="comment"> *</em>
+<a name="8" href="#8">8</a> <em class="comment"> * <a href="http://www.apache.org/licenses/LICENSE-2.0" target="alexandria_uri">http://www.apache.org/licenses/LICENSE-2.0</a></em>
+<a name="9" href="#9">9</a> <em class="comment"> *</em>
+<a name="10" href="#10">10</a> <em class="comment"> * Unless required by applicable law or agreed to in writing, software</em>
+<a name="11" href="#11">11</a> <em class="comment"> * distributed under the License is distributed on an "AS IS" BASIS,</em>
+<a name="12" href="#12">12</a> <em class="comment"> * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.</em>
+<a name="13" href="#13">13</a> <em class="comment"> * See the License for the specific language governing permissions and</em>
+<a name="14" href="#14">14</a> <em class="comment"> * limitations under the License.</em>
+<a name="15" href="#15">15</a> <em class="comment"> *</em>
+<a name="16" href="#16">16</a> <em class="comment"> */</em>
+<a name="17" href="#17">17</a>
+<a name="18" href="#18">18</a> <strong>package</strong> <a href="../wssec/package-summary.html">wssec</a>;
+<a name="19" href="#19">19</a>
+<a name="20" href="#20">20</a> <strong>import</strong> junit.framework.Test;
+<a name="21" href="#21">21</a> <strong>import</strong> junit.framework.TestCase;
+<a name="22" href="#22">22</a> <strong>import</strong> junit.framework.TestSuite;
+<a name="23" href="#23">23</a>
+<a name="24" href="#24">24</a> <strong>import</strong> org.apache.ws.security.saml.SAMLIssuerFactory;
+<a name="25" href="#25">25</a> <strong>import</strong> org.apache.ws.security.saml.SAMLIssuer;
+<a name="26" href="#26">26</a> <strong>import</strong> org.apache.ws.security.saml.SAMLIssuerFactory;
+<a name="27" href="#27">27</a>
+<a name="28" href="#28">28</a> <strong>import</strong> org.apache.axis.Message;
+<a name="29" href="#29">29</a> <strong>import</strong> org.apache.axis.MessageContext;
+<a name="30" href="#30">30</a> <strong>import</strong> org.apache.axis.client.AxisClient;
+<a name="31" href="#31">31</a> <strong>import</strong> org.apache.axis.utils.XMLUtils;
+<a name="32" href="#32">32</a> <strong>import</strong> org.apache.axis.configuration.NullProvider;
+<a name="33" href="#33">33</a> <strong>import</strong> org.apache.axis.message.SOAPEnvelope;
+<a name="34" href="#34">34</a> <strong>import</strong> org.apache.commons.logging.Log;
+<a name="35" href="#35">35</a> <strong>import</strong> org.apache.commons.logging.LogFactory;
+<a name="36" href="#36">36</a> <strong>import</strong> org.apache.ws.security.WSPasswordCallback;
+<a name="37" href="#37">37</a> <strong>import</strong> org.apache.ws.security.WSSecurityEngine;
+<a name="38" href="#38">38</a> <strong>import</strong> org.apache.ws.security.message.WSSAddSAMLToken;
+<a name="39" href="#39">39</a> <strong>import</strong> org.w3c.dom.Document;
+<a name="40" href="#40">40</a>
+<a name="41" href="#41">41</a> <strong>import</strong> org.opensaml.SAMLAssertion;
+<a name="42" href="#42">42</a>
+<a name="43" href="#43">43</a> <strong>import</strong> javax.security.auth.callback.Callback;
+<a name="44" href="#44">44</a> <strong>import</strong> javax.security.auth.callback.CallbackHandler;
+<a name="45" href="#45">45</a> <strong>import</strong> javax.security.auth.callback.UnsupportedCallbackException;
+<a name="46" href="#46">46</a> <strong>import</strong> java.io.ByteArrayInputStream;
+<a name="47" href="#47">47</a> <strong>import</strong> java.io.IOException;
+<a name="48" href="#48">48</a> <strong>import</strong> java.io.InputStream;
+<a name="49" href="#49">49</a> <strong>import</strong> java.io.PrintWriter;
+<a name="50" href="#50">50</a>
+<a name="51" href="#51">51</a> <em>/**<em>*</em></em>
+<a name="52" href="#52">52</a> <em> * WS-Security Test Case</em>
+<a name="53" href="#53">53</a> <em> * <p/></em>
+<a name="54" href="#54">54</a> <em> * </em>
+<a name="55" href="#55">55</a> <em> * @author Davanum Srinivas (dims@yahoo.com)</em>
+<a name="56" href="#56">56</a> <em> */</em>
+<a name="57" href="#57">57</a> <strong>public</strong> <strong>class</strong> TestWSSecurityNewST1 <strong>extends</strong> TestCase implements CallbackHandler {
+<a name="58" href="#58">58</a> <strong>private</strong> <strong>static</strong> Log log = LogFactory.getLog(TestWSSecurityNewST1.<strong>class</strong>);
+<a name="59" href="#59">59</a> <strong>static</strong> <strong>final</strong> String soapMsg = <span class="string">"<?xml version=\"1.0\" encoding=\"UTF-8\"?>"</span> +
+<a name="60" href="#60">60</a> <span class="string">"<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:xsd=\"http://www.w3.org/2001/XMLSchema\" xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\">"</span> +
+<a name="61" href="#61">61</a> <span class="string">" <soapenv:Body>"</span> +
+<a name="62" href="#62">62</a> <span class="string">" <ns1:testMethod xmlns:ns1=\"uri:LogTestService2\"></ns1:testMethod>"</span> +
+<a name="63" href="#63">63</a> <span class="string">" </soapenv:Body>"</span> +
+<a name="64" href="#64">64</a> <span class="string">"</soapenv:Envelope>"</span>;
+<a name="65" href="#65">65</a>
+<a name="66" href="#66">66</a> <strong>static</strong> <strong>final</strong> WSSecurityEngine secEngine = <strong>new</strong> WSSecurityEngine();
+<a name="67" href="#67">67</a>
+<a name="68" href="#68">68</a> <em class="comment">// static final Crypto crypto = CryptoFactory.getInstance("crypto.properties");</em>
+<a name="69" href="#69">69</a> MessageContext msgContext;
+<a name="70" href="#70">70</a> Message message;
+<a name="71" href="#71">71</a>
+<a name="72" href="#72">72</a> <em>/**<em>*</em></em>
+<a name="73" href="#73">73</a> <em> * TestWSSecurity constructor</em>
+<a name="74" href="#74">74</a> <em> * <p/></em>
+<a name="75" href="#75">75</a> <em> * </em>
+<a name="76" href="#76">76</a> <em> * @param name name of the test</em>
+<a name="77" href="#77">77</a> <em> */</em>
+<a name="78" href="#78">78</a> <strong>public</strong> TestWSSecurityNewST1(String name) {
+<a name="79" href="#79">79</a> <strong>super</strong>(name);
+<a name="80" href="#80">80</a> }
+<a name="81" href="#81">81</a>
+<a name="82" href="#82">82</a> <em>/**<em>*</em></em>
+<a name="83" href="#83">83</a> <em> * JUnit suite</em>
+<a name="84" href="#84">84</a> <em> * <p/></em>
+<a name="85" href="#85">85</a> <em> * </em>
+<a name="86" href="#86">86</a> <em> * @return a junit test suite</em>
+<a name="87" href="#87">87</a> <em> */</em>
+<a name="88" href="#88">88</a> <strong>public</strong> <strong>static</strong> Test suite() {
+<a name="89" href="#89">89</a> <strong>return</strong> <strong>new</strong> TestSuite(TestWSSecurityNewST1.<strong>class</strong>);
+<a name="90" href="#90">90</a> }
+<a name="91" href="#91">91</a>
+<a name="92" href="#92">92</a> <em>/**<em>*</em></em>
+<a name="93" href="#93">93</a> <em> * Main method</em>
+<a name="94" href="#94">94</a> <em> * <p/></em>
+<a name="95" href="#95">95</a> <em> * </em>
+<a name="96" href="#96">96</a> <em> * @param args command line args</em>
+<a name="97" href="#97">97</a> <em> */</em>
+<a name="98" href="#98">98</a> <strong>public</strong> <strong>static</strong> <strong>void</strong> main(String[] args) {
+<a name="99" href="#99">99</a> junit.textui.TestRunner.run(suite());
+<a name="100" href="#100">100</a> }
+<a name="101" href="#101">101</a>
+<a name="102" href="#102">102</a> <em>/**<em>*</em></em>
+<a name="103" href="#103">103</a> <em> * Setup method</em>
+<a name="104" href="#104">104</a> <em> * <p/></em>
+<a name="105" href="#105">105</a> <em> * </em>
+<a name="106" href="#106">106</a> <em> * @throws Exception Thrown when there is a problem in setup</em>
+<a name="107" href="#107">107</a> <em> */</em>
+<a name="108" href="#108">108</a> <strong>protected</strong> <strong>void</strong> setUp() throws Exception {
+<a name="109" href="#109">109</a> AxisClient tmpEngine = <strong>new</strong> AxisClient(<strong>new</strong> NullProvider());
+<a name="110" href="#110">110</a> msgContext = <strong>new</strong> MessageContext(tmpEngine);
+<a name="111" href="#111">111</a> message = getSOAPMessage();
+<a name="112" href="#112">112</a> }
+<a name="113" href="#113">113</a>
+<a name="114" href="#114">114</a> <em>/**<em>*</em></em>
+<a name="115" href="#115">115</a> <em> * Constructs a soap envelope</em>
+<a name="116" href="#116">116</a> <em> * <p/></em>
+<a name="117" href="#117">117</a> <em> * </em>
+<a name="118" href="#118">118</a> <em> * @return soap envelope</em>
+<a name="119" href="#119">119</a> <em> * @throws Exception if there is any problem constructing the soap envelope</em>
+<a name="120" href="#120">120</a> <em> */</em>
+<a name="121" href="#121">121</a> <strong>protected</strong> Message getSOAPMessage() throws Exception {
+<a name="122" href="#122">122</a> InputStream in = <strong>new</strong> ByteArrayInputStream(soapMsg.getBytes());
+<a name="123" href="#123">123</a> Message msg = <strong>new</strong> Message(in);
+<a name="124" href="#124">124</a> msg.setMessageContext(msgContext);
+<a name="125" href="#125">125</a> <strong>return</strong> msg;
+<a name="126" href="#126">126</a> }
+<a name="127" href="#127">127</a>
+<a name="128" href="#128">128</a> <em>/**<em>*</em></em>
+<a name="129" href="#129">129</a> <em> * Test that encrypt and decrypt a WS-Security envelope.</em>
+<a name="130" href="#130">130</a> <em> * This test uses the RSA_15 alogrithm to transport (wrap) the symmetric</em>
+<a name="131" href="#131">131</a> <em> * key.</em>
+<a name="132" href="#132">132</a> <em> * <p/></em>
+<a name="133" href="#133">133</a> <em> * </em>
+<a name="134" href="#134">134</a> <em> * @throws Exception Thrown when there is any problem in signing or verification</em>
+<a name="135" href="#135">135</a> <em> */</em>
+<a name="136" href="#136">136</a> <strong>public</strong> <strong>void</strong> testSAMLUnsignedSenderVouches() throws Exception {
+<a name="137" href="#137">137</a> SOAPEnvelope unsignedEnvelope = message.getSOAPEnvelope();
+<a name="138" href="#138">138</a> SOAPEnvelope envelope = <strong>null</strong>;
+<a name="139" href="#139">139</a> SAMLIssuer saml = SAMLIssuerFactory.getInstance(<span class="string">"saml.properties"</span>);
+<a name="140" href="#140">140</a>
+<a name="141" href="#141">141</a> SAMLAssertion assertion = saml.newAssertion();
+<a name="142" href="#142">142</a>
+<a name="143" href="#143">143</a> WSSAddSAMLToken wsSign = <strong>new</strong> WSSAddSAMLToken();
+<a name="144" href="#144">144</a>
+<a name="145" href="#145">145</a> Document doc = unsignedEnvelope.getAsDocument();
+<a name="146" href="#146">146</a> log.info(<span class="string">"Before SAMLUnsignedSenderVouches...."</span>);
+<a name="147" href="#147">147</a>
+<a name="148" href="#148">148</a> Document signedDoc = wsSign.build(doc, assertion);
+<a name="149" href="#149">149</a> log.info(<span class="string">"After SAMLUnsignedSenderVouches...."</span>);
+<a name="150" href="#150">150</a>
+<a name="151" href="#151">151</a> <em class="comment">/*</em>
+<a name="152" href="#152">152</a> <em class="comment"> * convert the resulting document into a message first. The toSOAPMessage()</em>
+<a name="153" href="#153">153</a> <em class="comment"> * method performs the necessary c14n call to properly set up the signed</em>
+<a name="154" href="#154">154</a> <em class="comment"> * document and convert it into a SOAP message. Check that the contents can't</em>
+<a name="155" href="#155">155</a> <em class="comment"> * be read (cheching if we can find a specific substring). After that we extract it</em>
+<a name="156" href="#156">156</a> <em class="comment"> * as a document again for further processing.</em>
+<a name="157" href="#157">157</a> <em class="comment"> */</em>
+<a name="158" href="#158">158</a>
+<a name="159" href="#159">159</a> Message signedMsg = (Message) SOAPUtil.toSOAPMessage(signedDoc);
+<a name="160" href="#160">160</a> <strong>if</strong> (log.isDebugEnabled()) {
+<a name="161" href="#161">161</a> log.debug(<span class="string">"Unsigned SAML message (sender vouches):"</span>);
+<a name="162" href="#162">162</a> XMLUtils.PrettyElementToWriter(signedMsg.getSOAPEnvelope().getAsDOM(), <strong>new</strong> PrintWriter(System.out));
+<a name="163" href="#163">163</a> }
+<a name="164" href="#164">164</a> String encryptedString = signedMsg.getSOAPPartAsString();
+<a name="165" href="#165">165</a> signedDoc = signedMsg.getSOAPEnvelope().getAsDocument();
+<a name="166" href="#166">166</a> verify(signedDoc);
+<a name="167" href="#167">167</a>
+<a name="168" href="#168">168</a> }
+<a name="169" href="#169">169</a>
+<a name="170" href="#170">170</a> <em>/**<em>*</em></em>
+<a name="171" href="#171">171</a> <em> * Verifies the soap envelope</em>
+<a name="172" href="#172">172</a> <em> * <p/></em>
+<a name="173" href="#173">173</a> <em> * </em>
+<a name="174" href="#174">174</a> <em> * @param envelope </em>
+<a name="175" href="#175">175</a> <em> * @throws Exception Thrown when there is a problem in verification</em>
+<a name="176" href="#176">176</a> <em> */</em>
+<a name="177" href="#177">177</a> <strong>private</strong> <strong>void</strong> verify(Document doc) throws Exception {
+<a name="178" href="#178">178</a> secEngine.processSecurityHeader(doc, <strong>null</strong>, <strong>this</strong>, <strong>null</strong>);
+<a name="179" href="#179">179</a> SOAPUtil.updateSOAPMessage(doc, message);
+<a name="180" href="#180">180</a> String decryptedString = message.getSOAPPartAsString();
+<a name="181" href="#181">181</a> assertTrue(decryptedString.indexOf(<span class="string">"LogTestService2"</span>) > 0 ? <strong>true</strong> : false);
+<a name="182" href="#182">182</a> }
+<a name="183" href="#183">183</a>
+<a name="184" href="#184">184</a> <strong>public</strong> <strong>void</strong> handle(Callback[] callbacks)
+<a name="185" href="#185">185</a> throws IOException, UnsupportedCallbackException {
+<a name="186" href="#186">186</a> <strong>for</strong> (<strong>int</strong> i = 0; i < callbacks.length; i++) {
+<a name="187" href="#187">187</a> <strong>if</strong> (callbacks[i] instanceof WSPasswordCallback) {
+<a name="188" href="#188">188</a> WSPasswordCallback pc = (WSPasswordCallback) callbacks[i];
+<a name="189" href="#189">189</a> <em class="comment">/*</em>
+<a name="190" href="#190">190</a> <em class="comment"> * here call a function/method to lookup the password for</em>
+<a name="191" href="#191">191</a> <em class="comment"> * the given identifier (e.g. a user name or keystore alias)</em>
+<a name="192" href="#192">192</a> <em class="comment"> * e.g.: pc.setPassword(passStore.getPassword(pc.getIdentfifier))</em>
+<a name="193" href="#193">193</a> <em class="comment"> * for Testing we supply a fixed name here.</em>
+<a name="194" href="#194">194</a> <em class="comment"> */</em>
+<a name="195" href="#195">195</a> pc.setPassword(<span class="string">"security"</span>);
+<a name="196" href="#196">196</a> } <strong>else</strong> {
+<a name="197" href="#197">197</a> <strong>throw</strong> <strong>new</strong> UnsupportedCallbackException(callbacks[i], <span class="string">"Unrecognized Callback"</span>);
+<a name="198" href="#198">198</a> }
+<a name="199" href="#199">199</a> }
+<a name="200" href="#200">200</a> }
+<a name="201" href="#201">201</a> }
+</pre>
+<hr/><div id="footer">This page was automatically generated by <a href="http://maven.apache.org/">Maven</a></div></body>
+</html>
+
Added: webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewST2.html
URL: http://svn.apache.org/viewcvs/webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewST2.html?rev=398880&view=auto
==============================================================================
--- webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewST2.html (added)
+++ webservices/wss4j/site/xref-test/wssec/TestWSSecurityNewST2.html Tue May 2 02:36:22 2006
@@ -0,0 +1,225 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head>
+<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1" /><title>TestWSSecurityNewST2 xref</title>
+<link type="text/css" rel="stylesheet" href="../stylesheet.css" />
+</head>
+<body>
+<pre>
+
+<a name="1" href="#1">1</a> <em class="comment">/*</em>
+<a name="2" href="#2">2</a> <em class="comment"> * Copyright 2003-2004 The Apache Software Foundation.</em>
+<a name="3" href="#3">3</a> <em class="comment"> *</em>
+<a name="4" href="#4">4</a> <em class="comment"> * Licensed under the Apache License, Version 2.0 (the "License");</em>
+<a name="5" href="#5">5</a> <em class="comment"> * you may not use this file except in compliance with the License.</em>
+<a name="6" href="#6">6</a> <em class="comment"> * You may obtain a copy of the License at</em>
+<a name="7" href="#7">7</a> <em class="comment"> *</em>
+<a name="8" href="#8">8</a> <em class="comment"> * <a href="http://www.apache.org/licenses/LICENSE-2.0" target="alexandria_uri">http://www.apache.org/licenses/LICENSE-2.0</a></em>
+<a name="9" href="#9">9</a> <em class="comment"> *</em>
+<a name="10" href="#10">10</a> <em class="comment"> * Unless required by applicable law or agreed to in writing, software</em>
+<a name="11" href="#11">11</a> <em class="comment"> * distributed under the License is distributed on an "AS IS" BASIS,</em>
+<a name="12" href="#12">12</a> <em class="comment"> * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.</em>
+<a name="13" href="#13">13</a> <em class="comment"> * See the License for the specific language governing permissions and</em>
+<a name="14" href="#14">14</a> <em class="comment"> * limitations under the License.</em>
+<a name="15" href="#15">15</a> <em class="comment"> *</em>
+<a name="16" href="#16">16</a> <em class="comment"> */</em>
+<a name="17" href="#17">17</a>
+<a name="18" href="#18">18</a> <strong>package</strong> <a href="../wssec/package-summary.html">wssec</a>;
+<a name="19" href="#19">19</a>
+<a name="20" href="#20">20</a> <strong>import</strong> junit.framework.Test;
+<a name="21" href="#21">21</a> <strong>import</strong> junit.framework.TestCase;
+<a name="22" href="#22">22</a> <strong>import</strong> junit.framework.TestSuite;
+<a name="23" href="#23">23</a>
+<a name="24" href="#24">24</a> <strong>import</strong> org.apache.ws.security.saml.SAMLIssuerFactory;
+<a name="25" href="#25">25</a> <strong>import</strong> org.apache.ws.security.saml.SAMLIssuer;
+<a name="26" href="#26">26</a>
+<a name="27" href="#27">27</a> <strong>import</strong> org.apache.axis.Message;
+<a name="28" href="#28">28</a> <strong>import</strong> org.apache.axis.MessageContext;
+<a name="29" href="#29">29</a> <strong>import</strong> org.apache.axis.client.AxisClient;
+<a name="30" href="#30">30</a> <strong>import</strong> org.apache.axis.utils.XMLUtils;
+<a name="31" href="#31">31</a> <strong>import</strong> org.apache.axis.configuration.NullProvider;
+<a name="32" href="#32">32</a> <strong>import</strong> org.apache.axis.message.SOAPEnvelope;
+<a name="33" href="#33">33</a> <strong>import</strong> org.apache.commons.logging.Log;
+<a name="34" href="#34">34</a> <strong>import</strong> org.apache.commons.logging.LogFactory;
+<a name="35" href="#35">35</a> <strong>import</strong> org.apache.ws.security.WSConstants;
+<a name="36" href="#36">36</a> <strong>import</strong> org.apache.ws.security.WSPasswordCallback;
+<a name="37" href="#37">37</a> <strong>import</strong> org.apache.ws.security.WSSecurityEngine;
+<a name="38" href="#38">38</a> <strong>import</strong> org.apache.ws.security.saml.WSSecSignatureSAML;
+<a name="39" href="#39">39</a> <strong>import</strong> org.apache.ws.security.components.crypto.Crypto;
+<a name="40" href="#40">40</a> <strong>import</strong> org.apache.ws.security.components.crypto.CryptoFactory;
+<a name="41" href="#41">41</a> <strong>import</strong> org.apache.ws.security.message.WSSecHeader;
+<a name="42" href="#42">42</a> <strong>import</strong> org.w3c.dom.Document;
+<a name="43" href="#43">43</a>
+<a name="44" href="#44">44</a> <strong>import</strong> org.opensaml.SAMLAssertion;
+<a name="45" href="#45">45</a>
+<a name="46" href="#46">46</a> <strong>import</strong> javax.security.auth.callback.Callback;
+<a name="47" href="#47">47</a> <strong>import</strong> javax.security.auth.callback.CallbackHandler;
+<a name="48" href="#48">48</a> <strong>import</strong> javax.security.auth.callback.UnsupportedCallbackException;
+<a name="49" href="#49">49</a> <strong>import</strong> java.io.ByteArrayInputStream;
+<a name="50" href="#50">50</a> <strong>import</strong> java.io.IOException;
+<a name="51" href="#51">51</a> <strong>import</strong> java.io.InputStream;
+<a name="52" href="#52">52</a> <strong>import</strong> java.io.PrintWriter;
+<a name="53" href="#53">53</a>
+<a name="54" href="#54">54</a> <em>/**<em>*</em></em>
+<a name="55" href="#55">55</a> <em> * WS-Security Test Case</em>
+<a name="56" href="#56">56</a> <em> * <p/></em>
+<a name="57" href="#57">57</a> <em> * </em>
+<a name="58" href="#58">58</a> <em> * @author Davanum Srinivas (dims@yahoo.com)</em>
+<a name="59" href="#59">59</a> <em> */</em>
+<a name="60" href="#60">60</a> <strong>public</strong> <strong>class</strong> TestWSSecurityNewST2 <strong>extends</strong> TestCase implements CallbackHandler {
+<a name="61" href="#61">61</a> <strong>private</strong> <strong>static</strong> Log log = LogFactory.getLog(TestWSSecurityNewST2.<strong>class</strong>);
+<a name="62" href="#62">62</a> <strong>static</strong> <strong>final</strong> String soapMsg = <span class="string">"<?xml version=\"1.0\" encoding=\"UTF-8\"?>"</span> +
+<a name="63" href="#63">63</a> <span class="string">"<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:xsd=\"http://www.w3.org/2001/XMLSchema\" xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\">"</span> +
+<a name="64" href="#64">64</a> <span class="string">" <soapenv:Body>"</span> +
+<a name="65" href="#65">65</a> <span class="string">" <ns1:testMethod xmlns:ns1=\"uri:LogTestService2\"></ns1:testMethod>"</span> +
+<a name="66" href="#66">66</a> <span class="string">" </soapenv:Body>"</span> +
+<a name="67" href="#67">67</a> <span class="string">"</soapenv:Envelope>"</span>;
+<a name="68" href="#68">68</a>
+<a name="69" href="#69">69</a> <strong>static</strong> <strong>final</strong> WSSecurityEngine secEngine = <strong>new</strong> WSSecurityEngine();
+<a name="70" href="#70">70</a>
+<a name="71" href="#71">71</a> <strong>static</strong> <strong>final</strong> Crypto crypto = CryptoFactory.getInstance(<span class="string">"crypto.properties"</span>);
+<a name="72" href="#72">72</a> MessageContext msgContext;
+<a name="73" href="#73">73</a> Message message;
+<a name="74" href="#74">74</a>
+<a name="75" href="#75">75</a> <em>/**<em>*</em></em>
+<a name="76" href="#76">76</a> <em> * TestWSSecurity constructor</em>
+<a name="77" href="#77">77</a> <em> * <p/></em>
+<a name="78" href="#78">78</a> <em> * </em>
+<a name="79" href="#79">79</a> <em> * @param name name of the test</em>
+<a name="80" href="#80">80</a> <em> */</em>
+<a name="81" href="#81">81</a> <strong>public</strong> TestWSSecurityNewST2(String name) {
+<a name="82" href="#82">82</a> <strong>super</strong>(name);
+<a name="83" href="#83">83</a> }
+<a name="84" href="#84">84</a>
+<a name="85" href="#85">85</a> <em>/**<em>*</em></em>
+<a name="86" href="#86">86</a> <em> * JUnit suite</em>
+<a name="87" href="#87">87</a> <em> * <p/></em>
+<a name="88" href="#88">88</a> <em> * </em>
+<a name="89" href="#89">89</a> <em> * @return a junit test suite</em>
+<a name="90" href="#90">90</a> <em> */</em>
+<a name="91" href="#91">91</a> <strong>public</strong> <strong>static</strong> Test suite() {
+<a name="92" href="#92">92</a> <strong>return</strong> <strong>new</strong> TestSuite(TestWSSecurityNewST2.<strong>class</strong>);
+<a name="93" href="#93">93</a> }
+<a name="94" href="#94">94</a>
+<a name="95" href="#95">95</a> <em>/**<em>*</em></em>
+<a name="96" href="#96">96</a> <em> * Main method</em>
+<a name="97" href="#97">97</a> <em> * <p/></em>
+<a name="98" href="#98">98</a> <em> * </em>
+<a name="99" href="#99">99</a> <em> * @param args command line args</em>
+<a name="100" href="#100">100</a> <em> */</em>
+<a name="101" href="#101">101</a> <strong>public</strong> <strong>static</strong> <strong>void</strong> main(String[] args) {
+<a name="102" href="#102">102</a> junit.textui.TestRunner.run(suite());
+<a name="103" href="#103">103</a> }
+<a name="104" href="#104">104</a>
+<a name="105" href="#105">105</a> <em>/**<em>*</em></em>
+<a name="106" href="#106">106</a> <em> * Setup method</em>
+<a name="107" href="#107">107</a> <em> * <p/></em>
+<a name="108" href="#108">108</a> <em> * </em>
+<a name="109" href="#109">109</a> <em> * @throws Exception Thrown when there is a problem in setup</em>
+<a name="110" href="#110">110</a> <em> */</em>
+<a name="111" href="#111">111</a> <strong>protected</strong> <strong>void</strong> setUp() throws Exception {
+<a name="112" href="#112">112</a> AxisClient tmpEngine = <strong>new</strong> AxisClient(<strong>new</strong> NullProvider());
+<a name="113" href="#113">113</a> msgContext = <strong>new</strong> MessageContext(tmpEngine);
+<a name="114" href="#114">114</a> message = getSOAPMessage();
+<a name="115" href="#115">115</a> }
+<a name="116" href="#116">116</a>
+<a name="117" href="#117">117</a> <em>/**<em>*</em></em>
+<a name="118" href="#118">118</a> <em> * Constructs a soap envelope</em>
+<a name="119" href="#119">119</a> <em> * <p/></em>
+<a name="120" href="#120">120</a> <em> * </em>
+<a name="121" href="#121">121</a> <em> * @return soap envelope</em>
+<a name="122" href="#122">122</a> <em> * @throws Exception if there is any problem constructing the soap envelope</em>
+<a name="123" href="#123">123</a> <em> */</em>
+<a name="124" href="#124">124</a> <strong>protected</strong> Message getSOAPMessage() throws Exception {
+<a name="125" href="#125">125</a> InputStream in = <strong>new</strong> ByteArrayInputStream(soapMsg.getBytes());
+<a name="126" href="#126">126</a> Message msg = <strong>new</strong> Message(in);
+<a name="127" href="#127">127</a> msg.setMessageContext(msgContext);
+<a name="128" href="#128">128</a> <strong>return</strong> msg;
+<a name="129" href="#129">129</a> }
+<a name="130" href="#130">130</a>
+<a name="131" href="#131">131</a> <em>/**<em>*</em></em>
+<a name="132" href="#132">132</a> <em> * Test that encrypt and decrypt a WS-Security envelope.</em>
+<a name="133" href="#133">133</a> <em> * This test uses the RSA_15 alogrithm to transport (wrap) the symmetric</em>
+<a name="134" href="#134">134</a> <em> * key.</em>
+<a name="135" href="#135">135</a> <em> * <p/></em>
+<a name="136" href="#136">136</a> <em> * </em>
+<a name="137" href="#137">137</a> <em> * @throws Exception Thrown when there is any problem in signing or verification</em>
+<a name="138" href="#138">138</a> <em> */</em>
+<a name="139" href="#139">139</a> <strong>public</strong> <strong>void</strong> testSAMLSignedSenderVouches() throws Exception {
+<a name="140" href="#140">140</a> SOAPEnvelope unsignedEnvelope = message.getSOAPEnvelope();
+<a name="141" href="#141">141</a> SAMLIssuer saml = SAMLIssuerFactory.getInstance(<span class="string">"saml3.properties"</span>);
+<a name="142" href="#142">142</a>
+<a name="143" href="#143">143</a> SAMLAssertion assertion = saml.newAssertion();
+<a name="144" href="#144">144</a>
+<a name="145" href="#145">145</a> String issuerKeyName = saml.getIssuerKeyName();
+<a name="146" href="#146">146</a> String issuerKeyPW = saml.getIssuerKeyPassword();
+<a name="147" href="#147">147</a> Crypto issuerCrypto = saml.getIssuerCrypto();
+<a name="148" href="#148">148</a> WSSecSignatureSAML wsSign = <strong>new</strong> WSSecSignatureSAML();
+<a name="149" href="#149">149</a> wsSign.setKeyIdentifierType(WSConstants.BST_DIRECT_REFERENCE);
+<a name="150" href="#150">150</a>
+<a name="151" href="#151">151</a> log.info(<span class="string">"Before SAMLSignedSenderVouches...."</span>);
+<a name="152" href="#152">152</a>
+<a name="153" href="#153">153</a> Document doc = unsignedEnvelope.getAsDocument();
+<a name="154" href="#154">154</a>
+<a name="155" href="#155">155</a> WSSecHeader secHeader = <strong>new</strong> WSSecHeader();
+<a name="156" href="#156">156</a> secHeader.insertSecurityHeader(doc);
+<a name="157" href="#157">157</a>
+<a name="158" href="#158">158</a> Document signedDoc = wsSign.build(doc, <strong>null</strong>, assertion, issuerCrypto, issuerKeyName, issuerKeyPW, secHeader);
+<a name="159" href="#159">159</a> log.info(<span class="string">"After SAMLSignedSenderVouches...."</span>);
+<a name="160" href="#160">160</a>
+<a name="161" href="#161">161</a> <em class="comment">/*</em>
+<a name="162" href="#162">162</a> <em class="comment"> * convert the resulting document into a message first. The toSOAPMessage()</em>
+<a name="163" href="#163">163</a> <em class="comment"> * method performs the necessary c14n call to properly set up the signed</em>
+<a name="164" href="#164">164</a> <em class="comment"> * document and convert it into a SOAP message. Check that the contents can't</em>
+<a name="165" href="#165">165</a> <em class="comment"> * be read (cheching if we can find a specific substring). After that we extract it</em>
+<a name="166" href="#166">166</a> <em class="comment"> * as a document again for further processing.</em>
+<a name="167" href="#167">167</a> <em class="comment"> */</em>
+<a name="168" href="#168">168</a>
+<a name="169" href="#169">169</a> Message signedMsg = (Message) SOAPUtil.toSOAPMessage(signedDoc);
+<a name="170" href="#170">170</a> <strong>if</strong> (log.isDebugEnabled()) {
+<a name="171" href="#171">171</a> log.debug(<span class="string">"Signed SAML message (sender vouches):"</span>);
+<a name="172" href="#172">172</a> XMLUtils.PrettyElementToWriter(signedMsg.getSOAPEnvelope().getAsDOM(), <strong>new</strong> PrintWriter(System.out));
+<a name="173" href="#173">173</a> }
+<a name="174" href="#174">174</a> String encryptedString = signedMsg.getSOAPPartAsString();
+<a name="175" href="#175">175</a> signedDoc = signedMsg.getSOAPEnvelope().getAsDocument();
+<a name="176" href="#176">176</a> verify(signedDoc);
+<a name="177" href="#177">177</a>
+<a name="178" href="#178">178</a> }
+<a name="179" href="#179">179</a>
+<a name="180" href="#180">180</a>
+<a name="181" href="#181">181</a> <em>/**<em>*</em></em>
+<a name="182" href="#182">182</a> <em> * Verifies the soap envelope</em>
+<a name="183" href="#183">183</a> <em> * <p/></em>
+<a name="184" href="#184">184</a> <em> * </em>
+<a name="185" href="#185">185</a> <em> * @param doc</em>
+<a name="186" href="#186">186</a> <em> * @throws Exception Thrown when there is a problem in verification</em>
+<a name="187" href="#187">187</a> <em> */</em>
+<a name="188" href="#188">188</a> <strong>private</strong> <strong>void</strong> verify(Document doc) throws Exception {
+<a name="189" href="#189">189</a> secEngine.processSecurityHeader(doc, <strong>null</strong>, <strong>this</strong>, crypto);
+<a name="190" href="#190">190</a> SOAPUtil.updateSOAPMessage(doc, message);
+<a name="191" href="#191">191</a> String decryptedString = message.getSOAPPartAsString();
+<a name="192" href="#192">192</a> assertTrue(decryptedString.indexOf(<span class="string">"LogTestService2"</span>) > 0 ? <strong>true</strong> : false);
+<a name="193" href="#193">193</a> }
+<a name="194" href="#194">194</a>
+<a name="195" href="#195">195</a> <strong>public</strong> <strong>void</strong> handle(Callback[] callbacks)
+<a name="196" href="#196">196</a> throws IOException, UnsupportedCallbackException {
+<a name="197" href="#197">197</a> <strong>for</strong> (<strong>int</strong> i = 0; i < callbacks.length; i++) {
+<a name="198" href="#198">198</a> <strong>if</strong> (callbacks[i] instanceof WSPasswordCallback) {
+<a name="199" href="#199">199</a> WSPasswordCallback pc = (WSPasswordCallback) callbacks[i];
+<a name="200" href="#200">200</a> <em class="comment">/*</em>
+<a name="201" href="#201">201</a> <em class="comment"> * here call a function/method to lookup the password for</em>
+<a name="202" href="#202">202</a> <em class="comment"> * the given identifier (e.g. a user name or keystore alias)</em>
+<a name="203" href="#203">203</a> <em class="comment"> * e.g.: pc.setPassword(passStore.getPassword(pc.getIdentfifier))</em>
+<a name="204" href="#204">204</a> <em class="comment"> * for Testing we supply a fixed name here.</em>
+<a name="205" href="#205">205</a> <em class="comment"> */</em>
+<a name="206" href="#206">206</a> pc.setPassword(<span class="string">"security"</span>);
+<a name="207" href="#207">207</a> } <strong>else</strong> {
+<a name="208" href="#208">208</a> <strong>throw</strong> <strong>new</strong> UnsupportedCallbackException(callbacks[i], <span class="string">"Unrecognized Callback"</span>);
+<a name="209" href="#209">209</a> }
+<a name="210" href="#210">210</a> }
+<a name="211" href="#211">211</a> }
+<a name="212" href="#212">212</a> }
+</pre>
+<hr/><div id="footer">This page was automatically generated by <a href="http://maven.apache.org/">Maven</a></div></body>
+</html>
+
---------------------------------------------------------------------
To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: wss4j-dev-help@ws.apache.org