Apache rampart without encryption -> nullpointerException

[thomasV]

Hi,

i'm sort of a webservices newbie and i have to build a WS-client to consume
some webservices the government provided for our company.
these webservices have ws-security enabled so i'm building the client using
apache axis with the rampart module (i'm using version 1.3).
The webservices require me to only Sign the message, and not do any
encryption. So i try to build a policy file with a SignatureToken without an
EncryptionToken. This is the snippet from my policy xml file:
<sp:SignatureToken>
                                                <wsp:Policy>
                                                  <sp:X509Token
sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient";>
                                                                <wsp:Policy>
                                                                  
<sp:RequireDerivedKeys/>
                                                                        
<sp:RequireThumbprintReference/>
                                                                        
<sp:WssX509V3Token10/>
                                                                </wsp:Policy>
                                                        </sp:X509Token>
                                                </wsp:Policy>
                                        </sp:SignatureToken>

I attached a keystore through the rampart config part of the policy.xml.
When I try to run the client,
it gives me the following exception:
Exception in thread "main" java.lang.NullPointerException
        at
org.apache.rampart.policy.RampartPolicyBuilder.symmetricBinding(RampartPolicyBuilder.java:288)
        at
org.apache.rampart.policy.RampartPolicyBuilder.processSymmetricPolicyBinding(RampartPolicyBuilder.java:158)
....

The code where this goes wrong is here:
private static void symmetricBinding(SymmetricBinding binding,
            RampartPolicyData rpd) throws WSSPolicyException {
        Assertion token = binding.getProtectionToken();
        
        if (token != null) {
           
rpd.setProtectionToken(((ProtectionToken)token).getProtectionToken());
        } else {
            token = binding.getEncryptionToken();
            Assertion token1 = binding.getSignatureToken();
            if (token == null && token1 == null) {
                // this is an error - throw something
            }
            rpd.setEncryptionToken(
                    ((EncryptionToken) token).getEncryptionToken());
            rpd.setSignatureToken(((SignatureToken)
token).getSignatureToken());
        }
    }


So, this is something i don't get:
I only add add a signatureToken and still rampart tries to add an
encryptionToken?!
It looks like it is impossible to add a signature without an
encryptionToken.

Am is missing something here or is this a bug in Rampart?

Any help or advice will be very much appreciated!

tnx
Thomas
-- 
View this message in context: 
http://www.nabble.com/Apache-rampart-without-encryption--%3E-nullpointerException-tp15408083p15408083.html
Sent from the Axis - User mailing list archive at Nabble.com.


---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]