Return-Path: X-Original-To: apmail-cxf-dev-archive@www.apache.org Delivered-To: apmail-cxf-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 4AD131129F for ; Wed, 30 Apr 2014 14:07:00 +0000 (UTC) Received: (qmail 70610 invoked by uid 500); 30 Apr 2014 14:06:58 -0000 Delivered-To: apmail-cxf-dev-archive@cxf.apache.org Received: (qmail 70522 invoked by uid 500); 30 Apr 2014 14:06:56 -0000 Mailing-List: contact dev-help@cxf.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@cxf.apache.org Delivered-To: mailing list dev@cxf.apache.org Received: (qmail 70513 invoked by uid 99); 30 Apr 2014 14:06:56 -0000 Received: from minotaur.apache.org (HELO minotaur.apache.org) (140.211.11.9) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 30 Apr 2014 14:06:56 +0000 Received: from localhost (HELO mail-wg0-f52.google.com) (127.0.0.1) (smtp-auth username coheigea, mechanism plain) by minotaur.apache.org (qpsmtpd/0.29) with ESMTP; Wed, 30 Apr 2014 14:06:56 +0000 Received: by mail-wg0-f52.google.com with SMTP id l18so1763879wgh.35 for ; Wed, 30 Apr 2014 07:06:54 -0700 (PDT) MIME-Version: 1.0 X-Received: by 10.180.89.211 with SMTP id bq19mr3959241wib.22.1398866814806; Wed, 30 Apr 2014 07:06:54 -0700 (PDT) Reply-To: coheigea@apache.org Received: by 10.194.11.103 with HTTP; Wed, 30 Apr 2014 07:06:54 -0700 (PDT) In-Reply-To: <1398785294847-5743422.post@n5.nabble.com> References: <1398469734046-5743324.post@n5.nabble.com> <1398700986147-5743381.post@n5.nabble.com> <1398785294847-5743422.post@n5.nabble.com> Date: Wed, 30 Apr 2014 15:06:54 +0100 Message-ID: Subject: Re: Http proxy with STS From: Colm O hEigeartaigh To: "dev@cxf.apache.org" Content-Type: multipart/alternative; boundary=e89a8f3bae6795b17704f8430f24 --e89a8f3bae6795b17704f8430f24 Content-Type: text/plain; charset=UTF-8 Could you try with a http conduit based on the address instead, e.g.? I've tried with this with CXF 3.0.0-SNAPSHOT + the SecureConveration code does pick up the proxy settings... Colm. On Tue, Apr 29, 2014 at 4:28 PM, lotos wrote: > I see timeout too but only for the second request. > > First request doesn't use proxy: > > 28.04.2014 16:37:01 > > org.apache.cxf.services.SecurityTokenService.SecurityTokenService.SecurityTokenService > INFO: Outbound Message > --------------------------- > ID: 1 > Address: https://....URL...../account/ > Encoding: UTF-8 > Http-Method: POST > Content-Type: application/soap+xml; > action="http://schemas.xmlsoap.org/ws/2005/02/trust/RST/SCT" > Headers: {Accept=[*/*]} > Payload: xmlns:soap="http://www.w3.org/2003/05/soap-envelope > ">........ > -------------------------------------- > 28.04.2014 16:37:01 > > org.apache.cxf.services.SecurityTokenService.SecurityTokenService.SecurityTokenService > INFO: Inbound Message > ---------------------------- > ID: 1 > Response-Code: 200 > Encoding: UTF-8 > Content-Type: application/soap+xml; charset=utf-8 > Headers: {Cache-Control=[private], Content-Length=[2329], > content-type=[application/soap+xml; charset=utf-8], Date=[Mon, 28 Apr 2014 > 20:37:03 GMT], P3P=[CP="NOI ADM DEV PSAi COM NAV OUR OTR STP IND DEM"], > Server=[Microsoft-IIS/7.5], > Set-Cookie=[ASP.NET_SessionId=gdst00ndzizcvhbmnmt3pao3; path=/; HttpOnly], > X-AspNet-Version=[4.0.30319]} > Payload: xmlns:a="http://www.w3.org/2005/08/addressing" > xmlns:u=" > http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd > ">.......... > > > Different variants were tried, here is one of them with xml configuration > > name="{...blablabla...}WSHttpBinding_IAccountService.http-conduit"> > > > > > > > *here is the workaround with features* > > > > > > > > > > > createdFromAPI="true"> > > value="etc/Client_Sign.properties"/> > value="demo.wssec.client.UTPasswordCallback" /> > > > > > > > * class="demo.wssec.client.ClientProxyFeature"/>* > > > > > > > ** > > > > > > > > -- > View this message in context: > http://cxf.547215.n5.nabble.com/Http-proxy-with-STS-tp5743324p5743422.html > Sent from the cxf-dev mailing list archive at Nabble.com. > -- Colm O hEigeartaigh Talend Community Coder http://coders.talend.com --e89a8f3bae6795b17704f8430f24--