cxf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Daniel Kulp (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (CXF-4977) Client for .Net WCF using both WS-Trust and WS-SecureConversation
Date Mon, 29 Apr 2013 20:02:16 GMT

    [ https://issues.apache.org/jira/browse/CXF-4977?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13644808#comment-13644808
] 

Daniel Kulp commented on CXF-4977:
----------------------------------

Colm,

I just update the configurations for both the client and server side to get this test more
or less "working", kind of.   The test will now hit the STS and get the SAML token.  It then
uses that SAML token to get the conversation token from the service.   It then uses that token
to invoke on the service.   However, the service then throws and exception because it's checking
for a Principal that doesn't exist.   We currently don't store or restore the original Principal
as part of the handling of the SecureConversationToken.   However, that is a separate issue
as compared to the problem related in this JIRA.
                
> Client for .Net WCF using both WS-Trust and WS-SecureConversation
> -----------------------------------------------------------------
>
>                 Key: CXF-4977
>                 URL: https://issues.apache.org/jira/browse/CXF-4977
>             Project: CXF
>          Issue Type: Bug
>          Components: STS, WS-* Components
>            Reporter: Kristof Janssens
>            Assignee: Colm O hEigeartaigh
>         Attachments: client_log_cxf.xml, client_log_net.saz, cxf_client.xml, service.wsdl,
trust.wsdl
>
>
> I'm trying to create a client for a .Net WCF service with WS-Trust and WS-SecureConversation.
> The client that I need for this webservice, has to follow the next steps:
> 1. Ask a security token from the STS server
> 2. Receive the security token from the STS server if client is authenticated
> 3. With this security token, ask for a context token from the WCF webservice
> 4. If security token is validated, receive a context token from the WCF webservice
> 5. Start using the WCF webservice using the granted context token.
> The CXF client I've written, doesn't perform steps 3 and 4.
> In the WCF server config, this is the security profile:
> WSSecurity11WSTrust13WSSecureConversation13WSSecurityPolicy12BasicSecurityProfile10
> INfo about the attached files:
> client_log_cxf.xml: logfile from my CXF client
> client_log_net_saz: fiddler logfile from a working .Net client
> cxf_client.xml: my client cxf configfile
> service.wsdl: WSDL for the WCF webservice
> trust.wsdl: WSDL for the STS service

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message