cxf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Gina Choi (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (CXF-4367) javax.xml.ws.soap.SOAPFaultException: The security token could not be authenticated or authorized
Date Thu, 07 Jun 2012 21:56:23 GMT

     [ https://issues.apache.org/jira/browse/CXF-4367?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Gina Choi updated CXF-4367:
---------------------------

    Attachment: DoubleIt.wsdl
                servicestore.jks
                adfs_new_simple.wsdl
                cxf.xml
                clientstore.jks
    
> javax.xml.ws.soap.SOAPFaultException: The security token could not be authenticated or
authorized
> -------------------------------------------------------------------------------------------------
>
>                 Key: CXF-4367
>                 URL: https://issues.apache.org/jira/browse/CXF-4367
>             Project: CXF
>          Issue Type: Bug
>          Components: Core
>    Affects Versions: 2.6
>         Environment: CXF2.6.2SNAPSHOT, Tomcat7.0.27, ADFS2.0(STS), Active Directory as
attribute store
>            Reporter: Gina Choi
>         Attachments: DoubleIt.wsdl, adfs_new_simple.wsdl, clientstore.jks, cxf.xml, servicestore.jks
>
>
> I have WSP, WSC and STS(ADFS2.0) environment.
> 1. WSP:
>  Use SymmetricBinding and ProtectionToken is IssuedToken
> 2. STS: ADFS2.0
>  use TransportBinding and client authentication is done via UT
> 3. Attached document
> Doubleit.wsdl : service wsdl
> cxf.cml : Client config file
> servicestore.jks : service keystore(Password: skpass, sspass)
> STS encryption cert is added to servicestore.jks
> clientstore.jks: client keystore(Password: ckpass, cspass)
> STS encryption cert and service cert is added to clientstore.jks
> adfs_new_simple.wsdl : STS wsdl file
> 4. When I run client, it send RST to ADFS and get RSTR back. Then client send SOAP request
to web service, it is failing. Following is log.
> Jun 7, 2012 2:56:41 PM org.springframework.context.support.AbstractApplicationContext
prepareRefresh
> INFO: Refreshing org.apache.cxf.bus.spring.BusApplicationContext@1d6747b: startup date
[Thu Jun 07 14:56:41 EDT 2012]; root of context hierarchy
> Jun 7, 2012 2:56:41 PM org.apache.cxf.bus.spring.BusApplicationContext getConfigResources
> INFO: Loaded configuration file cxf.xml.
> Jun 7, 2012 2:56:41 PM org.springframework.beans.factory.xml.XmlBeanDefinitionReader
loadBeanDefinitions
> INFO: Loading XML bean definitions from class path resource [META-INF/cxf/cxf.xml]
> Jun 7, 2012 2:56:41 PM org.springframework.beans.factory.xml.XmlBeanDefinitionReader
loadBeanDefinitions
> INFO: Loading XML bean definitions from class path resource [cxf.xml]
> Jun 7, 2012 2:56:41 PM org.springframework.beans.factory.support.DefaultListableBeanFactory
preInstantiateSingletons
> INFO: Pre-instantiating singletons in org.springframework.beans.factory.support.DefaultListableBeanFactory@d510e8:
defining beans [cxf,org.apache.cxf.bus.spring.BusWiringBeanFactoryPostProcessor,org.apache.cxf.bus.spring.Jsr250BeanPostProcessor,org.apache.cxf.bus.spring.BusExtensionPostProcessor,logOutbound,cxf.config0,{http://www.example.org/contract/DoubleIt}DoubleItPort.jaxws-client.proxyFactory,{http://www.example.org/contract/DoubleIt}DoubleItPort.jaxws-client];
root of factory hierarchy
> Jun 7, 2012 2:56:42 PM org.apache.cxf.service.factory.ReflectionServiceFactoryBean buildServiceFromWSDL
> INFO: Creating Service {http://www.example.org/contract/DoubleIt}DoubleItService from
WSDL: file:/C:/gina/gmazza-blog-samples-92d152c/cxf_sts_tutorial/service/src/main/resources/DoubleIt.wsdl
> Jun 7, 2012 2:56:46 PM org.apache.cxf.services.SecurityTokenService.UserNameWSTrustBinding_IWSTrust13Async2.IWSTrust13Async
> INFO: Outbound Message
> ---------------------------
> ID: 1
> Address: https://strts01.ams.dev/adfs/services/trust/13/usernamemixed
> Encoding: UTF-8
> Content-Type: application/soap+xml; action="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue"
> Headers: {Accept=[*/*]}
> Payload: <soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope"><soap:Header><Action
xmlns="http://www.w3.org/2005/08/addressing">http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue</Action><MessageID
xmlns="http://www.w3.org/2005/08/addressing">urn:uuid:c62ed62e-1440-4cbb-b7ea-b36bfc28962f</MessageID><To
xmlns="http://www.w3.org/2005/08/addressing" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
wsu:Id="Id-4593964">https://strts01.ams.dev/adfs/services/trust/13/usernamemixed</To><ReplyTo
xmlns="http://www.w3.org/2005/08/addressing"><Address>http://www.w3.org/2005/08/addressing/anonymous</Address></ReplyTo><wsse:Security
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
soap:mustUnderstand="true"><wsu:Timestamp wsu:Id="TS-1"><wsu:Created>2012-06-07T18:56:46.771Z</wsu:Created><wsu:Expires>2012-06-07T19:01:46.771Z</wsu:Expires></wsu:Timestamp><wsse:UsernameToken
wsu:Id="UsernameToken-2"><wsse:Username>GLOBAL\gchoi</wsse:Username><wsse:Password
Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">Monday0001</wsse:Password></wsse:UsernameToken></wsse:Security></soap:Header><soap:Body><wst:RequestSecurityToken
xmlns:wst="http://docs.oasis-open.org/ws-sx/ws-trust/200512"><wst:SecondaryParameters><t:TokenType
xmlns:t="http://docs.oasis-open.org/ws-sx/ws-trust/200512">http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV1.1</t:TokenType><t:KeyType
xmlns:t="http://docs.oasis-open.org/ws-sx/ws-trust/200512">http://docs.oasis-open.org/ws-sx/ws-trust/200512/SymmetricKey</t:KeyType><t:KeySize
xmlns:t="http://docs.oasis-open.org/ws-sx/ws-trust/200512">256</t:KeySize></wst:SecondaryParameters><wst:RequestType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/Issue</wst:RequestType><wsp:AppliesTo
xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"><wsa:EndpointReference xmlns:wsa="http://www.w3.org/2005/08/addressing"><wsa:Address>https://wkengchoi.global.sdl.corp:8443/doubleit/services/doubleit</wsa:Address></wsa:EndpointReference></wsp:AppliesTo><wst:Entropy><wst:BinarySecret
Type="http://docs.oasis-open.org/ws-sx/ws-trust/200512/Nonce">2wFQQpUKg5Su2ejcgaJoje8hmOAKpupqHUaKy5eVpxY=</wst:BinarySecret></wst:Entropy><wst:ComputedKeyAlgorithm>http://docs.oasis-open.org/ws-sx/ws-trust/200512/CK/PSHA1</wst:ComputedKeyAlgorithm></wst:RequestSecurityToken></soap:Body></soap:Envelope>
> --------------------------------------
> Jun 7, 2012 2:56:53 PM org.apache.cxf.services.DoubleItService.DoubleItPort.DoubleItPortType
> INFO: Outbound Message
> ---------------------------
> ID: 2
> Address: https://wkengchoi.global.sdl.corp:8443/doubleit/services/doubleit
> Encoding: UTF-8
> Content-Type: text/xml
> Headers: {Accept=[*/*], SOAPAction=[""]}
> Payload: <soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"><soap:Header><Action
xmlns="http://www.w3.org/2005/08/addressing" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
wsu:Id="Id-21629812">http://www.example.org/contract/DoubleIt/DoubleItPortType/DoubleItRequest</Action><MessageID
xmlns="http://www.w3.org/2005/08/addressing" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
wsu:Id="Id-15607581">urn:uuid:a75c38d4-0fe9-4fb5-91cd-a4d9fa1533e4</MessageID><To
xmlns="http://www.w3.org/2005/08/addressing" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
wsu:Id="Id-5177735">https://wkengchoi.global.sdl.corp:8443/doubleit/services/doubleit</To><ReplyTo
xmlns="http://www.w3.org/2005/08/addressing" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
wsu:Id="Id-15551322"><Address>http://www.w3.org/2005/08/addressing/anonymous</Address></ReplyTo><wsse:Security
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
soap:mustUnderstand="1"><wsu:Timestamp wsu:Id="TS-3"><wsu:Created>2012-06-07T18:56:52.984Z</wsu:Created><wsu:Expires>2012-06-07T19:01:52.984Z</wsu:Expires></wsu:Timestamp><xenc:EncryptedData
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/><KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"><e:EncryptedKey
xmlns:e="http://www.w3.org/2001/04/xmlenc#"><e:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"><DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/></e:EncryptionMethod><KeyInfo><o:SecurityTokenReference
xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"><X509Data><X509IssuerSerial><X509IssuerName>CN=servicecn,
OU=SCT, O=SDL, L=wakefield, S=massachusetts, C=US</X509IssuerName><X509SerialNumber>14822468329318157300</X509SerialNumber></X509IssuerSerial></X509Data></o:SecurityTokenReference></KeyInfo><e:CipherData><e:CipherValue>S2NpcmwSeoPmI6/kx1/kgLzsTagPKNx7O/dy8jPKHtrFtvrhVrfJLFXx9418wFQgRUSRXKj+9rwEAzMqTlNkG6szSa0jYztDHZCx6Eoj5ALJvoCd0ZyaCUcBMBXoPSdW/AAsHrc87yW85TUUP+EcPkU+QYbKAvoEVnAdCCv0C/FcP3aJjioF1oKYe+W2AdB3Koqh0pxw8MJSMuj1Xv+WSxMpf3I2v4GRYs0kLhxKYsSX4dZxNDqhudeyLgDG5ngkYULk0hl/dFx6sNnoOPvr19HEQscvT4bs5YT2v0BMg+zU3hhQ66TVD1MCAYtaIoGTuimEGShiRaFZZGQbKGt0Gw==</e:CipherValue></e:CipherData></e:EncryptedKey></KeyInfo><xenc:CipherData><xenc:CipherValue>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</xenc:CipherValue></xenc:CipherData></xenc:EncryptedData><xenc:ReferenceList
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"><xenc:DataReference URI="#ED-5"/></xenc:ReferenceList><ds:Signature
xmlns:ds="http://www.w3.org/2000/09/xmldsig#" Id="SIG-4"><ds:SignedInfo><ds:CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"><ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"
PrefixList="soap"/></ds:CanonicalizationMethod><ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#hmac-sha1"/><ds:Reference
URI="#Id-24734398"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"><ec:InclusiveNamespaces
xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList=""/></ds:Transform></ds:Transforms><ds:DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8g/tOqdCUOtQLvwyZ5foDCfBags=</ds:DigestValue></ds:Reference><ds:Reference
URI="#Id-5177735"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"><ec:InclusiveNamespaces
xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="soap"/></ds:Transform></ds:Transforms><ds:DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>nm1Lg2Gi/BIQ1+/LDi1PZzlgJuc=</ds:DigestValue></ds:Reference><ds:Reference
URI="#Id-15551322"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"><ec:InclusiveNamespaces
xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="soap"/></ds:Transform></ds:Transforms><ds:DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>50evAGqMETD/zSHNh6oUhoW6zPw=</ds:DigestValue></ds:Reference><ds:Reference
URI="#Id-15607581"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"><ec:InclusiveNamespaces
xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="soap"/></ds:Transform></ds:Transforms><ds:DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Sf1W4FvI6sxG5ILPnRA/KC7cR2I=</ds:DigestValue></ds:Reference><ds:Reference
URI="#Id-21629812"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"><ec:InclusiveNamespaces
xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="soap"/></ds:Transform></ds:Transforms><ds:DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>bGCL2CJKkIGZPtlL9ITauLfgUEQ=</ds:DigestValue></ds:Reference><ds:Reference
URI="#TS-3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"><ec:InclusiveNamespaces
xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="wsse soap"/></ds:Transform></ds:Transforms><ds:DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>4a9TQS7/IIFdklk24UrCE9vcCj8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>xgzFoGezIJjLy3YxZAoXvcg3z0g=</ds:SignatureValue><ds:KeyInfo
Id="KI-1945C42D472C69AC5813390954130001"><o:SecurityTokenReference xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"><o:KeyIdentifier
ValueType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID">_b284b379-8c6a-427a-a2bd-44456bc9aa51</o:KeyIdentifier></o:SecurityTokenReference></ds:KeyInfo></ds:Signature></wsse:Security></soap:Header><soap:Body
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
wsu:Id="Id-24734398"><xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
Id="ED-5" Type="http://www.w3.org/2001/04/xmlenc#Content"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/><ds:KeyInfo
xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><o:SecurityTokenReference xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"><o:KeyIdentifier
ValueType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID">_b284b379-8c6a-427a-a2bd-44456bc9aa51</o:KeyIdentifier></o:SecurityTokenReference></ds:KeyInfo><xenc:CipherData><xenc:CipherValue>Gm9vet32mMNuK8DWpt8z19HtKNIyARxBZgnWyn2uuTD3++U1WKzapLhgbQO7cY8KCJB0NEr6BDUzZK1UdcryB+1os+9nwGhMeQk5uXGLtAbrlaTT7wDX5CVITr95KL+pazAcYPzWynPZ7wibCZjhLNjOc79wZtp3g8UGiEDwhFHsLFdNVbMFnygvE89XOaLb</xenc:CipherValue></xenc:CipherData></xenc:EncryptedData></soap:Body></soap:Envelope>
> --------------------------------------
> Jun 7, 2012 2:56:57 PM org.apache.cxf.ws.addressing.soap.MAPCodec restoreExchange
> WARNING: Response message does not contain WS-Addressing properties.  Not correlating
response.
> Jun 7, 2012 2:56:57 PM org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor handleMessage
> WARNING: Request does not contain Security header, but it's a fault.
> Jun 7, 2012 2:56:57 PM org.apache.cxf.ws.addressing.ContextUtils retrieveMAPs
> WARNING: WS-Addressing - failed to retrieve Message Addressing Properties from context
> Exception in thread "main" javax.xml.ws.soap.SOAPFaultException: The security token could
not be authenticated or authorized
> 	at org.apache.cxf.jaxws.JaxWsClientProxy.invoke(JaxWsClientProxy.java:156)
> 	at $Proxy26.doubleIt(Unknown Source)
> 	at client.WSClient.doubleIt(WSClient.java:18)
> 	at client.WSClient.main(WSClient.java:11)
> Caused by: org.apache.cxf.binding.soap.SoapFault: The security token could not be authenticated
or authorized
> 	at org.apache.cxf.binding.soap.interceptor.Soap11FaultInInterceptor.unmarshalFault(Soap11FaultInInterceptor.java:75)
> 	at org.apache.cxf.binding.soap.interceptor.Soap11FaultInInterceptor.handleMessage(Soap11FaultInInterceptor.java:46)
> 	at org.apache.cxf.binding.soap.interceptor.Soap11FaultInInterceptor.handleMessage(Soap11FaultInInterceptor.java:35)
> 	at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:262)
> 	at org.apache.cxf.interceptor.AbstractFaultChainInitiatorObserver.onMessage(AbstractFaultChainInitiatorObserver.java:113)
> 	at org.apache.cxf.binding.soap.interceptor.CheckFaultInterceptor.handleMessage(CheckFaultInterceptor.java:69)
> 	at org.apache.cxf.binding.soap.interceptor.CheckFaultInterceptor.handleMessage(CheckFaultInterceptor.java:34)
> 	at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:262)
> 	at org.apache.cxf.endpoint.ClientImpl.onMessage(ClientImpl.java:798)
> 	at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponseInternal(HTTPConduit.java:1679)
> 	at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponse(HTTPConduit.java:1532)
> 	at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.close(HTTPConduit.java:1440)
> 	at org.apache.cxf.io.CacheAndWriteOutputStream.postClose(CacheAndWriteOutputStream.java:47)
> 	at org.apache.cxf.io.CachedOutputStream.close(CachedOutputStream.java:187)
> 	at org.apache.cxf.transport.AbstractConduit.close(AbstractConduit.java:56)
> 	at org.apache.cxf.transport.http.HTTPConduit.close(HTTPConduit.java:658)
> 	at org.apache.cxf.interceptor.MessageSenderInterceptor$MessageSenderEndingInterceptor.handleMessage(MessageSenderInterceptor.java:62)
> 	at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:262)
> 	at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:532)
> 	at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:464)
> 	at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:367)
> 	at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:320)
> 	at org.apache.cxf.frontend.ClientProxy.invokeSync(ClientProxy.java:89)
> 	at org.apache.cxf.jaxws.JaxWsClientProxy.invoke(JaxWsClientProxy.java:134)
> 	... 3 more

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

       

Mime
View raw message