• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Liutauras Vilda
  • Tim Cooke
  • Paul Clapham
  • Jeanne Boyarsky
Sheriffs:
  • Ron McLeod
  • Frank Carver
  • Junilu Lacar
Saloon Keepers:
  • Stephan van Hulst
  • Tim Moores
  • Tim Holloway
  • Al Hobbs
  • Carey Brown
Bartenders:
  • Piet Souris
  • Frits Walraven
  • fred rosenberger

WSE security authentication problem.

 
Greenhorn
Posts: 1
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi,

There is a web service that is hosted on a server. (a .net smart client architecture).

I did the following:

1. Created java stubs via wsdl2java axis tool.
2. Compiled and put them in a jar.
3. Used that jar and axis jars to invoke the web services.
4. Got the following error:

faultDetail:
{http://xml.apache.org/axis/}stackTrace:Message did not meet security requirements.
at org.apache.axis.message.SOAPFaultBuilder.createFault(SOAPFaultBuilder.java:222)
at org.apache.axis.message.SOAPFaultBuilder.endElement(SOAPFaultBuilder.java:129)
at org.apache.axis.encoding.DeserializationContext.endElement(DeserializationContext.java:1087)
at com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.endElement(Unknown Source)
at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanEndElement(Unknown Source)


Then I searched the internet and did the following:

1. Created a WSDD file as :

<deployment xmlns="http://xml.apache.org/axis/wsdd/" xmlns:java="http://xml.apache.org/axis/wsdd/providers/java">
<transport name="http" pivot="java rg.apache.axis.transport.http.HTTPSender"/>
<globalConfiguration >
<requestFlow >
<handler type="java rg.apache.ws.axis.security.WSDoAllSender" >
<parameter name="action" value="UsernameToken"/>
<parameter name="passwordType" value="PasswordText"/>
<parameter name="user" value="username"/>
<parameter name="passwordCallbackClass" value="PWCallBack"/>
</handler>
</requestFlow >
</globalConfiguration >
</deployment>

2. Also created a callback class as :

public class PWCallBack implements CallbackHandler {
public void handle(Callback[] callbacks) throws IOException, UnsupportedCallbackException {
for (int i = 0; i < callbacks.length; i++) {
if (callbacks[i] instanceof WSPasswordCallback) {
WSPasswordCallback pc = (WSPasswordCallback)callbacks[i];
// set the password given a username
if ("username".equals(pc.getIdentifer())) {
pc.setPassword("");
}
} else {
throw new UnsupportedCallbackException(callbacks[i], "Unrecognized Callback");
}
}
}
}


3. Changed the web service invocation code as :

FileInputStream wsSecurity = new FileInputStream("XYZ.wsdd");
EngineConfiguration config = new FileProvider(wsSecurity);

com.XYZ.www.webservices.XYZWebService service =
new com.XYZ.www.webservices.XYZWebServiceLocator(config);

4. Then I used this service object to invoke the service.

5. I get the following error:

faultString: An invalid security token was provided ---> The incoming Username token must contain password if the password option is set to be SendPlainText.
faultActor: http://192.120.14.69:4491/te/XYZWebService.asmx
faultNode:
faultDetail:
{http://xml.apache.org/axis/}stackTrace:An invalid security token was provided ---> The incoming User
name token must contain password if the password option is set to be SendPlainText.
at org.apache.axis.message.SOAPFaultBuilder.createFault(SOAPFaultBuilder.java:222)
at org.apache.axis.message.SOAPFaultBuilder.endElement(SOAPFaultBuilder.java:129)
at org.apache.axis.encoding.DeserializationContext.endElement(DeserializationContext.java:1087)
at com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.endElement(Unknown Source)
at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanEndElement(Unknown Source)

The main problem is that the username that I have to use does not require a password. When I send null or empty password, I get this error.

Please help.

Thanks in advance.

[ October 15, 2008: Message edited by: K.K ]
[ October 15, 2008: Message edited by: K.K ]
 
I have gone to look for myself. If I should return before I get back, keep me here with this tiny ad:
Garden Master Course kickstarter
https://coderanch.com/t/754577/Garden-Master-kickstarter
reply
    Bookmark Topic Watch Topic
  • New Topic