You are viewing a plain text version of this content. The canonical link for it is here.

Posted to wss4j-dev@ws.apache.org by anpu selvan <an...@yahoo.com> on 2005/12/19 05:17:39 UTC

help - client side config for wss4j

  hi,
      i am using wss4j for webservice security.
  earlier i used clientside config file to configure the handlers (wsallsender and wsallreceiver). that was working fine. then i try to configure this handlers programattically , there i got an exception 
    - org.apache.ws.security.WSSecurityException: The signature verification failed

  and this 2 lines debug info from wss4j
    - Verification failed for URI "#id-10998550"
  - Verification successful for URI "#sigcon-21142615"
   
  but i am sure that i used same configuration. even i reffered that FAQ wss4j wiki page.
  there u said to insert this line
   
   <globalConfiguration>
   <parameter name="enableNamespacePrefixOptimization" value="false" />
</globalConfiguration>

   
  how can i include this line pragramattically ?
   
  this is my configuration class 
   
  public EngineConfiguration createClientConfig() {
  
   SimpleProvider clientConfig = new SimpleProvider();
   Handler securitySenderHandler = (Handler) new WSDoAllSender();
   Handler securityReceiverHandler = (Handler) new WSDoAllReceiver();
   
  // here read all the config-properties from 
   // a file (user,signatureKeyIdentifier,.....)
  
   securitySenderHandler.setOption(WSHandlerConstants.USER, user);
   securitySenderHandler.setOption(WSHandlerConstants.SIG_KEY_ID,
     signatureKeyIdentifier);
   securitySenderHandler.setOption(WSHandlerConstants.ENC_KEY_ID,
     encryptionKeyIdentifier);
   securitySenderHandler.setOption(WSHandlerConstants.SIG_PROP_FILE, signaturePropFile);
   securitySenderHandler.setOption(WSHandlerConstants.PW_CALLBACK_CLASS,
     passwordCallbackClass);
   securitySenderHandler.setOption(WSHandlerConstants.ENCRYPTION_USER, encryptionUser);
   securitySenderHandler.setOption(WSHandlerConstants.ACTION, action);
   
   
           // set all the properties securitySenderHandler 
   securityReceiverHandler.setOption(WSHandlerConstants.ACTION, action);
   securityReceiverHandler.setOption(WSHandlerConstants.PW_CALLBACK_CLASS,
     passwordCallbackClass);
   //securityReceiverHandler.setOption(WSHandlerConstants.ENC_PROP_FILE, signaturePropFile);
   securityReceiverHandler.setOption(WSHandlerConstants.SIG_PROP_FILE, signaturePropFile);
   
      
   
   SimpleChain reqHandler = new SimpleChain();
   SimpleChain respHandler = new SimpleChain();
   // add the sender handler to the request
   reqHandler.addHandler(securitySenderHandler);
   // add the reveiver handler to the response
   respHandler.addHandler(securityReceiverHandler);
   Handler pivot = (Handler) new HTTPSender();
   
   Handler transport = new SimpleTargetedChain(reqHandler, pivot,
     respHandler);
   
     clientConfig.deployTransport(HTTPTransport.DEFAULT_TRANSPORT_NAME,
    transport);
   
   return clientConfig;
   
   
  could anyone help in this isse?
   
  regards,
  anpu
  



__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com

Re: help - client side config for wss4j

Posted by Davanum Srinivas <da...@gmail.com>.

user AxisProperties.setProperty

On 12/18/05, anpu selvan <an...@yahoo.com> wrote:
>
> hi,
>     i am using wss4j for webservice security.
> earlier i used clientside config file to configure the handlers (wsallsender
> and wsallreceiver). that was working fine. then i try to configure this
> handlers programattically , there i got an exception
>
> - org.apache.ws.security.WSSecurityException: The signature
> verification failed
> and this 2 lines debug info from wss4j
>
> - Verification failed for URI "#id-10998550"
> - Verification successful for URI "#sigcon-21142615"
>
> but i am sure that i used same configuration. even i reffered that FAQ wss4j
> wiki page.
> there u said to insert this line
>
>  <globalConfiguration>
>    <parameter name="enableNamespacePrefixOptimization"
> value="false" />
> </globalConfiguration>
>
> how can i include this line pragramattically ?
>
> this is my configuration class
>
> public EngineConfiguration createClientConfig() {
>
>    SimpleProvider clientConfig = new SimpleProvider();
>    Handler securitySenderHandler = (Handler) new WSDoAllSender();
>    Handl er securityReceiverHandler = (Handler) new WSDoAllReceiver();
>
> // here read all the config-properties from
>  // a file (user,signatureKeyIdentifier,.....)
>
>    securitySenderHandler.setOption(WSHandlerConstants.USER, user);
>    securitySenderHandler.setOption(WSHandlerConstants.SIG_KEY_ID,
>      signatureKeyIdentifier);
>    securitySenderHandler.setOption(WSHandlerConstants.ENC_KEY_ID,
>      encryptionKeyIdentifier);
>
> securitySenderHandler.setOption(WSHandlerConstants.SIG_PROP_FILE,
> signaturePropFile);
>
> securitySenderHandler.setOption(WSHandlerConstants.PW_CALLBACK_CLASS,
>      passwordCallbackClass);
>
> securitySenderHandler.setOption(WSHandlerConstants.ENCRYPTION_USER,
> encryptionUser);
>    securitySenderHandler.setOption(WSHandlerConstants.ACTION, action);
>
>
>            // set all the properties securitySenderHandler
>
> securityReceiverHandler.setOption(WSHandlerConstants.ACTION,
> action);
>
> securityReceiverHandler.setOption(WSHandlerConstants.PW_CALLBACK_CLASS,
>      passwordCallbackClass);
>
> //securityReceiverHandler.setOption(WSHandlerConstants.ENC_PROP_FILE,
> signaturePropFile);
>
> securityReceiverHandler.setOption(WSHandlerConstants.SIG_PROP_FILE,
> signaturePropFile);
>
>
>
>    SimpleChain reqHandler = new SimpleChain();
>    SimpleChain respHandler = new SimpleChain();
>    // add the sender handler to the request
>    reqHandler.addHandler(securitySenderHandler);
>    // add the reveiver handler to the response
>    respHandler.addHandler(securityReceiverHandler);
>    Handler pivot = (Handler) new HTTPSender();
>
>    Handler transport = new SimpleTargetedChain(reqHandler, pivot,
>      respHandler);
>
>
> clientConfig.deployTransport(HTTPTransport.DEFAULT_TRANSPORT_NAME,
>     transport);
>
>    return clientConfig;
>
>
> could anyone help in this isse?
>
> regards,
> anpu
>
>
>
> __________________________________________________
> Do You Yahoo!?
> Tired of spam? Yahoo! Mail has the best spam protection around
> http://mail.yahoo.com


--
Davanum Srinivas : http://wso2.com/blogs/

---------------------------------------------------------------------
To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: wss4j-dev-help@ws.apache.org

Re: help - client side config for wss4j

Posted by Davanum Srinivas <da...@gmail.com>.

user AxisProperties.setProperty

On 12/18/05, anpu selvan <an...@yahoo.com> wrote:
>
> hi,
>     i am using wss4j for webservice security.
> earlier i used clientside config file to configure the handlers (wsallsender
> and wsallreceiver). that was working fine. then i try to configure this
> handlers programattically , there i got an exception
>
> - org.apache.ws.security.WSSecurityException: The signature
> verification failed
> and this 2 lines debug info from wss4j
>
> - Verification failed for URI "#id-10998550"
> - Verification successful for URI "#sigcon-21142615"
>
> but i am sure that i used same configuration. even i reffered that FAQ wss4j
> wiki page.
> there u said to insert this line
>
>  <globalConfiguration>
>    <parameter name="enableNamespacePrefixOptimization"
> value="false" />
> </globalConfiguration>
>
> how can i include this line pragramattically ?
>
> this is my configuration class
>
> public EngineConfiguration createClientConfig() {
>
>    SimpleProvider clientConfig = new SimpleProvider();
>    Handler securitySenderHandler = (Handler) new WSDoAllSender();
>    Handl er securityReceiverHandler = (Handler) new WSDoAllReceiver();
>
> // here read all the config-properties from
>  // a file (user,signatureKeyIdentifier,.....)
>
>    securitySenderHandler.setOption(WSHandlerConstants.USER, user);
>    securitySenderHandler.setOption(WSHandlerConstants.SIG_KEY_ID,
>      signatureKeyIdentifier);
>    securitySenderHandler.setOption(WSHandlerConstants.ENC_KEY_ID,
>      encryptionKeyIdentifier);
>
> securitySenderHandler.setOption(WSHandlerConstants.SIG_PROP_FILE,
> signaturePropFile);
>
> securitySenderHandler.setOption(WSHandlerConstants.PW_CALLBACK_CLASS,
>      passwordCallbackClass);
>
> securitySenderHandler.setOption(WSHandlerConstants.ENCRYPTION_USER,
> encryptionUser);
>    securitySenderHandler.setOption(WSHandlerConstants.ACTION, action);
>
>
>            // set all the properties securitySenderHandler
>
> securityReceiverHandler.setOption(WSHandlerConstants.ACTION,
> action);
>
> securityReceiverHandler.setOption(WSHandlerConstants.PW_CALLBACK_CLASS,
>      passwordCallbackClass);
>
> //securityReceiverHandler.setOption(WSHandlerConstants.ENC_PROP_FILE,
> signaturePropFile);
>
> securityReceiverHandler.setOption(WSHandlerConstants.SIG_PROP_FILE,
> signaturePropFile);
>
>
>
>    SimpleChain reqHandler = new SimpleChain();
>    SimpleChain respHandler = new SimpleChain();
>    // add the sender handler to the request
>    reqHandler.addHandler(securitySenderHandler);
>    // add the reveiver handler to the response
>    respHandler.addHandler(securityReceiverHandler);
>    Handler pivot = (Handler) new HTTPSender();
>
>    Handler transport = new SimpleTargetedChain(reqHandler, pivot,
>      respHandler);
>
>
> clientConfig.deployTransport(HTTPTransport.DEFAULT_TRANSPORT_NAME,
>     transport);
>
>    return clientConfig;
>
>
> could anyone help in this isse?
>
> regards,
> anpu
>
>
>
> __________________________________________________
> Do You Yahoo!?
> Tired of spam? Yahoo! Mail has the best spam protection around
> http://mail.yahoo.com


--
Davanum Srinivas : http://wso2.com/blogs/

---------------------------------------------------------------------
To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: wss4j-dev-help@ws.apache.org