You are viewing a plain text version of this content. The canonical link for it is here.
Posted to fx-dev@ws.apache.org by Jorge Martín Cuervo <jo...@defactops.com> on 2005/09/13 12:58:13 UTC
No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Hello, i'm trying to make a webservice with a username/password
validation and encrypted data. First of all, i used UsernameToken and it
works perfect, but when i begin to code encryption it didn't work. do i
need any .jar?
software used:
- jakarta-tomcat-4.1.31
- axis 1.2.1
- wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
server jars:
./WEB-INF/lib/wsdl4j-1.5.1.jar
./WEB-INF/lib/saaj.jar
./WEB-INF/lib/log4j-1.2.8.jar
./WEB-INF/lib/jaxrpc.jar
./WEB-INF/lib/commons-logging-1.0.4.jar
./WEB-INF/lib/commons-discovery-0.2.jar
./WEB-INF/lib/axis.jar
./WEB-INF/lib/axis-ant.jar
./WEB-INF/lib/exist.jar
./WEB-INF/lib/xmldb.jar
./WEB-INF/lib/xmlrpc-1.2-patched.jar
./WEB-INF/lib/wss4j.jar
./WEB-INF/lib/opensaml-1.0.1.jar
./WEB-INF/lib/xmlsec-1.2.96.jar
./WEB-INF/lib/bcprov-jdk13-128.jar
client jars:
./libs/jaxrpc.jar
./libs/axis.jar
./libs/commons-logging-1.0.4.jar
./libs/commons-discovery-0.2.jar
./libs/saaj.jar
./libs/wsdl4j-1.5.1.jar
./libs/wss4j.jar
./libs/opensaml-1.0.1.jar
./libs/xmlsec-1.2.96.jar
./libs/bcprov-jdk13-128.jar
client side files:
--------------------------------------------------------------------------------------
The stub clases were generated with wsdl2java axis tool.
(client-deploy.wsdd)
--------------------------------------------------------------------------------------
<deployment xmlns="http://xml.apache.org/axis/wsdd/"
xmlns:java="http://xml.apache.org/axis/wsdd/providers/java">
<transport name="http"
pivot="java:org.apache.axis.transport.http.HTTPSender"/>
<globalConfiguration>
<requestFlow>
<handler type="java:org.apache.ws.axis.security.WSDoAllSender" >
<parameter name="action" value="UsernameToken Encrypt"/>
<parameter name="passwordType" value="PasswordDigest"/>
<parameter name="addUTElement" value="Nonce Created" />
<parameter name="encryptionPropFile" value="crypto.properties" />
<parameter name="encryptionKeyIdentifier" value="X509KeyIdentifier"
/>
<parameter name="encryptionUser" value="SmartCVWS" />
</handler>
</requestFlow>
</globalConfiguration>
</deployment>
(crypto.properties)
---------------------------------------
org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin
org.apache.ws.security.crypto.merlin.file=keystore
org.apache.ws.security.crypto.merlin.keystore.type=JKS
org.apache.ws.security.crypto.merlin.keystore.password=*******
org.apache.ws.security.crypto.merlin.keystore.alias=SmartCVWS
(keystore- generated with)
----------------------------------------------------------------------------
keytool -genkey -dname "CN=Jorge Martin Cuervo, OU=Desarrollo,
O=DeFacto, L=Aviles, ST=Principado de Asturias, C=ES" -alias SmartCVWS
-keystore keystore -keyalg rsa
(Test.java)
---------------------------------------------------------------------------------
import java.io.IOException;
import java.rmi.RemoteException;
import java.util.Date;
import javax.security.auth.callback.Callback;
import javax.security.auth.callback.CallbackHandler;
import javax.security.auth.callback.UnsupportedCallbackException;
import javax.xml.rpc.ServiceException;
import localhost.smartcvws.services.SmartCVWS.CandidateWS;
import localhost.smartcvws.services.SmartCVWS.CandidateWSService;
import localhost.smartcvws.services.SmartCVWS.CandidateWSServiceLocator;
import org.apache.axis.EngineConfiguration;
import org.apache.axis.client.Stub;
import org.apache.axis.configuration.FileProvider;
import org.apache.ws.security.WSPasswordCallback;
import org.apache.ws.security.handler.WSHandlerConstants;
/*
* $Id: Test.java,v 1.5 2005/09/12 10:43:18 jorge Exp $
* $Log: Test.java,v $
* Revision 1.5 2005/09/12 10:43:18 jorge
* asignado usuario por codigo
*
* Revision 1.4 2005/09/12 10:20:33 jorge
* asignado usuario por codigo
*
* Revision 1.3 2005/09/07 17:13:13 jorge
* seguridad wss4j
*
* Revision 1.2 2005/09/07 09:19:15 jorge
* ejemplo con el uso de los dos metodos
*
* Revision 1.1 2005/09/07 09:12:10 jorge
* cliente ws
*
* Created on 07-sep-2005 11:07:51
*
*/
/**
* @author Jorge Martin Cuervo <jo...@defactops.com>
*
*/
public class Test implements CallbackHandler {
public static void main(String[] args) {
new Test("wss4j", "security");
}
private String username;
private String password;
/**
* @param username
* @param password
*/
public Test(String username, String password) {
super();
this.username = username;
this.password = password;
run();
}
private void run() {
EngineConfiguration config = new FileProvider("client_deploy.wsdd");
CandidateWSService service = new CandidateWSServiceLocator(config);
try {
CandidateWS candidate = service.getSmartCVWS();
((Stub)candidate)._setProperty(WSHandlerConstants.USER, username);
((Stub)candidate)._setProperty(WSHandlerConstants.PW_CALLBACK_REF,
this);
candidate.setCandidate("jorge.xml", "<date>"+ new Date()+
"</date>");
System.out.println(candidate.getCandidate("jorge.xml"));
} catch (ServiceException e) {
e.printStackTrace();
} catch (RemoteException e) {
e.printStackTrace();
}
}
/**
* @see
javax.security.auth.callback.CallbackHandler#handle(javax.security.auth.callback.Callback[])
*/
public void handle(Callback[] callbacks) throws IOException,
UnsupportedCallbackException {
for (int i = 0; i < callbacks.length; i++) {
if (callbacks[i] instanceof WSPasswordCallback) {
WSPasswordCallback pc =
(WSPasswordCallback)callbacks[i];
// set the password given a username
if (username.equals(pc.getIdentifer())) {
pc.setPassword(password);
}
} else {
throw new UnsupportedCallbackException(callbacks[i],
"Unrecognized Callback");
}
}
}
}
server side files:
(deploy.wsdd)
-----------------------------------------------------------------------------------------
<deployment xmlns="http://xml.apache.org/axis/wsdd/"
xmlns:java="http://xml.apache.org/axis/wsdd/providers/java">
<service name="SmartCVWS" provider="java:RPC">
<requestFlow>
<handler type="java:org.apache.ws.axis.security.WSDoAllReceiver">
<parameter name="passwordCallbackClass" value="PWCallback"/>
<parameter name="action" value="UsernameToken Encrypt"/>
<parameter name="decryptionPropFile" value="crypto.properties" />
</handler>
</requestFlow>
<parameter name="className"
value="com.defactops.smartcv.CandidateWS"/>
<parameter name="allowedMethods" value="*"/>
</service>
</deployment>
(crypto.properties)
---------------------------------------
org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin
org.apache.ws.security.crypto.merlin.file=keystore
org.apache.ws.security.crypto.merlin.keystore.type=JKS
org.apache.ws.security.crypto.merlin.keystore.password=*******
org.apache.ws.security.crypto.merlin.keystore.alias=SmartCVWS
(keystore- generated with)
----------------------------------------------------------------------------
keytool -genkey -dname "CN=Jorge Martin Cuervo, OU=Desarrollo,
O=DeFacto, L=Aviles, ST=Principado de Asturias, C=ES" -alias SmartCVWS
-keystore keystore -keyalg rsa
the error messages presented are:
(client)
----------------------------------------------------------------
13-sep-2005 12:37:25 org.apache.axis.utils.JavaUtils
isAttachmentSupported
ADVERTENCIA: Unable to find required classes
(javax.activation.DataHandler and javax.mail.internet.MimeMultipart).
Attachment support is disabled.
13-sep-2005 12:37:27
org.apache.ws.security.components.crypto.CryptoFactory loadClass
INFO: Using Crypto Engine
[org.apache.ws.security.components.crypto.Merlin]
AxisFault
faultCode:
{http://schemas.xmlsoap.org/soap/envelope/}Server.generalException
faultSubcode:
faultString: WSDoAllReceiver: security processing failed; nested
exception is:
org.apache.ws.security.WSSecurityException: An unsupported signature or
encryption algorithm was used (unsupported key transport encryption
algorithm: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5)
faultActor:
faultNode:
faultDetail:
{http://xml.apache.org/axis/}hostname:outsourcing1
WSDoAllReceiver: security processing failed; nested exception is:
org.apache.ws.security.WSSecurityException: An unsupported signature or
encryption algorithm was used (unsupported key transport encryption
algorithm: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5)
at
org.apache.axis.message.SOAPFaultBuilder.createFault(SOAPFaultBuilder.java:221)
at
org.apache.axis.message.SOAPFaultBuilder.endElement(SOAPFaultBuilder.java:128)
at
org.apache.axis.encoding.DeserializationContext.endElement(DeserializationContext.java:1087)
at org.apache.crimson.parser.Parser2.maybeElement(Parser2.java:1712)
at org.apache.crimson.parser.Parser2.content(Parser2.java:1963)
at org.apache.crimson.parser.Parser2.maybeElement(Parser2.java:1691)
at org.apache.crimson.parser.Parser2.content(Parser2.java:1963)
at org.apache.crimson.parser.Parser2.maybeElement(Parser2.java:1691)
at org.apache.crimson.parser.Parser2.parseInternal(Parser2.java:667)
at org.apache.crimson.parser.Parser2.parse(Parser2.java:337)
at
org.apache.crimson.parser.XMLReaderImpl.parse(XMLReaderImpl.java:448)
at javax.xml.parsers.SAXParser.parse(SAXParser.java:345)
at
org.apache.axis.encoding.DeserializationContext.parse(DeserializationContext.java:227)
at org.apache.axis.SOAPPart.getAsSOAPEnvelope(SOAPPart.java:696)
at org.apache.axis.Message.getSOAPEnvelope(Message.java:424)
at
org.apache.axis.handlers.soap.MustUnderstandChecker.invoke(MustUnderstandChecker.java:62)
at org.apache.axis.client.AxisClient.invoke(AxisClient.java:206)
at org.apache.axis.client.Call.invokeEngine(Call.java:2765)
at org.apache.axis.client.Call.invoke(Call.java:2748)
at org.apache.axis.client.Call.invoke(Call.java:2424)
at org.apache.axis.client.Call.invoke(Call.java:2347)
at org.apache.axis.client.Call.invoke(Call.java:1804)
at
localhost.smartcvws.services.SmartCVWS.SmartCVWSSoapBindingStub.setCandidate(SmartCVWSSoapBindingStub.java:145)
at Test.run(Test.java:80)
at Test.<init>(Test.java:63)
at Test.main(Test.java:49)
(server)
--------------------------------------
- Using Crypto Engine [org.apache.ws.security.components.crypto.Merlin]
WebappClassLoader: Lifecycle error : CL stopped
java.lang.Exception: Stack trace
at java.lang.Thread.dumpStack(Thread.java:1064)
at
org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1292)
at
org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1252)
at javax.crypto.SunJCE_b.c(DashoA6275)
at javax.crypto.SunJCE_b.a(DashoA6275)
at javax.crypto.Cipher.a(DashoA6275)
at javax.crypto.Cipher.getInstance(DashoA6275)
at
org.apache.ws.security.util.WSSecurityUtil.getCipherInstance(WSSecurityUtil.java:883)
at
org.apache.ws.security.WSSecurityEngine.handleEncryptedKey(WSSecurityEngine.java:958)
at
org.apache.ws.security.WSSecurityEngine.handleEncryptedKey(WSSecurityEngine.java:926)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:349)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:245)
at
org.apache.ws.axis.security.WSDoAllReceiver.invoke(WSDoAllReceiver.java:156)
at
org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
at
org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
at
org.apache.axis.handlers.soap.SOAPService.invoke(SOAPService.java:453)
at org.apache.axis.server.AxisServer.invoke(AxisServer.java:281)
at
org.apache.axis.transport.http.AxisServlet.doPost(AxisServlet.java:699)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:716)
at
org.apache.axis.transport.http.AxisServletBase.service(AxisServletBase.java:327)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:809)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:200)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:146)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:209)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:144)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.catalina.core.StandardContext.invoke(StandardContext.java:2358)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:133)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.valves.ErrorDispatcherValve.invoke(ErrorDispatcherValve.java:118)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:594)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:116)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:594)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:127)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.java:152)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:799)
at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:705)
at
org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:577)
at
org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:683)
at java.lang.Thread.run(Thread.java:534)
WebappClassLoader: Lifecycle error : CL stopped
java.lang.Exception: Stack trace
at java.lang.Thread.dumpStack(Thread.java:1064)
at
org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1292)
at
org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1252)
at javax.crypto.SunJCE_b.c(DashoA6275)
at javax.crypto.SunJCE_b.a(DashoA6275)
at javax.crypto.Cipher.a(DashoA6275)
at javax.crypto.Cipher.getInstance(DashoA6275)
at
org.apache.ws.security.util.WSSecurityUtil.getCipherInstance(WSSecurityUtil.java:883)
at
org.apache.ws.security.WSSecurityEngine.handleEncryptedKey(WSSecurityEngine.java:958)
at
org.apache.ws.security.WSSecurityEngine.handleEncryptedKey(WSSecurityEngine.java:926)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:349)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:245)
at
org.apache.ws.axis.security.WSDoAllReceiver.invoke(WSDoAllReceiver.java:156)
at
org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
at
org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
at
org.apache.axis.handlers.soap.SOAPService.invoke(SOAPService.java:453)
at org.apache.axis.server.AxisServer.invoke(AxisServer.java:281)
at
org.apache.axis.transport.http.AxisServlet.doPost(AxisServlet.java:699)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:716)
at
org.apache.axis.transport.http.AxisServletBase.service(AxisServletBase.java:327)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:809)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:200)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:146)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:209)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:144)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.catalina.core.StandardContext.invoke(StandardContext.java:2358)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:133)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.valves.ErrorDispatcherValve.invoke(ErrorDispatcherValve.java:118)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:594)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:116)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:594)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:127)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.java:152)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:799)
at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:705)
at
org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:577)
at
org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:683)
at java.lang.Thread.run(Thread.java:534)
WebappClassLoader: Lifecycle error : CL stopped
java.lang.Exception: Stack trace
at java.lang.Thread.dumpStack(Thread.java:1064)
at
org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1292)
at
org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1252)
at javax.crypto.SunJCE_b.c(DashoA6275)
at javax.crypto.SunJCE_b.a(DashoA6275)
at javax.crypto.Cipher.a(DashoA6275)
at javax.crypto.Cipher.getInstance(DashoA6275)
at
org.apache.ws.security.util.WSSecurityUtil.getCipherInstance(WSSecurityUtil.java:883)
at
org.apache.ws.security.WSSecurityEngine.handleEncryptedKey(WSSecurityEngine.java:958)
at
org.apache.ws.security.WSSecurityEngine.handleEncryptedKey(WSSecurityEngine.java:926)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:349)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:245)
at
org.apache.ws.axis.security.WSDoAllReceiver.invoke(WSDoAllReceiver.java:156)
at
org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
at
org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
at
org.apache.axis.handlers.soap.SOAPService.invoke(SOAPService.java:453)
at org.apache.axis.server.AxisServer.invoke(AxisServer.java:281)
at
org.apache.axis.transport.http.AxisServlet.doPost(AxisServlet.java:699)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:716)
at
org.apache.axis.transport.http.AxisServletBase.service(AxisServletBase.java:327)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:809)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:200)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:146)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:209)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:144)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.catalina.core.StandardContext.invoke(StandardContext.java:2358)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:133)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.valves.ErrorDispatcherValve.invoke(ErrorDispatcherValve.java:118)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:594)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:116)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:594)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:127)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.java:152)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:799)
at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:705)
at
org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:577)
at
org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:683)
at java.lang.Thread.run(Thread.java:534)
org.apache.ws.security.WSSecurityException: An unsupported signature or
encryption algorithm was used (unsupported key transport encryption
algorithm: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5)
at
org.apache.ws.security.util.WSSecurityUtil.getCipherInstance(WSSecurityUtil.java:901)
at
org.apache.ws.security.WSSecurityEngine.handleEncryptedKey(WSSecurityEngine.java:958)
at
org.apache.ws.security.WSSecurityEngine.handleEncryptedKey(WSSecurityEngine.java:926)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:349)
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:245)
at
org.apache.ws.axis.security.WSDoAllReceiver.invoke(WSDoAllReceiver.java:156)
at
org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
at
org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
at
org.apache.axis.handlers.soap.SOAPService.invoke(SOAPService.java:453)
at org.apache.axis.server.AxisServer.invoke(AxisServer.java:281)
at
org.apache.axis.transport.http.AxisServlet.doPost(AxisServlet.java:699)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:716)
at
org.apache.axis.transport.http.AxisServletBase.service(AxisServletBase.java:327)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:809)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:200)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:146)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:209)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:144)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.catalina.core.StandardContext.invoke(StandardContext.java:2358)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:133)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.valves.ErrorDispatcherValve.invoke(ErrorDispatcherValve.java:118)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:594)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:116)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:594)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:127)
at
org.apache.catalina.core.StandardPipeline$StandardPipelineValveContext.invokeNext(StandardPipeline.java:596)
at
org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:433)
at
org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:948)
at
org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.java:152)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:799)
at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:705)
at
org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:577)
at
org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:683)
at java.lang.Thread.run(Thread.java:534)
SOAP detail (viewed using axis tcpmonitor)
------------------------------------------------------------------------------------
POST /smartcvws/services/SmartCVWS HTTP/1.0
Content-Type: text/xml; charset=utf-8
Accept: application/soap+xml, application/dime, multipart/related,
text/*
User-Agent: Axis/1.2.1
Host: 127.0.0.1:8081
Cache-Control: no-cache
Pragma: no-cache
SOAPAction: ""
Content-Length: 3813
<?xml version="1.0" encoding="UTF-8"?>
<soapenv:Envelope
xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/"
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
xmlns:xsd="http://www.w3.org/2001/XMLSchema"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<soapenv:Header>
<wsse:Security
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" soapenv:mustUnderstand="1">
<xenc:EncryptedKey>
<xenc:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"></xenc:EncryptionMethod>
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<wsse:SecurityTokenReference><wsse:KeyIdentifier
EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3">MIICfDCCAeUCBEMmmpIwDQYJKoZIhvcNAQEEBQAwgYQxCzAJBgNVBAYTAkVTMR8wHQYDVQQIExZQ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</wsse:KeyIdentifier></wsse:SecurityTokenReference>
</ds:KeyInfo>
<xenc:CipherData><xenc:CipherValue>jWBWIGVBDODQ77g9jjMj9c4S7gqGDLkggOiBYHCPQWrS/qxG4rB33GHiOdsSq086BHHK4qmtNdWe
VCdGV0sQys5ubisj6ivWPYnasZaDeMxd0cYhvY+3/e5XurBVoFbEGfjVZB2RR4UcONQtFi2AkGu4
DAyrxAFpKhvPGrEBXjE=</xenc:CipherValue></xenc:CipherData>
<xenc:ReferenceList><xenc:DataReference
URI="#EncDataId-13302614"></xenc:DataReference></xenc:ReferenceList></xenc:EncryptedKey>
<wsse:UsernameToken><wsse:Username>wss4j</wsse:Username><wsse:Password
Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordDigest">H7W+MpbSYN1g0fFFdbWyVc2Ruv4=</wsse:Password><wsse:Nonce>GxdWVr/IrGstOMKcuXBxTA==</wsse:Nonce><wsu:Created xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">2005-09-13T10:37:27.160Z</wsu:Created></wsse:UsernameToken></wsse:Security></soapenv:Header><soapenv:Body><xenc:EncryptedData Id="EncDataId-13302614" Type="http://www.w3.org/2001/04/xmlenc#Content"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"></xenc:EncryptionMethod><xenc:CipherData><xenc:CipherValue>CyK2KiGB275vfbLDE4HyYsEsA8YXI9Vz1waEnM5SaSM0sRBQ61z0LvcVriWwZEHyo5reIceWFEVM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</xenc:CipherValue></xenc:CipherData></xenc:EncryptedData></soapenv:Body></soapenv:Envelope>
------------------------------------------------------------------------------------
HTTP/1.1 500 Error Interno del Servidor
Content-Type: text/xml;charset=utf-8
Date: Tue, 13 Sep 2005 10:37:30 GMT
Server: Apache-Coyote/1.1
Connection: close
<?xml version="1.0" encoding="utf-8"?><soapenv:Envelope
xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/"
xmlns:xsd="http://www.w3.org/2001/XMLSchema"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><soapenv:Body><soapenv:Fault><faultcode>soapenv:Server.generalException</faultcode><faultstring>WSDoAllReceiver: security processing failed; nested exception is:
org.apache.ws.security.WSSecurityException: An unsupported signature or
encryption algorithm was used (unsupported key transport encryption
algorithm: No such algorithm:
http://www.w3.org/2001/04/xmlenc#rsa-1_5)</faultstring><detail><ns1:hostname xmlns:ns1="http://xml.apache.org/axis/">outsourcing1</ns1:hostname></detail></soapenv:Fault></soapenv:Body></soapenv:Envelope>
------------------------------------------------------------------------------------
--
;-)
____________________________________
Jorge Martin Cuervo
Analista Programador
Outsourcing Emarketplace
deFacto Powered by Standards
email <jo...@defactops.com>
voz +34 985 129 820
voz +34 660 026 384
____________________________________
Re: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Posted by Jorge Martín Cuervo <jo...@defactops.com>.
Hi all,
After try it in several computers (.jar refers always bouncy castle
.jar):
- osx laptop (works with .jar in common/lib, no jce, no java.security
change) i'll try again till it work like others
- windows xp pro laptop (works ok with .jar in WEB-INF/lib context dir,
no jce, no java.security change)
- linux laptop (like windows)
- my linux desktop (no seems work without jce, java.security change,
neither .jar in /lib/ext, but now like other computer works without all
mencioned above)
i dont know why first of all it crash until today. Perhaps too time
without reboot, i don't know. Redeploy axis service is the only thing
that i made in new computers.
All of them use tomcat 4.1.30 with same files checkouted from my cvs.
El mié, 14 de 09 de 2005 a las 16:37, Jorge Martín Cuervo escribió:
> Hello again,
>
> I've tryed in my laptop (with mac osx). Putting bouncy castle .jar in
> <tomcat_dir>/common/lib it works (i didn't install unlimited strength
> jce, if exists for mac :p, neither changed java.security) and ...
>
> it woks perfect!
>
> The problem at all is the tomcat classloader. Any idea about it?
>
> PD: now i'll try in my linux desktop.
>
> Thanks.
>
>
> El mié, 14 de 09 de 2005 a las 12:42, Jorge Martín Cuervo escribió:
>
> > Hello,
> >
> > I've installed the bouncycastle jar in <jre_home>/lib/ext and i've
> > changed <jre_home>/lib/security/java.security to add this line:
> >
> > security.provider.6=org.bouncycastle.jce.provider.BouncyCastleProvider
> >
> > it works, and i've chaged to bi-directional encryption with adding
> > this:
> >
> > (client side .wsdd)
> > <responseFlow>
> > <handler type="java:org.apache.ws.axis.security.WSDoAllReceiver">
> > <parameter name="action" value="Encrypt"/>
> > <parameter name="decryptionPropFile" value="crypto.properties" />
> > </handler>
> > </responseFlow>
> >
> > (server side .wsdd)
> > <responseFlow>
> > <handler type="java:org.apache.ws.axis.security.WSDoAllSender" >
> > <parameter name="action" value="Encrypt"/>
> > <parameter name="passwordCallbackClass" value="PWCallback"/>
> > <parameter name="passwordType" value="PasswordDigest"/>
> > <parameter name="addUTElement" value="Nonce Created" />
> > <parameter name="encryptionPropFile" value="crypto.properties"
> > />
> > <parameter name="encryptionKeyIdentifier"
> > value="X509KeyIdentifier" />
> > <parameter name="encryptionUser" value="SmartCVWS" />
> > </handler>
> > </responseFlow>
> >
> >
> > It' works fine too, but in the password callback class i need to
> > code the password of the keystore when the pc.getIdentifer() is
> > "smartcvws".
> >
> > I think that it is the encryptionUser of the .wsdd in lowercase but
> > i don't undestand it so much. May be
> > org.apache.ws.security.crypto.merlin.keystore.alias of
> > crypto.properties?
> >
> > Is there another way to solve this? in the crypto.properties is the
> > keystore password too (under key
> > org.apache.ws.security.crypto.merlin.keystore.password), why is
> > necesary to code it in the callback classes (server and client)?
> >
> >
> > and ... in the client side i don't have to install "unlimited
> > strength jce", only with the bouncy castle .jar in classpath is
> > enouth to run well.
> >
> > Thanks for all, your are doing a very good work with wss4j.
> >
> > El mar, 13 de 09 de 2005 a las 20:52, Werner Dittmann escribió:
> >
> > > Jorge,
> > >
> > > that depends on the server you use. Usually, WEB-INF/lib should be
> > > ok. Is the WEB-INF in the correct subdirectory of the application?
> > > Or in the WAR file? Maybe you can have a look into the buidl.xml
> > > file of WSS4J - there is a traget that builds a WAR file.
> > >
> > > If that doesn't work we need to put in some debugging code into
> > > WSS4J to get the excat reason why that happens.
> > >
> > > Regards,
> > > Werner
> > > Jorge Martín Cuervo wrote:
> > > > Hello again Werner,
> > > >
> > > > I've installed "Unlimited Strength Java(TM) Cryptography Extension
> > > > Policy Files for the Java(TM) 2 SDK, Standard Edition, v 1.4.2" and use
> > > > xerces, and the error still there.
> > > >
> > > > How can i install BouncyCastle correctly? do you think
> > > > /bcprov-jdk13-128.jar is enougth?/
> > > >
> > > > Thanks.
> > > >
> > > > El mar, 13 de 09 de 2005 a las 17:00, Jorge Martín Cuervo escribió:
> > > >
> > > >> /Hello Werner,
> > > >>
> > > >> BounceCastle (/WEB-INF/lib/bcprov-jdk13-128.jar) is in the classpath
> > > >> on server and client side, isn't it?
> > > >>
> > > >> I think my problem is "strengt encryption policy". I'll take a look at
> > > >> Sun's doc now. As soon as i solve the problem i'll send a message to
> > > >> mil list.
> > > >>
> > > >> Thanks for your quick response.
> > > >>
> > > >> El mar, 13 de 09 de 2005 a las 14:58, Werner Dittmann escribió:
> > > >>
> > > >>>Jorge,
> > > >>>
> > > >>>curretnly I see two problems: somehow the Crimson parser is used.
> > > >>>Crimson is outdated, does not not support namespaces fully. Pls
> > > >>>switch to Xerces or any other parser that fully supports namespaces.
> > > >>>I saw this on the stack trace of the client side. Pls check your
> > > >>>classpath, maybe also the endorsed option.
> > > >>>
> > > >>>Second, while looking at the stacktrace of the server I see that the
> > > >>>SUN JCE provider wasn't able to instatiate the Cipher. Two reason
> > > >>>come to my mind:
> > > >>>- do you have the full strengt encryption policy installed? By default
> > > >>> only the limited one is installed (pls refer to Sun's Java doc hoe to
> > > >>> get the full strength policyit).
> > > >>>- The Bouncycastle JAR is not in the Path of the server Web application.
> > > >>> If WSS4J does not find the Bouncycastle in the Path it is not
> > > >>> initialized and registered.
> > > >>>
> > > >>>Regards,
> > > >>>Werner
> > > >>>
> > > >>>Jorge Martín Cuervo wrote:
> > > >>>> Hello, i'm trying to make a webservice with a username/password
> > > >>>> validation and encrypted data. First of all, i used UsernameToken and it
> > > >>>> works perfect, but when i begin to code encryption it didn't work. do i
> > > >>>> need any .jar?
> > > >>>>
> > > >>>>
> > > >>>>
> > > >>>> software used:
> > > >>>> - jakarta-tomcat-4.1.31
> > > >>>> - axis 1.2.1
> > > >>>> - wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
> > > >>>>
> > > >>>>
> > > >>>> server jars:
> > > >>>> ./WEB-INF/lib/wsdl4j-1.5.1.jar
> > > >>>> ./WEB-INF/lib/saaj.jar
> > > >>>> ./WEB-INF/lib/log4j-1.2.8.jar
> > > >>>> ./WEB-INF/lib/jaxrpc.jar
> > > >>>> ./WEB-INF/lib/commons-logging-1.0.4.jar
> > > >>>> ./WEB-INF/lib/commons-discovery-0.2.jar
> > > >>>> ./WEB-INF/lib/axis.jar
> > > >>>> ./WEB-INF/lib/axis-ant.jar
> > > >>>> ./WEB-INF/lib/exist.jar
> > > >>>> ./WEB-INF/lib/xmldb.jar
> > > >>>> ./WEB-INF/lib/xmlrpc-1.2-patched.jar
> > > >>>> ./WEB-INF/lib/wss4j.jar
> > > >>>> ./WEB-INF/lib/opensaml-1.0.1.jar
> > > >>>> ./WEB-INF/lib/xmlsec-1.2.96.jar
> > > >>>> ./WEB-INF/lib/bcprov-jdk13-128.jar
> > > >>>>
> > > >>>> client jars:
> > > >>>> ./libs/jaxrpc.jar
> > > >>>> ./libs/axis.jar
> > > >>>> ./libs/commons-logging-1.0.4.jar
> > > >>>> ./libs/commons-discovery-0.2.jar
> > > >>>> ./libs/saaj.jar
> > > >>>> ./libs/wsdl4j-1.5.1.jar
> > > >>>> ./libs/wss4j.jar
> > > >>>> ./libs/opensaml-1.0.1.jar
> > > >>>> ./libs/xmlsec-1.2.96.jar
> > > >>>> ./libs/bcprov-jdk13-128.jar
> > > >>>>
> > > >>>> <SNIP> -------------------------------------------------<SNAP>
> > > >>>> ____________________________________
> > > >>>> Jorge Martin Cuervo
> > > >>>> Analista Programador
> > > >>>>
> > > >>>> Outsourcing Emarketplace
> > > >>>> deFacto Powered by Standards
> > > >>>>
> > > >>>> email <jo...@defactops.com>
> > > >>>> voz +34 985 129 820
> > > >>>> voz +34 660 026 384
> > > >>>> ____________________________________
> > > >>>>
> > > >>>
> > > >>>
> > > >>>---------------------------------------------------------------------
> > > >>>To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
> > > >>>For additional commands, e-mail: wss4j-dev-help@ws.apache.org
> > > >>>
> > > >> /
> > > >>
> > > >>
> > > >>
> > > >>--
> > > >>;-)
> > > >>____________________________________
> > > >>Jorge Martin Cuervo
> > > >>Analista Programador
> > > >>
> > > >>Outsourcing Emarketplace
> > > >>deFacto Powered by Standards
> > > >>
> > > >>email <jo...@defactops.com>
> > > >>voz +34 985 129 820
> > > >>voz +34 660 026 384
> > > >>____________________________________
> > > >>
> > > >>
> > > > --
> > > > ;-)
> > > > ____________________________________
> > > > Jorge Martin Cuervo
> > > > Analista Programador
> > > >
> > > > Outsourcing Emarketplace
> > > > deFacto Powered by Standards
> > > >
> > > > email <jo...@defactops.com>
> > > > voz +34 985 129 820
> > > > voz +34 660 026 384
> > > > ____________________________________
> > > >
> > > >
> > > >
> >
> >
> >
> >
> >
> >
> >
> >
> >
> >
> >
> > --
> > ;-)
> > ____________________________________
> > Jorge Martin Cuervo
> > Analista Programador
> >
> > Outsourcing Emarketplace
> > deFacto Powered by Standards
> >
> > email <jo...@defactops.com>
> > voz +34 985 129 820
> > voz +34 660 026 384
> > ____________________________________
>
>
>
>
>
>
> --
> ;-)
> ____________________________________
> Jorge Martin Cuervo
> Analista Programador
>
> Outsourcing Emarketplace
> deFacto Powered by Standards
>
> email <jo...@defactops.com>
> voz +34 985 129 820
> voz +34 660 026 384
> ____________________________________
--
;-)
____________________________________
Jorge Martin Cuervo
Analista Programador
Outsourcing Emarketplace
deFacto Powered by Standards
email <jo...@defactops.com>
voz +34 985 129 820
voz +34 660 026 384
____________________________________
Re: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Posted by Jorge Martín Cuervo <jo...@defactops.com>.
Hi all,
After try it in several computers (.jar refers always bouncy castle
.jar):
- osx laptop (works with .jar in common/lib, no jce, no java.security
change) i'll try again till it work like others
- windows xp pro laptop (works ok with .jar in WEB-INF/lib context dir,
no jce, no java.security change)
- linux laptop (like windows)
- my linux desktop (no seems work without jce, java.security change,
neither .jar in /lib/ext, but now like other computer works without all
mencioned above)
i dont know why first of all it crash until today. Perhaps too time
without reboot, i don't know. Redeploy axis service is the only thing
that i made in new computers.
All of them use tomcat 4.1.30 with same files checkouted from my cvs.
El mié, 14 de 09 de 2005 a las 16:37, Jorge Martín Cuervo escribió:
> Hello again,
>
> I've tryed in my laptop (with mac osx). Putting bouncy castle .jar in
> <tomcat_dir>/common/lib it works (i didn't install unlimited strength
> jce, if exists for mac :p, neither changed java.security) and ...
>
> it woks perfect!
>
> The problem at all is the tomcat classloader. Any idea about it?
>
> PD: now i'll try in my linux desktop.
>
> Thanks.
>
>
> El mié, 14 de 09 de 2005 a las 12:42, Jorge Martín Cuervo escribió:
>
> > Hello,
> >
> > I've installed the bouncycastle jar in <jre_home>/lib/ext and i've
> > changed <jre_home>/lib/security/java.security to add this line:
> >
> > security.provider.6=org.bouncycastle.jce.provider.BouncyCastleProvider
> >
> > it works, and i've chaged to bi-directional encryption with adding
> > this:
> >
> > (client side .wsdd)
> > <responseFlow>
> > <handler type="java:org.apache.ws.axis.security.WSDoAllReceiver">
> > <parameter name="action" value="Encrypt"/>
> > <parameter name="decryptionPropFile" value="crypto.properties" />
> > </handler>
> > </responseFlow>
> >
> > (server side .wsdd)
> > <responseFlow>
> > <handler type="java:org.apache.ws.axis.security.WSDoAllSender" >
> > <parameter name="action" value="Encrypt"/>
> > <parameter name="passwordCallbackClass" value="PWCallback"/>
> > <parameter name="passwordType" value="PasswordDigest"/>
> > <parameter name="addUTElement" value="Nonce Created" />
> > <parameter name="encryptionPropFile" value="crypto.properties"
> > />
> > <parameter name="encryptionKeyIdentifier"
> > value="X509KeyIdentifier" />
> > <parameter name="encryptionUser" value="SmartCVWS" />
> > </handler>
> > </responseFlow>
> >
> >
> > It' works fine too, but in the password callback class i need to
> > code the password of the keystore when the pc.getIdentifer() is
> > "smartcvws".
> >
> > I think that it is the encryptionUser of the .wsdd in lowercase but
> > i don't undestand it so much. May be
> > org.apache.ws.security.crypto.merlin.keystore.alias of
> > crypto.properties?
> >
> > Is there another way to solve this? in the crypto.properties is the
> > keystore password too (under key
> > org.apache.ws.security.crypto.merlin.keystore.password), why is
> > necesary to code it in the callback classes (server and client)?
> >
> >
> > and ... in the client side i don't have to install "unlimited
> > strength jce", only with the bouncy castle .jar in classpath is
> > enouth to run well.
> >
> > Thanks for all, your are doing a very good work with wss4j.
> >
> > El mar, 13 de 09 de 2005 a las 20:52, Werner Dittmann escribió:
> >
> > > Jorge,
> > >
> > > that depends on the server you use. Usually, WEB-INF/lib should be
> > > ok. Is the WEB-INF in the correct subdirectory of the application?
> > > Or in the WAR file? Maybe you can have a look into the buidl.xml
> > > file of WSS4J - there is a traget that builds a WAR file.
> > >
> > > If that doesn't work we need to put in some debugging code into
> > > WSS4J to get the excat reason why that happens.
> > >
> > > Regards,
> > > Werner
> > > Jorge Martín Cuervo wrote:
> > > > Hello again Werner,
> > > >
> > > > I've installed "Unlimited Strength Java(TM) Cryptography Extension
> > > > Policy Files for the Java(TM) 2 SDK, Standard Edition, v 1.4.2" and use
> > > > xerces, and the error still there.
> > > >
> > > > How can i install BouncyCastle correctly? do you think
> > > > /bcprov-jdk13-128.jar is enougth?/
> > > >
> > > > Thanks.
> > > >
> > > > El mar, 13 de 09 de 2005 a las 17:00, Jorge Martín Cuervo escribió:
> > > >
> > > >> /Hello Werner,
> > > >>
> > > >> BounceCastle (/WEB-INF/lib/bcprov-jdk13-128.jar) is in the classpath
> > > >> on server and client side, isn't it?
> > > >>
> > > >> I think my problem is "strengt encryption policy". I'll take a look at
> > > >> Sun's doc now. As soon as i solve the problem i'll send a message to
> > > >> mil list.
> > > >>
> > > >> Thanks for your quick response.
> > > >>
> > > >> El mar, 13 de 09 de 2005 a las 14:58, Werner Dittmann escribió:
> > > >>
> > > >>>Jorge,
> > > >>>
> > > >>>curretnly I see two problems: somehow the Crimson parser is used.
> > > >>>Crimson is outdated, does not not support namespaces fully. Pls
> > > >>>switch to Xerces or any other parser that fully supports namespaces.
> > > >>>I saw this on the stack trace of the client side. Pls check your
> > > >>>classpath, maybe also the endorsed option.
> > > >>>
> > > >>>Second, while looking at the stacktrace of the server I see that the
> > > >>>SUN JCE provider wasn't able to instatiate the Cipher. Two reason
> > > >>>come to my mind:
> > > >>>- do you have the full strengt encryption policy installed? By default
> > > >>> only the limited one is installed (pls refer to Sun's Java doc hoe to
> > > >>> get the full strength policyit).
> > > >>>- The Bouncycastle JAR is not in the Path of the server Web application.
> > > >>> If WSS4J does not find the Bouncycastle in the Path it is not
> > > >>> initialized and registered.
> > > >>>
> > > >>>Regards,
> > > >>>Werner
> > > >>>
> > > >>>Jorge Martín Cuervo wrote:
> > > >>>> Hello, i'm trying to make a webservice with a username/password
> > > >>>> validation and encrypted data. First of all, i used UsernameToken and it
> > > >>>> works perfect, but when i begin to code encryption it didn't work. do i
> > > >>>> need any .jar?
> > > >>>>
> > > >>>>
> > > >>>>
> > > >>>> software used:
> > > >>>> - jakarta-tomcat-4.1.31
> > > >>>> - axis 1.2.1
> > > >>>> - wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
> > > >>>>
> > > >>>>
> > > >>>> server jars:
> > > >>>> ./WEB-INF/lib/wsdl4j-1.5.1.jar
> > > >>>> ./WEB-INF/lib/saaj.jar
> > > >>>> ./WEB-INF/lib/log4j-1.2.8.jar
> > > >>>> ./WEB-INF/lib/jaxrpc.jar
> > > >>>> ./WEB-INF/lib/commons-logging-1.0.4.jar
> > > >>>> ./WEB-INF/lib/commons-discovery-0.2.jar
> > > >>>> ./WEB-INF/lib/axis.jar
> > > >>>> ./WEB-INF/lib/axis-ant.jar
> > > >>>> ./WEB-INF/lib/exist.jar
> > > >>>> ./WEB-INF/lib/xmldb.jar
> > > >>>> ./WEB-INF/lib/xmlrpc-1.2-patched.jar
> > > >>>> ./WEB-INF/lib/wss4j.jar
> > > >>>> ./WEB-INF/lib/opensaml-1.0.1.jar
> > > >>>> ./WEB-INF/lib/xmlsec-1.2.96.jar
> > > >>>> ./WEB-INF/lib/bcprov-jdk13-128.jar
> > > >>>>
> > > >>>> client jars:
> > > >>>> ./libs/jaxrpc.jar
> > > >>>> ./libs/axis.jar
> > > >>>> ./libs/commons-logging-1.0.4.jar
> > > >>>> ./libs/commons-discovery-0.2.jar
> > > >>>> ./libs/saaj.jar
> > > >>>> ./libs/wsdl4j-1.5.1.jar
> > > >>>> ./libs/wss4j.jar
> > > >>>> ./libs/opensaml-1.0.1.jar
> > > >>>> ./libs/xmlsec-1.2.96.jar
> > > >>>> ./libs/bcprov-jdk13-128.jar
> > > >>>>
> > > >>>> <SNIP> -------------------------------------------------<SNAP>
> > > >>>> ____________________________________
> > > >>>> Jorge Martin Cuervo
> > > >>>> Analista Programador
> > > >>>>
> > > >>>> Outsourcing Emarketplace
> > > >>>> deFacto Powered by Standards
> > > >>>>
> > > >>>> email <jo...@defactops.com>
> > > >>>> voz +34 985 129 820
> > > >>>> voz +34 660 026 384
> > > >>>> ____________________________________
> > > >>>>
> > > >>>
> > > >>>
> > > >>>---------------------------------------------------------------------
> > > >>>To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
> > > >>>For additional commands, e-mail: wss4j-dev-help@ws.apache.org
> > > >>>
> > > >> /
> > > >>
> > > >>
> > > >>
> > > >>--
> > > >>;-)
> > > >>____________________________________
> > > >>Jorge Martin Cuervo
> > > >>Analista Programador
> > > >>
> > > >>Outsourcing Emarketplace
> > > >>deFacto Powered by Standards
> > > >>
> > > >>email <jo...@defactops.com>
> > > >>voz +34 985 129 820
> > > >>voz +34 660 026 384
> > > >>____________________________________
> > > >>
> > > >>
> > > > --
> > > > ;-)
> > > > ____________________________________
> > > > Jorge Martin Cuervo
> > > > Analista Programador
> > > >
> > > > Outsourcing Emarketplace
> > > > deFacto Powered by Standards
> > > >
> > > > email <jo...@defactops.com>
> > > > voz +34 985 129 820
> > > > voz +34 660 026 384
> > > > ____________________________________
> > > >
> > > >
> > > >
> >
> >
> >
> >
> >
> >
> >
> >
> >
> >
> >
> > --
> > ;-)
> > ____________________________________
> > Jorge Martin Cuervo
> > Analista Programador
> >
> > Outsourcing Emarketplace
> > deFacto Powered by Standards
> >
> > email <jo...@defactops.com>
> > voz +34 985 129 820
> > voz +34 660 026 384
> > ____________________________________
>
>
>
>
>
>
> --
> ;-)
> ____________________________________
> Jorge Martin Cuervo
> Analista Programador
>
> Outsourcing Emarketplace
> deFacto Powered by Standards
>
> email <jo...@defactops.com>
> voz +34 985 129 820
> voz +34 660 026 384
> ____________________________________
--
;-)
____________________________________
Jorge Martin Cuervo
Analista Programador
Outsourcing Emarketplace
deFacto Powered by Standards
email <jo...@defactops.com>
voz +34 985 129 820
voz +34 660 026 384
____________________________________
Re: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Posted by Jorge Martín Cuervo <jo...@defactops.com>.
Hello again,
I've tryed in my laptop (with mac osx). Putting bouncy castle .jar in
<tomcat_dir>/common/lib it works (i didn't install unlimited strength
jce, if exists for mac :p, neither changed java.security) and ...
it woks perfect!
The problem at all is the tomcat classloader. Any idea about it?
PD: now i'll try in my linux desktop.
Thanks.
El mié, 14 de 09 de 2005 a las 12:42, Jorge Martín Cuervo escribió:
> Hello,
>
> I've installed the bouncycastle jar in <jre_home>/lib/ext and i've
> changed <jre_home>/lib/security/java.security to add this line:
>
> security.provider.6=org.bouncycastle.jce.provider.BouncyCastleProvider
>
> it works, and i've chaged to bi-directional encryption with adding
> this:
>
> (client side .wsdd)
> <responseFlow>
> <handler type="java:org.apache.ws.axis.security.WSDoAllReceiver">
> <parameter name="action" value="Encrypt"/>
> <parameter name="decryptionPropFile" value="crypto.properties" />
> </handler>
> </responseFlow>
>
> (server side .wsdd)
> <responseFlow>
> <handler type="java:org.apache.ws.axis.security.WSDoAllSender" >
> <parameter name="action" value="Encrypt"/>
> <parameter name="passwordCallbackClass" value="PWCallback"/>
> <parameter name="passwordType" value="PasswordDigest"/>
> <parameter name="addUTElement" value="Nonce Created" />
> <parameter name="encryptionPropFile" value="crypto.properties" />
> <parameter name="encryptionKeyIdentifier"
> value="X509KeyIdentifier" />
> <parameter name="encryptionUser" value="SmartCVWS" />
> </handler>
> </responseFlow>
>
>
> It' works fine too, but in the password callback class i need to code
> the password of the keystore when the pc.getIdentifer() is
> "smartcvws".
>
> I think that it is the encryptionUser of the .wsdd in lowercase but i
> don't undestand it so much. May be
> org.apache.ws.security.crypto.merlin.keystore.alias of
> crypto.properties?
>
> Is there another way to solve this? in the crypto.properties is the
> keystore password too (under key
> org.apache.ws.security.crypto.merlin.keystore.password), why is
> necesary to code it in the callback classes (server and client)?
>
>
> and ... in the client side i don't have to install "unlimited strength
> jce", only with the bouncy castle .jar in classpath is enouth to run
> well.
>
> Thanks for all, your are doing a very good work with wss4j.
>
> El mar, 13 de 09 de 2005 a las 20:52, Werner Dittmann escribió:
>
> > Jorge,
> >
> > that depends on the server you use. Usually, WEB-INF/lib should be
> > ok. Is the WEB-INF in the correct subdirectory of the application?
> > Or in the WAR file? Maybe you can have a look into the buidl.xml
> > file of WSS4J - there is a traget that builds a WAR file.
> >
> > If that doesn't work we need to put in some debugging code into
> > WSS4J to get the excat reason why that happens.
> >
> > Regards,
> > Werner
> > Jorge Martín Cuervo wrote:
> > > Hello again Werner,
> > >
> > > I've installed "Unlimited Strength Java(TM) Cryptography Extension
> > > Policy Files for the Java(TM) 2 SDK, Standard Edition, v 1.4.2" and use
> > > xerces, and the error still there.
> > >
> > > How can i install BouncyCastle correctly? do you think
> > > /bcprov-jdk13-128.jar is enougth?/
> > >
> > > Thanks.
> > >
> > > El mar, 13 de 09 de 2005 a las 17:00, Jorge Martín Cuervo escribió:
> > >
> > >> /Hello Werner,
> > >>
> > >> BounceCastle (/WEB-INF/lib/bcprov-jdk13-128.jar) is in the classpath
> > >> on server and client side, isn't it?
> > >>
> > >> I think my problem is "strengt encryption policy". I'll take a look at
> > >> Sun's doc now. As soon as i solve the problem i'll send a message to
> > >> mil list.
> > >>
> > >> Thanks for your quick response.
> > >>
> > >> El mar, 13 de 09 de 2005 a las 14:58, Werner Dittmann escribió:
> > >>
> > >>>Jorge,
> > >>>
> > >>>curretnly I see two problems: somehow the Crimson parser is used.
> > >>>Crimson is outdated, does not not support namespaces fully. Pls
> > >>>switch to Xerces or any other parser that fully supports namespaces.
> > >>>I saw this on the stack trace of the client side. Pls check your
> > >>>classpath, maybe also the endorsed option.
> > >>>
> > >>>Second, while looking at the stacktrace of the server I see that the
> > >>>SUN JCE provider wasn't able to instatiate the Cipher. Two reason
> > >>>come to my mind:
> > >>>- do you have the full strengt encryption policy installed? By default
> > >>> only the limited one is installed (pls refer to Sun's Java doc hoe to
> > >>> get the full strength policyit).
> > >>>- The Bouncycastle JAR is not in the Path of the server Web application.
> > >>> If WSS4J does not find the Bouncycastle in the Path it is not
> > >>> initialized and registered.
> > >>>
> > >>>Regards,
> > >>>Werner
> > >>>
> > >>>Jorge Martín Cuervo wrote:
> > >>>> Hello, i'm trying to make a webservice with a username/password
> > >>>> validation and encrypted data. First of all, i used UsernameToken and it
> > >>>> works perfect, but when i begin to code encryption it didn't work. do i
> > >>>> need any .jar?
> > >>>>
> > >>>>
> > >>>>
> > >>>> software used:
> > >>>> - jakarta-tomcat-4.1.31
> > >>>> - axis 1.2.1
> > >>>> - wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
> > >>>>
> > >>>>
> > >>>> server jars:
> > >>>> ./WEB-INF/lib/wsdl4j-1.5.1.jar
> > >>>> ./WEB-INF/lib/saaj.jar
> > >>>> ./WEB-INF/lib/log4j-1.2.8.jar
> > >>>> ./WEB-INF/lib/jaxrpc.jar
> > >>>> ./WEB-INF/lib/commons-logging-1.0.4.jar
> > >>>> ./WEB-INF/lib/commons-discovery-0.2.jar
> > >>>> ./WEB-INF/lib/axis.jar
> > >>>> ./WEB-INF/lib/axis-ant.jar
> > >>>> ./WEB-INF/lib/exist.jar
> > >>>> ./WEB-INF/lib/xmldb.jar
> > >>>> ./WEB-INF/lib/xmlrpc-1.2-patched.jar
> > >>>> ./WEB-INF/lib/wss4j.jar
> > >>>> ./WEB-INF/lib/opensaml-1.0.1.jar
> > >>>> ./WEB-INF/lib/xmlsec-1.2.96.jar
> > >>>> ./WEB-INF/lib/bcprov-jdk13-128.jar
> > >>>>
> > >>>> client jars:
> > >>>> ./libs/jaxrpc.jar
> > >>>> ./libs/axis.jar
> > >>>> ./libs/commons-logging-1.0.4.jar
> > >>>> ./libs/commons-discovery-0.2.jar
> > >>>> ./libs/saaj.jar
> > >>>> ./libs/wsdl4j-1.5.1.jar
> > >>>> ./libs/wss4j.jar
> > >>>> ./libs/opensaml-1.0.1.jar
> > >>>> ./libs/xmlsec-1.2.96.jar
> > >>>> ./libs/bcprov-jdk13-128.jar
> > >>>>
> > >>>> <SNIP> -------------------------------------------------<SNAP>
> > >>>> ____________________________________
> > >>>> Jorge Martin Cuervo
> > >>>> Analista Programador
> > >>>>
> > >>>> Outsourcing Emarketplace
> > >>>> deFacto Powered by Standards
> > >>>>
> > >>>> email <jo...@defactops.com>
> > >>>> voz +34 985 129 820
> > >>>> voz +34 660 026 384
> > >>>> ____________________________________
> > >>>>
> > >>>
> > >>>
> > >>>---------------------------------------------------------------------
> > >>>To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
> > >>>For additional commands, e-mail: wss4j-dev-help@ws.apache.org
> > >>>
> > >> /
> > >>
> > >>
> > >>
> > >>--
> > >>;-)
> > >>____________________________________
> > >>Jorge Martin Cuervo
> > >>Analista Programador
> > >>
> > >>Outsourcing Emarketplace
> > >>deFacto Powered by Standards
> > >>
> > >>email <jo...@defactops.com>
> > >>voz +34 985 129 820
> > >>voz +34 660 026 384
> > >>____________________________________
> > >>
> > >>
> > > --
> > > ;-)
> > > ____________________________________
> > > Jorge Martin Cuervo
> > > Analista Programador
> > >
> > > Outsourcing Emarketplace
> > > deFacto Powered by Standards
> > >
> > > email <jo...@defactops.com>
> > > voz +34 985 129 820
> > > voz +34 660 026 384
> > > ____________________________________
> > >
> > >
> > >
>
>
>
>
>
>
> --
> ;-)
> ____________________________________
> Jorge Martin Cuervo
> Analista Programador
>
> Outsourcing Emarketplace
> deFacto Powered by Standards
>
> email <jo...@defactops.com>
> voz +34 985 129 820
> voz +34 660 026 384
> ____________________________________
--
;-)
____________________________________
Jorge Martin Cuervo
Analista Programador
Outsourcing Emarketplace
deFacto Powered by Standards
email <jo...@defactops.com>
voz +34 985 129 820
voz +34 660 026 384
____________________________________
Re: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Posted by Jorge Martín Cuervo <jo...@defactops.com>.
Hello again,
I've tryed in my laptop (with mac osx). Putting bouncy castle .jar in
<tomcat_dir>/common/lib it works (i didn't install unlimited strength
jce, if exists for mac :p, neither changed java.security) and ...
it woks perfect!
The problem at all is the tomcat classloader. Any idea about it?
PD: now i'll try in my linux desktop.
Thanks.
El mié, 14 de 09 de 2005 a las 12:42, Jorge Martín Cuervo escribió:
> Hello,
>
> I've installed the bouncycastle jar in <jre_home>/lib/ext and i've
> changed <jre_home>/lib/security/java.security to add this line:
>
> security.provider.6=org.bouncycastle.jce.provider.BouncyCastleProvider
>
> it works, and i've chaged to bi-directional encryption with adding
> this:
>
> (client side .wsdd)
> <responseFlow>
> <handler type="java:org.apache.ws.axis.security.WSDoAllReceiver">
> <parameter name="action" value="Encrypt"/>
> <parameter name="decryptionPropFile" value="crypto.properties" />
> </handler>
> </responseFlow>
>
> (server side .wsdd)
> <responseFlow>
> <handler type="java:org.apache.ws.axis.security.WSDoAllSender" >
> <parameter name="action" value="Encrypt"/>
> <parameter name="passwordCallbackClass" value="PWCallback"/>
> <parameter name="passwordType" value="PasswordDigest"/>
> <parameter name="addUTElement" value="Nonce Created" />
> <parameter name="encryptionPropFile" value="crypto.properties" />
> <parameter name="encryptionKeyIdentifier"
> value="X509KeyIdentifier" />
> <parameter name="encryptionUser" value="SmartCVWS" />
> </handler>
> </responseFlow>
>
>
> It' works fine too, but in the password callback class i need to code
> the password of the keystore when the pc.getIdentifer() is
> "smartcvws".
>
> I think that it is the encryptionUser of the .wsdd in lowercase but i
> don't undestand it so much. May be
> org.apache.ws.security.crypto.merlin.keystore.alias of
> crypto.properties?
>
> Is there another way to solve this? in the crypto.properties is the
> keystore password too (under key
> org.apache.ws.security.crypto.merlin.keystore.password), why is
> necesary to code it in the callback classes (server and client)?
>
>
> and ... in the client side i don't have to install "unlimited strength
> jce", only with the bouncy castle .jar in classpath is enouth to run
> well.
>
> Thanks for all, your are doing a very good work with wss4j.
>
> El mar, 13 de 09 de 2005 a las 20:52, Werner Dittmann escribió:
>
> > Jorge,
> >
> > that depends on the server you use. Usually, WEB-INF/lib should be
> > ok. Is the WEB-INF in the correct subdirectory of the application?
> > Or in the WAR file? Maybe you can have a look into the buidl.xml
> > file of WSS4J - there is a traget that builds a WAR file.
> >
> > If that doesn't work we need to put in some debugging code into
> > WSS4J to get the excat reason why that happens.
> >
> > Regards,
> > Werner
> > Jorge Martín Cuervo wrote:
> > > Hello again Werner,
> > >
> > > I've installed "Unlimited Strength Java(TM) Cryptography Extension
> > > Policy Files for the Java(TM) 2 SDK, Standard Edition, v 1.4.2" and use
> > > xerces, and the error still there.
> > >
> > > How can i install BouncyCastle correctly? do you think
> > > /bcprov-jdk13-128.jar is enougth?/
> > >
> > > Thanks.
> > >
> > > El mar, 13 de 09 de 2005 a las 17:00, Jorge Martín Cuervo escribió:
> > >
> > >> /Hello Werner,
> > >>
> > >> BounceCastle (/WEB-INF/lib/bcprov-jdk13-128.jar) is in the classpath
> > >> on server and client side, isn't it?
> > >>
> > >> I think my problem is "strengt encryption policy". I'll take a look at
> > >> Sun's doc now. As soon as i solve the problem i'll send a message to
> > >> mil list.
> > >>
> > >> Thanks for your quick response.
> > >>
> > >> El mar, 13 de 09 de 2005 a las 14:58, Werner Dittmann escribió:
> > >>
> > >>>Jorge,
> > >>>
> > >>>curretnly I see two problems: somehow the Crimson parser is used.
> > >>>Crimson is outdated, does not not support namespaces fully. Pls
> > >>>switch to Xerces or any other parser that fully supports namespaces.
> > >>>I saw this on the stack trace of the client side. Pls check your
> > >>>classpath, maybe also the endorsed option.
> > >>>
> > >>>Second, while looking at the stacktrace of the server I see that the
> > >>>SUN JCE provider wasn't able to instatiate the Cipher. Two reason
> > >>>come to my mind:
> > >>>- do you have the full strengt encryption policy installed? By default
> > >>> only the limited one is installed (pls refer to Sun's Java doc hoe to
> > >>> get the full strength policyit).
> > >>>- The Bouncycastle JAR is not in the Path of the server Web application.
> > >>> If WSS4J does not find the Bouncycastle in the Path it is not
> > >>> initialized and registered.
> > >>>
> > >>>Regards,
> > >>>Werner
> > >>>
> > >>>Jorge Martín Cuervo wrote:
> > >>>> Hello, i'm trying to make a webservice with a username/password
> > >>>> validation and encrypted data. First of all, i used UsernameToken and it
> > >>>> works perfect, but when i begin to code encryption it didn't work. do i
> > >>>> need any .jar?
> > >>>>
> > >>>>
> > >>>>
> > >>>> software used:
> > >>>> - jakarta-tomcat-4.1.31
> > >>>> - axis 1.2.1
> > >>>> - wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
> > >>>>
> > >>>>
> > >>>> server jars:
> > >>>> ./WEB-INF/lib/wsdl4j-1.5.1.jar
> > >>>> ./WEB-INF/lib/saaj.jar
> > >>>> ./WEB-INF/lib/log4j-1.2.8.jar
> > >>>> ./WEB-INF/lib/jaxrpc.jar
> > >>>> ./WEB-INF/lib/commons-logging-1.0.4.jar
> > >>>> ./WEB-INF/lib/commons-discovery-0.2.jar
> > >>>> ./WEB-INF/lib/axis.jar
> > >>>> ./WEB-INF/lib/axis-ant.jar
> > >>>> ./WEB-INF/lib/exist.jar
> > >>>> ./WEB-INF/lib/xmldb.jar
> > >>>> ./WEB-INF/lib/xmlrpc-1.2-patched.jar
> > >>>> ./WEB-INF/lib/wss4j.jar
> > >>>> ./WEB-INF/lib/opensaml-1.0.1.jar
> > >>>> ./WEB-INF/lib/xmlsec-1.2.96.jar
> > >>>> ./WEB-INF/lib/bcprov-jdk13-128.jar
> > >>>>
> > >>>> client jars:
> > >>>> ./libs/jaxrpc.jar
> > >>>> ./libs/axis.jar
> > >>>> ./libs/commons-logging-1.0.4.jar
> > >>>> ./libs/commons-discovery-0.2.jar
> > >>>> ./libs/saaj.jar
> > >>>> ./libs/wsdl4j-1.5.1.jar
> > >>>> ./libs/wss4j.jar
> > >>>> ./libs/opensaml-1.0.1.jar
> > >>>> ./libs/xmlsec-1.2.96.jar
> > >>>> ./libs/bcprov-jdk13-128.jar
> > >>>>
> > >>>> <SNIP> -------------------------------------------------<SNAP>
> > >>>> ____________________________________
> > >>>> Jorge Martin Cuervo
> > >>>> Analista Programador
> > >>>>
> > >>>> Outsourcing Emarketplace
> > >>>> deFacto Powered by Standards
> > >>>>
> > >>>> email <jo...@defactops.com>
> > >>>> voz +34 985 129 820
> > >>>> voz +34 660 026 384
> > >>>> ____________________________________
> > >>>>
> > >>>
> > >>>
> > >>>---------------------------------------------------------------------
> > >>>To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
> > >>>For additional commands, e-mail: wss4j-dev-help@ws.apache.org
> > >>>
> > >> /
> > >>
> > >>
> > >>
> > >>--
> > >>;-)
> > >>____________________________________
> > >>Jorge Martin Cuervo
> > >>Analista Programador
> > >>
> > >>Outsourcing Emarketplace
> > >>deFacto Powered by Standards
> > >>
> > >>email <jo...@defactops.com>
> > >>voz +34 985 129 820
> > >>voz +34 660 026 384
> > >>____________________________________
> > >>
> > >>
> > > --
> > > ;-)
> > > ____________________________________
> > > Jorge Martin Cuervo
> > > Analista Programador
> > >
> > > Outsourcing Emarketplace
> > > deFacto Powered by Standards
> > >
> > > email <jo...@defactops.com>
> > > voz +34 985 129 820
> > > voz +34 660 026 384
> > > ____________________________________
> > >
> > >
> > >
>
>
>
>
>
>
> --
> ;-)
> ____________________________________
> Jorge Martin Cuervo
> Analista Programador
>
> Outsourcing Emarketplace
> deFacto Powered by Standards
>
> email <jo...@defactops.com>
> voz +34 985 129 820
> voz +34 660 026 384
> ____________________________________
--
;-)
____________________________________
Jorge Martin Cuervo
Analista Programador
Outsourcing Emarketplace
deFacto Powered by Standards
email <jo...@defactops.com>
voz +34 985 129 820
voz +34 660 026 384
____________________________________
Re: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Posted by Jorge Martín Cuervo <jo...@defactops.com>.
Hello,
I've installed the bouncycastle jar in <jre_home>/lib/ext and i've
changed <jre_home>/lib/security/java.security to add this line:
security.provider.6=org.bouncycastle.jce.provider.BouncyCastleProvider
it works, and i've chaged to bi-directional encryption with adding this:
(client side .wsdd)
<responseFlow>
<handler type="java:org.apache.ws.axis.security.WSDoAllReceiver">
<parameter name="action" value="Encrypt"/>
<parameter name="decryptionPropFile" value="crypto.properties" />
</handler>
</responseFlow>
(server side .wsdd)
<responseFlow>
<handler type="java:org.apache.ws.axis.security.WSDoAllSender" >
<parameter name="action" value="Encrypt"/>
<parameter name="passwordCallbackClass" value="PWCallback"/>
<parameter name="passwordType" value="PasswordDigest"/>
<parameter name="addUTElement" value="Nonce Created" />
<parameter name="encryptionPropFile" value="crypto.properties" />
<parameter name="encryptionKeyIdentifier" value="X509KeyIdentifier"
/>
<parameter name="encryptionUser" value="SmartCVWS" />
</handler>
</responseFlow>
It' works fine too, but in the password callback class i need to code
the password of the keystore when the pc.getIdentifer() is "smartcvws".
I think that it is the encryptionUser of the .wsdd in lowercase but i
don't undestand it so much. May be
org.apache.ws.security.crypto.merlin.keystore.alias of
crypto.properties?
Is there another way to solve this? in the crypto.properties is the
keystore password too (under key
org.apache.ws.security.crypto.merlin.keystore.password), why is necesary
to code it in the callback classes (server and client)?
and ... in the client side i don't have to install "unlimited strength
jce", only with the bouncy castle .jar in classpath is enouth to run
well.
Thanks for all, your are doing a very good work with wss4j.
El mar, 13 de 09 de 2005 a las 20:52, Werner Dittmann escribió:
> Jorge,
>
> that depends on the server you use. Usually, WEB-INF/lib should be
> ok. Is the WEB-INF in the correct subdirectory of the application?
> Or in the WAR file? Maybe you can have a look into the buidl.xml
> file of WSS4J - there is a traget that builds a WAR file.
>
> If that doesn't work we need to put in some debugging code into
> WSS4J to get the excat reason why that happens.
>
> Regards,
> Werner
> Jorge Martín Cuervo wrote:
> > Hello again Werner,
> >
> > I've installed "Unlimited Strength Java(TM) Cryptography Extension
> > Policy Files for the Java(TM) 2 SDK, Standard Edition, v 1.4.2" and use
> > xerces, and the error still there.
> >
> > How can i install BouncyCastle correctly? do you think
> > /bcprov-jdk13-128.jar is enougth?/
> >
> > Thanks.
> >
> > El mar, 13 de 09 de 2005 a las 17:00, Jorge Martín Cuervo escribió:
> >
> >> /Hello Werner,
> >>
> >> BounceCastle (/WEB-INF/lib/bcprov-jdk13-128.jar) is in the classpath
> >> on server and client side, isn't it?
> >>
> >> I think my problem is "strengt encryption policy". I'll take a look at
> >> Sun's doc now. As soon as i solve the problem i'll send a message to
> >> mil list.
> >>
> >> Thanks for your quick response.
> >>
> >> El mar, 13 de 09 de 2005 a las 14:58, Werner Dittmann escribió:
> >>
> >>>Jorge,
> >>>
> >>>curretnly I see two problems: somehow the Crimson parser is used.
> >>>Crimson is outdated, does not not support namespaces fully. Pls
> >>>switch to Xerces or any other parser that fully supports namespaces.
> >>>I saw this on the stack trace of the client side. Pls check your
> >>>classpath, maybe also the endorsed option.
> >>>
> >>>Second, while looking at the stacktrace of the server I see that the
> >>>SUN JCE provider wasn't able to instatiate the Cipher. Two reason
> >>>come to my mind:
> >>>- do you have the full strengt encryption policy installed? By default
> >>> only the limited one is installed (pls refer to Sun's Java doc hoe to
> >>> get the full strength policyit).
> >>>- The Bouncycastle JAR is not in the Path of the server Web application.
> >>> If WSS4J does not find the Bouncycastle in the Path it is not
> >>> initialized and registered.
> >>>
> >>>Regards,
> >>>Werner
> >>>
> >>>Jorge Martín Cuervo wrote:
> >>>> Hello, i'm trying to make a webservice with a username/password
> >>>> validation and encrypted data. First of all, i used UsernameToken and it
> >>>> works perfect, but when i begin to code encryption it didn't work. do i
> >>>> need any .jar?
> >>>>
> >>>>
> >>>>
> >>>> software used:
> >>>> - jakarta-tomcat-4.1.31
> >>>> - axis 1.2.1
> >>>> - wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
> >>>>
> >>>>
> >>>> server jars:
> >>>> ./WEB-INF/lib/wsdl4j-1.5.1.jar
> >>>> ./WEB-INF/lib/saaj.jar
> >>>> ./WEB-INF/lib/log4j-1.2.8.jar
> >>>> ./WEB-INF/lib/jaxrpc.jar
> >>>> ./WEB-INF/lib/commons-logging-1.0.4.jar
> >>>> ./WEB-INF/lib/commons-discovery-0.2.jar
> >>>> ./WEB-INF/lib/axis.jar
> >>>> ./WEB-INF/lib/axis-ant.jar
> >>>> ./WEB-INF/lib/exist.jar
> >>>> ./WEB-INF/lib/xmldb.jar
> >>>> ./WEB-INF/lib/xmlrpc-1.2-patched.jar
> >>>> ./WEB-INF/lib/wss4j.jar
> >>>> ./WEB-INF/lib/opensaml-1.0.1.jar
> >>>> ./WEB-INF/lib/xmlsec-1.2.96.jar
> >>>> ./WEB-INF/lib/bcprov-jdk13-128.jar
> >>>>
> >>>> client jars:
> >>>> ./libs/jaxrpc.jar
> >>>> ./libs/axis.jar
> >>>> ./libs/commons-logging-1.0.4.jar
> >>>> ./libs/commons-discovery-0.2.jar
> >>>> ./libs/saaj.jar
> >>>> ./libs/wsdl4j-1.5.1.jar
> >>>> ./libs/wss4j.jar
> >>>> ./libs/opensaml-1.0.1.jar
> >>>> ./libs/xmlsec-1.2.96.jar
> >>>> ./libs/bcprov-jdk13-128.jar
> >>>>
> >>>> <SNIP> -------------------------------------------------<SNAP>
> >>>> ____________________________________
> >>>> Jorge Martin Cuervo
> >>>> Analista Programador
> >>>>
> >>>> Outsourcing Emarketplace
> >>>> deFacto Powered by Standards
> >>>>
> >>>> email <jo...@defactops.com>
> >>>> voz +34 985 129 820
> >>>> voz +34 660 026 384
> >>>> ____________________________________
> >>>>
> >>>
> >>>
> >>>---------------------------------------------------------------------
> >>>To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
> >>>For additional commands, e-mail: wss4j-dev-help@ws.apache.org
> >>>
> >> /
> >>
> >>
> >>
> >>--
> >>;-)
> >>____________________________________
> >>Jorge Martin Cuervo
> >>Analista Programador
> >>
> >>Outsourcing Emarketplace
> >>deFacto Powered by Standards
> >>
> >>email <jo...@defactops.com>
> >>voz +34 985 129 820
> >>voz +34 660 026 384
> >>____________________________________
> >>
> >>
> > --
> > ;-)
> > ____________________________________
> > Jorge Martin Cuervo
> > Analista Programador
> >
> > Outsourcing Emarketplace
> > deFacto Powered by Standards
> >
> > email <jo...@defactops.com>
> > voz +34 985 129 820
> > voz +34 660 026 384
> > ____________________________________
> >
> >
> >
>
--
;-)
____________________________________
Jorge Martin Cuervo
Analista Programador
Outsourcing Emarketplace
deFacto Powered by Standards
email <jo...@defactops.com>
voz +34 985 129 820
voz +34 660 026 384
____________________________________
Re: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Posted by Jorge Martín Cuervo <jo...@defactops.com>.
Hello,
I've installed the bouncycastle jar in <jre_home>/lib/ext and i've
changed <jre_home>/lib/security/java.security to add this line:
security.provider.6=org.bouncycastle.jce.provider.BouncyCastleProvider
it works, and i've chaged to bi-directional encryption with adding this:
(client side .wsdd)
<responseFlow>
<handler type="java:org.apache.ws.axis.security.WSDoAllReceiver">
<parameter name="action" value="Encrypt"/>
<parameter name="decryptionPropFile" value="crypto.properties" />
</handler>
</responseFlow>
(server side .wsdd)
<responseFlow>
<handler type="java:org.apache.ws.axis.security.WSDoAllSender" >
<parameter name="action" value="Encrypt"/>
<parameter name="passwordCallbackClass" value="PWCallback"/>
<parameter name="passwordType" value="PasswordDigest"/>
<parameter name="addUTElement" value="Nonce Created" />
<parameter name="encryptionPropFile" value="crypto.properties" />
<parameter name="encryptionKeyIdentifier" value="X509KeyIdentifier"
/>
<parameter name="encryptionUser" value="SmartCVWS" />
</handler>
</responseFlow>
It' works fine too, but in the password callback class i need to code
the password of the keystore when the pc.getIdentifer() is "smartcvws".
I think that it is the encryptionUser of the .wsdd in lowercase but i
don't undestand it so much. May be
org.apache.ws.security.crypto.merlin.keystore.alias of
crypto.properties?
Is there another way to solve this? in the crypto.properties is the
keystore password too (under key
org.apache.ws.security.crypto.merlin.keystore.password), why is necesary
to code it in the callback classes (server and client)?
and ... in the client side i don't have to install "unlimited strength
jce", only with the bouncy castle .jar in classpath is enouth to run
well.
Thanks for all, your are doing a very good work with wss4j.
El mar, 13 de 09 de 2005 a las 20:52, Werner Dittmann escribió:
> Jorge,
>
> that depends on the server you use. Usually, WEB-INF/lib should be
> ok. Is the WEB-INF in the correct subdirectory of the application?
> Or in the WAR file? Maybe you can have a look into the buidl.xml
> file of WSS4J - there is a traget that builds a WAR file.
>
> If that doesn't work we need to put in some debugging code into
> WSS4J to get the excat reason why that happens.
>
> Regards,
> Werner
> Jorge Martín Cuervo wrote:
> > Hello again Werner,
> >
> > I've installed "Unlimited Strength Java(TM) Cryptography Extension
> > Policy Files for the Java(TM) 2 SDK, Standard Edition, v 1.4.2" and use
> > xerces, and the error still there.
> >
> > How can i install BouncyCastle correctly? do you think
> > /bcprov-jdk13-128.jar is enougth?/
> >
> > Thanks.
> >
> > El mar, 13 de 09 de 2005 a las 17:00, Jorge Martín Cuervo escribió:
> >
> >> /Hello Werner,
> >>
> >> BounceCastle (/WEB-INF/lib/bcprov-jdk13-128.jar) is in the classpath
> >> on server and client side, isn't it?
> >>
> >> I think my problem is "strengt encryption policy". I'll take a look at
> >> Sun's doc now. As soon as i solve the problem i'll send a message to
> >> mil list.
> >>
> >> Thanks for your quick response.
> >>
> >> El mar, 13 de 09 de 2005 a las 14:58, Werner Dittmann escribió:
> >>
> >>>Jorge,
> >>>
> >>>curretnly I see two problems: somehow the Crimson parser is used.
> >>>Crimson is outdated, does not not support namespaces fully. Pls
> >>>switch to Xerces or any other parser that fully supports namespaces.
> >>>I saw this on the stack trace of the client side. Pls check your
> >>>classpath, maybe also the endorsed option.
> >>>
> >>>Second, while looking at the stacktrace of the server I see that the
> >>>SUN JCE provider wasn't able to instatiate the Cipher. Two reason
> >>>come to my mind:
> >>>- do you have the full strengt encryption policy installed? By default
> >>> only the limited one is installed (pls refer to Sun's Java doc hoe to
> >>> get the full strength policyit).
> >>>- The Bouncycastle JAR is not in the Path of the server Web application.
> >>> If WSS4J does not find the Bouncycastle in the Path it is not
> >>> initialized and registered.
> >>>
> >>>Regards,
> >>>Werner
> >>>
> >>>Jorge Martín Cuervo wrote:
> >>>> Hello, i'm trying to make a webservice with a username/password
> >>>> validation and encrypted data. First of all, i used UsernameToken and it
> >>>> works perfect, but when i begin to code encryption it didn't work. do i
> >>>> need any .jar?
> >>>>
> >>>>
> >>>>
> >>>> software used:
> >>>> - jakarta-tomcat-4.1.31
> >>>> - axis 1.2.1
> >>>> - wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
> >>>>
> >>>>
> >>>> server jars:
> >>>> ./WEB-INF/lib/wsdl4j-1.5.1.jar
> >>>> ./WEB-INF/lib/saaj.jar
> >>>> ./WEB-INF/lib/log4j-1.2.8.jar
> >>>> ./WEB-INF/lib/jaxrpc.jar
> >>>> ./WEB-INF/lib/commons-logging-1.0.4.jar
> >>>> ./WEB-INF/lib/commons-discovery-0.2.jar
> >>>> ./WEB-INF/lib/axis.jar
> >>>> ./WEB-INF/lib/axis-ant.jar
> >>>> ./WEB-INF/lib/exist.jar
> >>>> ./WEB-INF/lib/xmldb.jar
> >>>> ./WEB-INF/lib/xmlrpc-1.2-patched.jar
> >>>> ./WEB-INF/lib/wss4j.jar
> >>>> ./WEB-INF/lib/opensaml-1.0.1.jar
> >>>> ./WEB-INF/lib/xmlsec-1.2.96.jar
> >>>> ./WEB-INF/lib/bcprov-jdk13-128.jar
> >>>>
> >>>> client jars:
> >>>> ./libs/jaxrpc.jar
> >>>> ./libs/axis.jar
> >>>> ./libs/commons-logging-1.0.4.jar
> >>>> ./libs/commons-discovery-0.2.jar
> >>>> ./libs/saaj.jar
> >>>> ./libs/wsdl4j-1.5.1.jar
> >>>> ./libs/wss4j.jar
> >>>> ./libs/opensaml-1.0.1.jar
> >>>> ./libs/xmlsec-1.2.96.jar
> >>>> ./libs/bcprov-jdk13-128.jar
> >>>>
> >>>> <SNIP> -------------------------------------------------<SNAP>
> >>>> ____________________________________
> >>>> Jorge Martin Cuervo
> >>>> Analista Programador
> >>>>
> >>>> Outsourcing Emarketplace
> >>>> deFacto Powered by Standards
> >>>>
> >>>> email <jo...@defactops.com>
> >>>> voz +34 985 129 820
> >>>> voz +34 660 026 384
> >>>> ____________________________________
> >>>>
> >>>
> >>>
> >>>---------------------------------------------------------------------
> >>>To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
> >>>For additional commands, e-mail: wss4j-dev-help@ws.apache.org
> >>>
> >> /
> >>
> >>
> >>
> >>--
> >>;-)
> >>____________________________________
> >>Jorge Martin Cuervo
> >>Analista Programador
> >>
> >>Outsourcing Emarketplace
> >>deFacto Powered by Standards
> >>
> >>email <jo...@defactops.com>
> >>voz +34 985 129 820
> >>voz +34 660 026 384
> >>____________________________________
> >>
> >>
> > --
> > ;-)
> > ____________________________________
> > Jorge Martin Cuervo
> > Analista Programador
> >
> > Outsourcing Emarketplace
> > deFacto Powered by Standards
> >
> > email <jo...@defactops.com>
> > voz +34 985 129 820
> > voz +34 660 026 384
> > ____________________________________
> >
> >
> >
>
--
;-)
____________________________________
Jorge Martin Cuervo
Analista Programador
Outsourcing Emarketplace
deFacto Powered by Standards
email <jo...@defactops.com>
voz +34 985 129 820
voz +34 660 026 384
____________________________________
Re: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Posted by Werner Dittmann <We...@t-online.de>.
Jorge,
that depends on the server you use. Usually, WEB-INF/lib should be
ok. Is the WEB-INF in the correct subdirectory of the application?
Or in the WAR file? Maybe you can have a look into the buidl.xml
file of WSS4J - there is a traget that builds a WAR file.
If that doesn't work we need to put in some debugging code into
WSS4J to get the excat reason why that happens.
Regards,
Werner
Jorge Martín Cuervo wrote:
> Hello again Werner,
>
> I've installed "Unlimited Strength Java(TM) Cryptography Extension
> Policy Files for the Java(TM) 2 SDK, Standard Edition, v 1.4.2" and use
> xerces, and the error still there.
>
> How can i install BouncyCastle correctly? do you think
> /bcprov-jdk13-128.jar is enougth?/
>
> Thanks.
>
> El mar, 13 de 09 de 2005 a las 17:00, Jorge Martín Cuervo escribió:
>
>> /Hello Werner,
>>
>> BounceCastle (/WEB-INF/lib/bcprov-jdk13-128.jar) is in the classpath
>> on server and client side, isn't it?
>>
>> I think my problem is "strengt encryption policy". I'll take a look at
>> Sun's doc now. As soon as i solve the problem i'll send a message to
>> mil list.
>>
>> Thanks for your quick response.
>>
>> El mar, 13 de 09 de 2005 a las 14:58, Werner Dittmann escribió:
>>
>>>Jorge,
>>>
>>>curretnly I see two problems: somehow the Crimson parser is used.
>>>Crimson is outdated, does not not support namespaces fully. Pls
>>>switch to Xerces or any other parser that fully supports namespaces.
>>>I saw this on the stack trace of the client side. Pls check your
>>>classpath, maybe also the endorsed option.
>>>
>>>Second, while looking at the stacktrace of the server I see that the
>>>SUN JCE provider wasn't able to instatiate the Cipher. Two reason
>>>come to my mind:
>>>- do you have the full strengt encryption policy installed? By default
>>> only the limited one is installed (pls refer to Sun's Java doc hoe to
>>> get the full strength policyit).
>>>- The Bouncycastle JAR is not in the Path of the server Web application.
>>> If WSS4J does not find the Bouncycastle in the Path it is not
>>> initialized and registered.
>>>
>>>Regards,
>>>Werner
>>>
>>>Jorge Martín Cuervo wrote:
>>>> Hello, i'm trying to make a webservice with a username/password
>>>> validation and encrypted data. First of all, i used UsernameToken and it
>>>> works perfect, but when i begin to code encryption it didn't work. do i
>>>> need any .jar?
>>>>
>>>>
>>>>
>>>> software used:
>>>> - jakarta-tomcat-4.1.31
>>>> - axis 1.2.1
>>>> - wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
>>>>
>>>>
>>>> server jars:
>>>> ./WEB-INF/lib/wsdl4j-1.5.1.jar
>>>> ./WEB-INF/lib/saaj.jar
>>>> ./WEB-INF/lib/log4j-1.2.8.jar
>>>> ./WEB-INF/lib/jaxrpc.jar
>>>> ./WEB-INF/lib/commons-logging-1.0.4.jar
>>>> ./WEB-INF/lib/commons-discovery-0.2.jar
>>>> ./WEB-INF/lib/axis.jar
>>>> ./WEB-INF/lib/axis-ant.jar
>>>> ./WEB-INF/lib/exist.jar
>>>> ./WEB-INF/lib/xmldb.jar
>>>> ./WEB-INF/lib/xmlrpc-1.2-patched.jar
>>>> ./WEB-INF/lib/wss4j.jar
>>>> ./WEB-INF/lib/opensaml-1.0.1.jar
>>>> ./WEB-INF/lib/xmlsec-1.2.96.jar
>>>> ./WEB-INF/lib/bcprov-jdk13-128.jar
>>>>
>>>> client jars:
>>>> ./libs/jaxrpc.jar
>>>> ./libs/axis.jar
>>>> ./libs/commons-logging-1.0.4.jar
>>>> ./libs/commons-discovery-0.2.jar
>>>> ./libs/saaj.jar
>>>> ./libs/wsdl4j-1.5.1.jar
>>>> ./libs/wss4j.jar
>>>> ./libs/opensaml-1.0.1.jar
>>>> ./libs/xmlsec-1.2.96.jar
>>>> ./libs/bcprov-jdk13-128.jar
>>>>
>>>> <SNIP> -------------------------------------------------<SNAP>
>>>> ____________________________________
>>>> Jorge Martin Cuervo
>>>> Analista Programador
>>>>
>>>> Outsourcing Emarketplace
>>>> deFacto Powered by Standards
>>>>
>>>> email <jo...@defactops.com>
>>>> voz +34 985 129 820
>>>> voz +34 660 026 384
>>>> ____________________________________
>>>>
>>>
>>>
>>>---------------------------------------------------------------------
>>>To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
>>>For additional commands, e-mail: wss4j-dev-help@ws.apache.org
>>>
>> /
>>
>>
>>
>>--
>>;-)
>>____________________________________
>>Jorge Martin Cuervo
>>Analista Programador
>>
>>Outsourcing Emarketplace
>>deFacto Powered by Standards
>>
>>email <jo...@defactops.com>
>>voz +34 985 129 820
>>voz +34 660 026 384
>>____________________________________
>>
>>
> --
> ;-)
> ____________________________________
> Jorge Martin Cuervo
> Analista Programador
>
> Outsourcing Emarketplace
> deFacto Powered by Standards
>
> email <jo...@defactops.com>
> voz +34 985 129 820
> voz +34 660 026 384
> ____________________________________
>
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: wss4j-dev-help@ws.apache.org
Re: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Posted by Werner Dittmann <We...@t-online.de>.
Jorge,
that depends on the server you use. Usually, WEB-INF/lib should be
ok. Is the WEB-INF in the correct subdirectory of the application?
Or in the WAR file? Maybe you can have a look into the buidl.xml
file of WSS4J - there is a traget that builds a WAR file.
If that doesn't work we need to put in some debugging code into
WSS4J to get the excat reason why that happens.
Regards,
Werner
Jorge Martín Cuervo wrote:
> Hello again Werner,
>
> I've installed "Unlimited Strength Java(TM) Cryptography Extension
> Policy Files for the Java(TM) 2 SDK, Standard Edition, v 1.4.2" and use
> xerces, and the error still there.
>
> How can i install BouncyCastle correctly? do you think
> /bcprov-jdk13-128.jar is enougth?/
>
> Thanks.
>
> El mar, 13 de 09 de 2005 a las 17:00, Jorge Martín Cuervo escribió:
>
>> /Hello Werner,
>>
>> BounceCastle (/WEB-INF/lib/bcprov-jdk13-128.jar) is in the classpath
>> on server and client side, isn't it?
>>
>> I think my problem is "strengt encryption policy". I'll take a look at
>> Sun's doc now. As soon as i solve the problem i'll send a message to
>> mil list.
>>
>> Thanks for your quick response.
>>
>> El mar, 13 de 09 de 2005 a las 14:58, Werner Dittmann escribió:
>>
>>>Jorge,
>>>
>>>curretnly I see two problems: somehow the Crimson parser is used.
>>>Crimson is outdated, does not not support namespaces fully. Pls
>>>switch to Xerces or any other parser that fully supports namespaces.
>>>I saw this on the stack trace of the client side. Pls check your
>>>classpath, maybe also the endorsed option.
>>>
>>>Second, while looking at the stacktrace of the server I see that the
>>>SUN JCE provider wasn't able to instatiate the Cipher. Two reason
>>>come to my mind:
>>>- do you have the full strengt encryption policy installed? By default
>>> only the limited one is installed (pls refer to Sun's Java doc hoe to
>>> get the full strength policyit).
>>>- The Bouncycastle JAR is not in the Path of the server Web application.
>>> If WSS4J does not find the Bouncycastle in the Path it is not
>>> initialized and registered.
>>>
>>>Regards,
>>>Werner
>>>
>>>Jorge Martín Cuervo wrote:
>>>> Hello, i'm trying to make a webservice with a username/password
>>>> validation and encrypted data. First of all, i used UsernameToken and it
>>>> works perfect, but when i begin to code encryption it didn't work. do i
>>>> need any .jar?
>>>>
>>>>
>>>>
>>>> software used:
>>>> - jakarta-tomcat-4.1.31
>>>> - axis 1.2.1
>>>> - wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
>>>>
>>>>
>>>> server jars:
>>>> ./WEB-INF/lib/wsdl4j-1.5.1.jar
>>>> ./WEB-INF/lib/saaj.jar
>>>> ./WEB-INF/lib/log4j-1.2.8.jar
>>>> ./WEB-INF/lib/jaxrpc.jar
>>>> ./WEB-INF/lib/commons-logging-1.0.4.jar
>>>> ./WEB-INF/lib/commons-discovery-0.2.jar
>>>> ./WEB-INF/lib/axis.jar
>>>> ./WEB-INF/lib/axis-ant.jar
>>>> ./WEB-INF/lib/exist.jar
>>>> ./WEB-INF/lib/xmldb.jar
>>>> ./WEB-INF/lib/xmlrpc-1.2-patched.jar
>>>> ./WEB-INF/lib/wss4j.jar
>>>> ./WEB-INF/lib/opensaml-1.0.1.jar
>>>> ./WEB-INF/lib/xmlsec-1.2.96.jar
>>>> ./WEB-INF/lib/bcprov-jdk13-128.jar
>>>>
>>>> client jars:
>>>> ./libs/jaxrpc.jar
>>>> ./libs/axis.jar
>>>> ./libs/commons-logging-1.0.4.jar
>>>> ./libs/commons-discovery-0.2.jar
>>>> ./libs/saaj.jar
>>>> ./libs/wsdl4j-1.5.1.jar
>>>> ./libs/wss4j.jar
>>>> ./libs/opensaml-1.0.1.jar
>>>> ./libs/xmlsec-1.2.96.jar
>>>> ./libs/bcprov-jdk13-128.jar
>>>>
>>>> <SNIP> -------------------------------------------------<SNAP>
>>>> ____________________________________
>>>> Jorge Martin Cuervo
>>>> Analista Programador
>>>>
>>>> Outsourcing Emarketplace
>>>> deFacto Powered by Standards
>>>>
>>>> email <jo...@defactops.com>
>>>> voz +34 985 129 820
>>>> voz +34 660 026 384
>>>> ____________________________________
>>>>
>>>
>>>
>>>---------------------------------------------------------------------
>>>To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
>>>For additional commands, e-mail: wss4j-dev-help@ws.apache.org
>>>
>> /
>>
>>
>>
>>--
>>;-)
>>____________________________________
>>Jorge Martin Cuervo
>>Analista Programador
>>
>>Outsourcing Emarketplace
>>deFacto Powered by Standards
>>
>>email <jo...@defactops.com>
>>voz +34 985 129 820
>>voz +34 660 026 384
>>____________________________________
>>
>>
> --
> ;-)
> ____________________________________
> Jorge Martin Cuervo
> Analista Programador
>
> Outsourcing Emarketplace
> deFacto Powered by Standards
>
> email <jo...@defactops.com>
> voz +34 985 129 820
> voz +34 660 026 384
> ____________________________________
>
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: wss4j-dev-help@ws.apache.org
Re: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Posted by Jorge Martín Cuervo <jo...@defactops.com>.
Hello again Werner,
I've installed "Unlimited Strength Java(TM) Cryptography Extension
Policy Files for the Java(TM) 2 SDK, Standard Edition, v 1.4.2" and use
xerces, and the error still there.
How can i install BouncyCastle correctly? do you think
bcprov-jdk13-128.jar is enougth?
Thanks.
El mar, 13 de 09 de 2005 a las 17:00, Jorge Martín Cuervo escribió:
> Hello Werner,
>
> BounceCastle (/WEB-INF/lib/bcprov-jdk13-128.jar) is in the classpath
> on server and client side, isn't it?
>
> I think my problem is "strengt encryption policy". I'll take a look at
> Sun's doc now. As soon as i solve the problem i'll send a message to
> mil list.
>
> Thanks for your quick response.
>
> El mar, 13 de 09 de 2005 a las 14:58, Werner Dittmann escribió:
>
> > Jorge,
> >
> > curretnly I see two problems: somehow the Crimson parser is used.
> > Crimson is outdated, does not not support namespaces fully. Pls
> > switch to Xerces or any other parser that fully supports namespaces.
> > I saw this on the stack trace of the client side. Pls check your
> > classpath, maybe also the endorsed option.
> >
> > Second, while looking at the stacktrace of the server I see that the
> > SUN JCE provider wasn't able to instatiate the Cipher. Two reason
> > come to my mind:
> > - do you have the full strengt encryption policy installed? By default
> > only the limited one is installed (pls refer to Sun's Java doc hoe to
> > get the full strength policyit).
> > - The Bouncycastle JAR is not in the Path of the server Web application.
> > If WSS4J does not find the Bouncycastle in the Path it is not
> > initialized and registered.
> >
> > Regards,
> > Werner
> >
> > Jorge Martín Cuervo wrote:
> > > Hello, i'm trying to make a webservice with a username/password
> > > validation and encrypted data. First of all, i used UsernameToken and it
> > > works perfect, but when i begin to code encryption it didn't work. do i
> > > need any .jar?
> > >
> > >
> > >
> > > software used:
> > > - jakarta-tomcat-4.1.31
> > > - axis 1.2.1
> > > - wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
> > >
> > >
> > > server jars:
> > > ./WEB-INF/lib/wsdl4j-1.5.1.jar
> > > ./WEB-INF/lib/saaj.jar
> > > ./WEB-INF/lib/log4j-1.2.8.jar
> > > ./WEB-INF/lib/jaxrpc.jar
> > > ./WEB-INF/lib/commons-logging-1.0.4.jar
> > > ./WEB-INF/lib/commons-discovery-0.2.jar
> > > ./WEB-INF/lib/axis.jar
> > > ./WEB-INF/lib/axis-ant.jar
> > > ./WEB-INF/lib/exist.jar
> > > ./WEB-INF/lib/xmldb.jar
> > > ./WEB-INF/lib/xmlrpc-1.2-patched.jar
> > > ./WEB-INF/lib/wss4j.jar
> > > ./WEB-INF/lib/opensaml-1.0.1.jar
> > > ./WEB-INF/lib/xmlsec-1.2.96.jar
> > > ./WEB-INF/lib/bcprov-jdk13-128.jar
> > >
> > > client jars:
> > > ./libs/jaxrpc.jar
> > > ./libs/axis.jar
> > > ./libs/commons-logging-1.0.4.jar
> > > ./libs/commons-discovery-0.2.jar
> > > ./libs/saaj.jar
> > > ./libs/wsdl4j-1.5.1.jar
> > > ./libs/wss4j.jar
> > > ./libs/opensaml-1.0.1.jar
> > > ./libs/xmlsec-1.2.96.jar
> > > ./libs/bcprov-jdk13-128.jar
> > >
> > > <SNIP> -------------------------------------------------<SNAP>
> > > ____________________________________
> > > Jorge Martin Cuervo
> > > Analista Programador
> > >
> > > Outsourcing Emarketplace
> > > deFacto Powered by Standards
> > >
> > > email <jo...@defactops.com>
> > > voz +34 985 129 820
> > > voz +34 660 026 384
> > > ____________________________________
> > >
> >
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
> > For additional commands, e-mail: wss4j-dev-help@ws.apache.org
>
>
>
>
>
>
> --
> ;-)
> ____________________________________
> Jorge Martin Cuervo
> Analista Programador
>
> Outsourcing Emarketplace
> deFacto Powered by Standards
>
> email <jo...@defactops.com>
> voz +34 985 129 820
> voz +34 660 026 384
> ____________________________________
--
;-)
____________________________________
Jorge Martin Cuervo
Analista Programador
Outsourcing Emarketplace
deFacto Powered by Standards
email <jo...@defactops.com>
voz +34 985 129 820
voz +34 660 026 384
____________________________________
Re: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Posted by Jorge Martín Cuervo <jo...@defactops.com>.
Hello again Werner,
I've installed "Unlimited Strength Java(TM) Cryptography Extension
Policy Files for the Java(TM) 2 SDK, Standard Edition, v 1.4.2" and use
xerces, and the error still there.
How can i install BouncyCastle correctly? do you think
bcprov-jdk13-128.jar is enougth?
Thanks.
El mar, 13 de 09 de 2005 a las 17:00, Jorge Martín Cuervo escribió:
> Hello Werner,
>
> BounceCastle (/WEB-INF/lib/bcprov-jdk13-128.jar) is in the classpath
> on server and client side, isn't it?
>
> I think my problem is "strengt encryption policy". I'll take a look at
> Sun's doc now. As soon as i solve the problem i'll send a message to
> mil list.
>
> Thanks for your quick response.
>
> El mar, 13 de 09 de 2005 a las 14:58, Werner Dittmann escribió:
>
> > Jorge,
> >
> > curretnly I see two problems: somehow the Crimson parser is used.
> > Crimson is outdated, does not not support namespaces fully. Pls
> > switch to Xerces or any other parser that fully supports namespaces.
> > I saw this on the stack trace of the client side. Pls check your
> > classpath, maybe also the endorsed option.
> >
> > Second, while looking at the stacktrace of the server I see that the
> > SUN JCE provider wasn't able to instatiate the Cipher. Two reason
> > come to my mind:
> > - do you have the full strengt encryption policy installed? By default
> > only the limited one is installed (pls refer to Sun's Java doc hoe to
> > get the full strength policyit).
> > - The Bouncycastle JAR is not in the Path of the server Web application.
> > If WSS4J does not find the Bouncycastle in the Path it is not
> > initialized and registered.
> >
> > Regards,
> > Werner
> >
> > Jorge Martín Cuervo wrote:
> > > Hello, i'm trying to make a webservice with a username/password
> > > validation and encrypted data. First of all, i used UsernameToken and it
> > > works perfect, but when i begin to code encryption it didn't work. do i
> > > need any .jar?
> > >
> > >
> > >
> > > software used:
> > > - jakarta-tomcat-4.1.31
> > > - axis 1.2.1
> > > - wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
> > >
> > >
> > > server jars:
> > > ./WEB-INF/lib/wsdl4j-1.5.1.jar
> > > ./WEB-INF/lib/saaj.jar
> > > ./WEB-INF/lib/log4j-1.2.8.jar
> > > ./WEB-INF/lib/jaxrpc.jar
> > > ./WEB-INF/lib/commons-logging-1.0.4.jar
> > > ./WEB-INF/lib/commons-discovery-0.2.jar
> > > ./WEB-INF/lib/axis.jar
> > > ./WEB-INF/lib/axis-ant.jar
> > > ./WEB-INF/lib/exist.jar
> > > ./WEB-INF/lib/xmldb.jar
> > > ./WEB-INF/lib/xmlrpc-1.2-patched.jar
> > > ./WEB-INF/lib/wss4j.jar
> > > ./WEB-INF/lib/opensaml-1.0.1.jar
> > > ./WEB-INF/lib/xmlsec-1.2.96.jar
> > > ./WEB-INF/lib/bcprov-jdk13-128.jar
> > >
> > > client jars:
> > > ./libs/jaxrpc.jar
> > > ./libs/axis.jar
> > > ./libs/commons-logging-1.0.4.jar
> > > ./libs/commons-discovery-0.2.jar
> > > ./libs/saaj.jar
> > > ./libs/wsdl4j-1.5.1.jar
> > > ./libs/wss4j.jar
> > > ./libs/opensaml-1.0.1.jar
> > > ./libs/xmlsec-1.2.96.jar
> > > ./libs/bcprov-jdk13-128.jar
> > >
> > > <SNIP> -------------------------------------------------<SNAP>
> > > ____________________________________
> > > Jorge Martin Cuervo
> > > Analista Programador
> > >
> > > Outsourcing Emarketplace
> > > deFacto Powered by Standards
> > >
> > > email <jo...@defactops.com>
> > > voz +34 985 129 820
> > > voz +34 660 026 384
> > > ____________________________________
> > >
> >
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
> > For additional commands, e-mail: wss4j-dev-help@ws.apache.org
>
>
>
>
>
>
> --
> ;-)
> ____________________________________
> Jorge Martin Cuervo
> Analista Programador
>
> Outsourcing Emarketplace
> deFacto Powered by Standards
>
> email <jo...@defactops.com>
> voz +34 985 129 820
> voz +34 660 026 384
> ____________________________________
--
;-)
____________________________________
Jorge Martin Cuervo
Analista Programador
Outsourcing Emarketplace
deFacto Powered by Standards
email <jo...@defactops.com>
voz +34 985 129 820
voz +34 660 026 384
____________________________________
Re: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Posted by Jorge Martín Cuervo <jo...@defactops.com>.
Hello Werner,
BounceCastle (/WEB-INF/lib/bcprov-jdk13-128.jar) is in the classpath on
server and client side, isn't it?
I think my problem is "strengt encryption policy". I'll take a look at
Sun's doc now. As soon as i solve the problem i'll send a message to mil
list.
Thanks for your quick response.
El mar, 13 de 09 de 2005 a las 14:58, Werner Dittmann escribió:
> Jorge,
>
> curretnly I see two problems: somehow the Crimson parser is used.
> Crimson is outdated, does not not support namespaces fully. Pls
> switch to Xerces or any other parser that fully supports namespaces.
> I saw this on the stack trace of the client side. Pls check your
> classpath, maybe also the endorsed option.
>
> Second, while looking at the stacktrace of the server I see that the
> SUN JCE provider wasn't able to instatiate the Cipher. Two reason
> come to my mind:
> - do you have the full strengt encryption policy installed? By default
> only the limited one is installed (pls refer to Sun's Java doc hoe to
> get the full strength policyit).
> - The Bouncycastle JAR is not in the Path of the server Web application.
> If WSS4J does not find the Bouncycastle in the Path it is not
> initialized and registered.
>
> Regards,
> Werner
>
> Jorge Martín Cuervo wrote:
> > Hello, i'm trying to make a webservice with a username/password
> > validation and encrypted data. First of all, i used UsernameToken and it
> > works perfect, but when i begin to code encryption it didn't work. do i
> > need any .jar?
> >
> >
> >
> > software used:
> > - jakarta-tomcat-4.1.31
> > - axis 1.2.1
> > - wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
> >
> >
> > server jars:
> > ./WEB-INF/lib/wsdl4j-1.5.1.jar
> > ./WEB-INF/lib/saaj.jar
> > ./WEB-INF/lib/log4j-1.2.8.jar
> > ./WEB-INF/lib/jaxrpc.jar
> > ./WEB-INF/lib/commons-logging-1.0.4.jar
> > ./WEB-INF/lib/commons-discovery-0.2.jar
> > ./WEB-INF/lib/axis.jar
> > ./WEB-INF/lib/axis-ant.jar
> > ./WEB-INF/lib/exist.jar
> > ./WEB-INF/lib/xmldb.jar
> > ./WEB-INF/lib/xmlrpc-1.2-patched.jar
> > ./WEB-INF/lib/wss4j.jar
> > ./WEB-INF/lib/opensaml-1.0.1.jar
> > ./WEB-INF/lib/xmlsec-1.2.96.jar
> > ./WEB-INF/lib/bcprov-jdk13-128.jar
> >
> > client jars:
> > ./libs/jaxrpc.jar
> > ./libs/axis.jar
> > ./libs/commons-logging-1.0.4.jar
> > ./libs/commons-discovery-0.2.jar
> > ./libs/saaj.jar
> > ./libs/wsdl4j-1.5.1.jar
> > ./libs/wss4j.jar
> > ./libs/opensaml-1.0.1.jar
> > ./libs/xmlsec-1.2.96.jar
> > ./libs/bcprov-jdk13-128.jar
> >
> > <SNIP> -------------------------------------------------<SNAP>
> > ____________________________________
> > Jorge Martin Cuervo
> > Analista Programador
> >
> > Outsourcing Emarketplace
> > deFacto Powered by Standards
> >
> > email <jo...@defactops.com>
> > voz +34 985 129 820
> > voz +34 660 026 384
> > ____________________________________
> >
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
> For additional commands, e-mail: wss4j-dev-help@ws.apache.org
>
--
;-)
____________________________________
Jorge Martin Cuervo
Analista Programador
Outsourcing Emarketplace
deFacto Powered by Standards
email <jo...@defactops.com>
voz +34 985 129 820
voz +34 660 026 384
____________________________________
Re: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Posted by Jorge Martín Cuervo <jo...@defactops.com>.
Hello Werner,
BounceCastle (/WEB-INF/lib/bcprov-jdk13-128.jar) is in the classpath on
server and client side, isn't it?
I think my problem is "strengt encryption policy". I'll take a look at
Sun's doc now. As soon as i solve the problem i'll send a message to mil
list.
Thanks for your quick response.
El mar, 13 de 09 de 2005 a las 14:58, Werner Dittmann escribió:
> Jorge,
>
> curretnly I see two problems: somehow the Crimson parser is used.
> Crimson is outdated, does not not support namespaces fully. Pls
> switch to Xerces or any other parser that fully supports namespaces.
> I saw this on the stack trace of the client side. Pls check your
> classpath, maybe also the endorsed option.
>
> Second, while looking at the stacktrace of the server I see that the
> SUN JCE provider wasn't able to instatiate the Cipher. Two reason
> come to my mind:
> - do you have the full strengt encryption policy installed? By default
> only the limited one is installed (pls refer to Sun's Java doc hoe to
> get the full strength policyit).
> - The Bouncycastle JAR is not in the Path of the server Web application.
> If WSS4J does not find the Bouncycastle in the Path it is not
> initialized and registered.
>
> Regards,
> Werner
>
> Jorge Martín Cuervo wrote:
> > Hello, i'm trying to make a webservice with a username/password
> > validation and encrypted data. First of all, i used UsernameToken and it
> > works perfect, but when i begin to code encryption it didn't work. do i
> > need any .jar?
> >
> >
> >
> > software used:
> > - jakarta-tomcat-4.1.31
> > - axis 1.2.1
> > - wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
> >
> >
> > server jars:
> > ./WEB-INF/lib/wsdl4j-1.5.1.jar
> > ./WEB-INF/lib/saaj.jar
> > ./WEB-INF/lib/log4j-1.2.8.jar
> > ./WEB-INF/lib/jaxrpc.jar
> > ./WEB-INF/lib/commons-logging-1.0.4.jar
> > ./WEB-INF/lib/commons-discovery-0.2.jar
> > ./WEB-INF/lib/axis.jar
> > ./WEB-INF/lib/axis-ant.jar
> > ./WEB-INF/lib/exist.jar
> > ./WEB-INF/lib/xmldb.jar
> > ./WEB-INF/lib/xmlrpc-1.2-patched.jar
> > ./WEB-INF/lib/wss4j.jar
> > ./WEB-INF/lib/opensaml-1.0.1.jar
> > ./WEB-INF/lib/xmlsec-1.2.96.jar
> > ./WEB-INF/lib/bcprov-jdk13-128.jar
> >
> > client jars:
> > ./libs/jaxrpc.jar
> > ./libs/axis.jar
> > ./libs/commons-logging-1.0.4.jar
> > ./libs/commons-discovery-0.2.jar
> > ./libs/saaj.jar
> > ./libs/wsdl4j-1.5.1.jar
> > ./libs/wss4j.jar
> > ./libs/opensaml-1.0.1.jar
> > ./libs/xmlsec-1.2.96.jar
> > ./libs/bcprov-jdk13-128.jar
> >
> > <SNIP> -------------------------------------------------<SNAP>
> > ____________________________________
> > Jorge Martin Cuervo
> > Analista Programador
> >
> > Outsourcing Emarketplace
> > deFacto Powered by Standards
> >
> > email <jo...@defactops.com>
> > voz +34 985 129 820
> > voz +34 660 026 384
> > ____________________________________
> >
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
> For additional commands, e-mail: wss4j-dev-help@ws.apache.org
>
--
;-)
____________________________________
Jorge Martin Cuervo
Analista Programador
Outsourcing Emarketplace
deFacto Powered by Standards
email <jo...@defactops.com>
voz +34 985 129 820
voz +34 660 026 384
____________________________________
Re: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Posted by Werner Dittmann <We...@t-online.de>.
Jorge,
curretnly I see two problems: somehow the Crimson parser is used.
Crimson is outdated, does not not support namespaces fully. Pls
switch to Xerces or any other parser that fully supports namespaces.
I saw this on the stack trace of the client side. Pls check your
classpath, maybe also the endorsed option.
Second, while looking at the stacktrace of the server I see that the
SUN JCE provider wasn't able to instatiate the Cipher. Two reason
come to my mind:
- do you have the full strengt encryption policy installed? By default
only the limited one is installed (pls refer to Sun's Java doc hoe to
get the full strength policyit).
- The Bouncycastle JAR is not in the Path of the server Web application.
If WSS4J does not find the Bouncycastle in the Path it is not
initialized and registered.
Regards,
Werner
Jorge Martín Cuervo wrote:
> Hello, i'm trying to make a webservice with a username/password
> validation and encrypted data. First of all, i used UsernameToken and it
> works perfect, but when i begin to code encryption it didn't work. do i
> need any .jar?
>
>
>
> software used:
> - jakarta-tomcat-4.1.31
> - axis 1.2.1
> - wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
>
>
> server jars:
> ./WEB-INF/lib/wsdl4j-1.5.1.jar
> ./WEB-INF/lib/saaj.jar
> ./WEB-INF/lib/log4j-1.2.8.jar
> ./WEB-INF/lib/jaxrpc.jar
> ./WEB-INF/lib/commons-logging-1.0.4.jar
> ./WEB-INF/lib/commons-discovery-0.2.jar
> ./WEB-INF/lib/axis.jar
> ./WEB-INF/lib/axis-ant.jar
> ./WEB-INF/lib/exist.jar
> ./WEB-INF/lib/xmldb.jar
> ./WEB-INF/lib/xmlrpc-1.2-patched.jar
> ./WEB-INF/lib/wss4j.jar
> ./WEB-INF/lib/opensaml-1.0.1.jar
> ./WEB-INF/lib/xmlsec-1.2.96.jar
> ./WEB-INF/lib/bcprov-jdk13-128.jar
>
> client jars:
> ./libs/jaxrpc.jar
> ./libs/axis.jar
> ./libs/commons-logging-1.0.4.jar
> ./libs/commons-discovery-0.2.jar
> ./libs/saaj.jar
> ./libs/wsdl4j-1.5.1.jar
> ./libs/wss4j.jar
> ./libs/opensaml-1.0.1.jar
> ./libs/xmlsec-1.2.96.jar
> ./libs/bcprov-jdk13-128.jar
>
> <SNIP> -------------------------------------------------<SNAP>
> ____________________________________
> Jorge Martin Cuervo
> Analista Programador
>
> Outsourcing Emarketplace
> deFacto Powered by Standards
>
> email <jo...@defactops.com>
> voz +34 985 129 820
> voz +34 660 026 384
> ____________________________________
>
---------------------------------------------------------------------
To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: wss4j-dev-help@ws.apache.org
Re: No such algorithm: http://www.w3.org/2001/04/xmlenc#rsa-1_5
Posted by Werner Dittmann <We...@t-online.de>.
Jorge,
curretnly I see two problems: somehow the Crimson parser is used.
Crimson is outdated, does not not support namespaces fully. Pls
switch to Xerces or any other parser that fully supports namespaces.
I saw this on the stack trace of the client side. Pls check your
classpath, maybe also the endorsed option.
Second, while looking at the stacktrace of the server I see that the
SUN JCE provider wasn't able to instatiate the Cipher. Two reason
come to my mind:
- do you have the full strengt encryption policy installed? By default
only the limited one is installed (pls refer to Sun's Java doc hoe to
get the full strength policyit).
- The Bouncycastle JAR is not in the Path of the server Web application.
If WSS4J does not find the Bouncycastle in the Path it is not
initialized and registered.
Regards,
Werner
Jorge Martín Cuervo wrote:
> Hello, i'm trying to make a webservice with a username/password
> validation and encrypted data. First of all, i used UsernameToken and it
> works perfect, but when i begin to code encryption it didn't work. do i
> need any .jar?
>
>
>
> software used:
> - jakarta-tomcat-4.1.31
> - axis 1.2.1
> - wss4j 1.1.0 (i replaced xml with this one: xmlsec-1.2.96.jar)
>
>
> server jars:
> ./WEB-INF/lib/wsdl4j-1.5.1.jar
> ./WEB-INF/lib/saaj.jar
> ./WEB-INF/lib/log4j-1.2.8.jar
> ./WEB-INF/lib/jaxrpc.jar
> ./WEB-INF/lib/commons-logging-1.0.4.jar
> ./WEB-INF/lib/commons-discovery-0.2.jar
> ./WEB-INF/lib/axis.jar
> ./WEB-INF/lib/axis-ant.jar
> ./WEB-INF/lib/exist.jar
> ./WEB-INF/lib/xmldb.jar
> ./WEB-INF/lib/xmlrpc-1.2-patched.jar
> ./WEB-INF/lib/wss4j.jar
> ./WEB-INF/lib/opensaml-1.0.1.jar
> ./WEB-INF/lib/xmlsec-1.2.96.jar
> ./WEB-INF/lib/bcprov-jdk13-128.jar
>
> client jars:
> ./libs/jaxrpc.jar
> ./libs/axis.jar
> ./libs/commons-logging-1.0.4.jar
> ./libs/commons-discovery-0.2.jar
> ./libs/saaj.jar
> ./libs/wsdl4j-1.5.1.jar
> ./libs/wss4j.jar
> ./libs/opensaml-1.0.1.jar
> ./libs/xmlsec-1.2.96.jar
> ./libs/bcprov-jdk13-128.jar
>
> <SNIP> -------------------------------------------------<SNAP>
> ____________________________________
> Jorge Martin Cuervo
> Analista Programador
>
> Outsourcing Emarketplace
> deFacto Powered by Standards
>
> email <jo...@defactops.com>
> voz +34 985 129 820
> voz +34 660 026 384
> ____________________________________
>
---------------------------------------------------------------------
To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: wss4j-dev-help@ws.apache.org