PolicyVerificationInInterceptor Inbound policy verification failed: These policy alternatives can not be satisfied WSS4J + CXF Client -


i'm implementing web service client in java uses apache cxf 3.1.1 + wss4j 2.2.1 ws-security running in jboss eap 6.3 environment.

i've setted following properties in wss4jininterceptor signature verification in following way:

org.apache.cxf.endpoint.client client =  org.apache.cxf.frontend.clientproxy.getclient(service); org.apache.cxf.endpoint.endpoint cxfendpoint = client.getendpoint();  map<string,object> inprops = new hashmap<string,object>();  inprops.put(wshandlerconstants.action,wshandlerconstants.signature + " " + wshandlerconstants.timestamp + " "); inprops.put(wshandlerconstants.sig_prop_file, merlin.properties"); inprops.put(wshandlerconstants.dec_prop_file, "merlin.properties"); wss4jininterceptor wssin = new wss4jininterceptor(inprops);  cxfendpoint.getininterceptors().add(wssin); try { result = call service... }

in way got exception: [org.apache.cxf.ws.policy.policyverificationininterceptor] inbound policy verification failed: these policy alternatives can not satisfied: 

{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}asymmetricbinding {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}initiatortoken {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}x509token {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}wssx509v3token10 {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}recipienttoken {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}algorithmsuite {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}basic128 {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}layout {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}strict {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}includetimestamp {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}onlysignentireheadersandbody {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}signedparts {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}supportingtokens {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}wssx509v3token10

the policy section of wsdl exposed server-side below:

<wsp:policy wsu:id="examplepolicy"> <sp:asymmetricbinding> <wsp:policy> <sp:initiatortoken> <wsp:policy> <sp:x509token sp:includetoken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/includetoken/once"> <wsp:policy> <sp:wssx509v3token10/> </wsp:policy> </sp:x509token> </wsp:policy> </sp:initiatortoken> <sp:recipienttoken> <wsp:policy> <sp:x509token sp:includetoken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/includetoken/once"> <wsp:policy> <sp:wssx509v3token10/> </wsp:policy> </sp:x509token> </wsp:policy> </sp:recipienttoken> <sp:algorithmsuite> <wsp:policy> <sp:basic128/> </wsp:policy> </sp:algorithmsuite> <sp:layout> <wsp:policy> <sp:strict/> </wsp:policy> </sp:layout> <sp:includetimestamp/> <sp:onlysignentireheadersandbody/> </wsp:policy> </sp:asymmetricbinding> <sp:signedparts> <sp:body/> </sp:signedparts> <sp:supportingtokens> <wsp:policy> <sp:x509token sp:includetoken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/includetoken/never"> <wsp:policy> <sp:wssx509v3token10/> </wsp:policy> </sp:x509token> </wsp:policy> </sp:supportingtokens> </wsp:policy> </wsdl:definitions>

you using non-policy aware wss4jininterceptor class. need use policybasedwss4jininterceptor class instead. note configured differently wss4jininterceptor. see here: http://cxf.apache.org/docs/ws-securitypolicy.html


Comments

Post a Comment

Popular posts from this blog

searchKeyword not working in AngularJS filter -

i writing app using angularjs on front end. want search through table word/field; 1 search box everything. according article here: http://hello-angularjs.appspot.com/searchtable can use filter: searchkeyword this. this code, , not working expected. <label>search: <input ng-model="searchkeyword"></label> <table ng-repeat="post in posts | orderby: sort | filter: searchkeyword"> <tr> <td> {{index(post)}} </td> <td> {{post.title}} </td> <td> {{post.author}} </td> <td> {{post.content}} </td> <td> {{post.date | date: "d/m/yyyy"}} </td> </tr> </table> what should do? thank you try this: controller $scope.posts = [ {title:'title one', author:'author one', content: 'content one'}, {title:'title two', author:'author two', content: 'cont...
Read more

sequelize.js - Sequelize: sort by enum cases -

i have model ( article ) field (the name type ) of type enum('source', 'translated') , return 1 article ordered type field. source articles should returned before translated articles. like: article.findone(order: [ { type: [ 'source', 'translated' ] } ]); unfortunately there appears no built-in solution sorting enums. instead have sort by case , couldn't find documentation on how sequelize. what conventional approach here? sorting case hard in sequelize, sort field (the second answer in linked post) should possible: order: sequelize.fn('field', sequelize.col('type'), 'source', 'translated') it's supported mysql far know though
Read more

user interface - how to replace an ongoing process of image capture from another process call over the same ImageLabel in python's GUI TKinter -

i trying use following code create interactive gui changes color-space(hsv, rbg, grayscale etc) on event of button click. display opencv video in tkinter using multiprocessing being new python having problems multiprocessing , attempts on making gui change it's color space on button clicks hangs entire system. on it's implementation highly appreciated. thankyou. below code: import cv2 pil import image,imagetk import tkinter tk import numpy np multiprocessing import process , queue def quit_it(root,process): root.destroy() process.terminate() def black_andwhite(root,process): process.terminate p=process(target=capture_image, args=(5,queue, )) p.start() root.after(0, func=lambda: update_all(root, image_label, queue)) def update_image(image_label, queue): frame = queue.get() = image.fromarray(frame) b = imagetk.photoimage(image=a) image_label.configure(image=b) image_label._image_cache = b root.update() def update_all(root...
Read more