I solve the problem: 1) On same axis2 installation I install rampart 1.3 and then rampart 1.4(conflict wss4j-1.5.X) I take clean installation of axis2 and rampart 1.4
2) And there was also problem with my JCE(no such algorithm): 2.1) Install Unlimited strength Jurisdiction Policy Files(overcopy US_export_policy.jar and local_policy.jar) 2.2) Install bouncycastle in <jre_home>/lib/ext and add provider in <jre_home>/lib/security/java.security file security.provider.9=org.bouncycastle.jce.provider.BouncyCastleProvider I hope this can help somebody. Regards, Tomaz José Ferreiro wrote: > Looks like the file *server.jks* cannot be loaded keys\\server.jks and > not found. Try to type the whole path.. > > or keys/server.jks > > > Whole localtion path c:/tomcat/foldername/foldername/keys/server.jks > HTH, Rgds, > > Jose Ferreiro > > On Mon, Feb 9, 2009 at 11:41 AM, TomazM <tomaz.majerh...@arnes.si > <mailto:tomaz.majerh...@arnes.si>> wrote: > > I still have problem, now I get error: > > .. > org.apache.ws.security.util.Loader - Caught Exception while in > Loader.getResource. This may be innocuous. > java.lang.NullPointerException > ... > > org.apache.ws.security.components.crypto.Merlin cannot create instance > > What did you write in service.xml? > > Regard, Tomaz > > > Erwin Reinhoud wrote: > > Hello Tomaz, > > > > In my sanbox env i have put the file in the tomcat bin dir and no > path indication in service.xml. > > > > Regards, > > > > Erwin > > > > -----Oorspronkelijk bericht----- > > Van: TomazM [mailto:tomaz.majerh...@arnes.si > <mailto:tomaz.majerh...@arnes.si>] > > Verzonden: donderdag 5 februari 2009 12:13 > > Aan: axis-user@ws.apache.org <mailto:axis-user@ws.apache.org> > > Onderwerp: Re: Error in signature with X509Token > > > > I'm using rampart version 1.4, but it seem as the > rampart(org.apache.ws.security.crypto.merlin.file) doesn't pick the > keystore, because I change the name to a nonexistent file and I > don't get any error that file don't exist. > > > > Regards, Tomaz > > > > Erwin Reinhoud wrote: > >> Hello Tomaz, > >> > >> Try also using rampart version 1.4 io 1.3. > >> > >> Regards, > >> Erwin > >> > >> > ---------------------------------------------------------------------- > >> -- > >> *Van:* m4rkuz [mailto:m4r...@gmail.com <mailto:m4r...@gmail.com>] > >> *Verzonden:* woensdag 4 februari 2009 15:16 > >> *Aan:* axis-user@ws.apache.org <mailto:axis-user@ws.apache.org> > >> *Onderwerp:* Re: Error in signature with X509Token > >> > >> Hi Tomaz, > >> > >> I think you should attach you'r policy.xml file and your > >> services.xml, and maybe an example of the soap message generated, so > >> it could be esiar to help you. > >> > >> > >> > >> Marcus V. Sánchez D. > >> ______________________ > >> Enterprise Developer. > >> Sun Certified Java Programmer (SCJP) > >> > >> > >> On Wed, Feb 4, 2009 at 9:08 AM, TomazM <tomaz.majerh...@arnes.si > <mailto:tomaz.majerh...@arnes.si> > >> <mailto:tomaz.majerh...@arnes.si > <mailto:tomaz.majerh...@arnes.si>>> wrote: > >> > >> Env: > >> OS: Microsoft Windows XP [Version 5.1.2600] > >> java: Java(TM) SE Runtime Environment (build 1.6.0_10-b33) > >> Tomcat: 6.0.16 > >> Axis2: 1.4.1 > >> Rampart: 1.3 > >> > >> > >> I'm trying to sign message with my CallbackHandler and > wsp:Policy, > >> keys are in keystore of JKS type(server.jks and client.jks) > >> > >> 1) In service.xml I have: > >> ..... > >> > > <ramp:passwordCallbackClass>rampart.sign.service.SecurityHandler</ramp:passwordCallbackClass> > >> <ramp:signatureCrypto> > >> <ramp:crypto > >> provider="org.apache.ws.security.components.crypto.Merlin"> > >> <ramp:property > >> > > name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</ramp:property> > >> <ramp:property > >> > > name="org.apache.ws.security.crypto.merlin.file">keys\\server.jks</ramp:property> > >> <ramp:property > >> > > name="org.apache.ws.security.crypto.merlin.keystore.password">****</ramp:property> > >> </ramp:crypto> > >> > >> > >> 2) In client I also have my CallbackHandler and applying > >> RampartConfig which use client.jks(contain server key) > >> > >> > >> The finger print of server and client certificates are the > same in > >> both keystore. > >> > >> > >> > >> Error: > >> org.apache.axis2.AxisFault: Error in signature with X509Token > >> at > >> > > org.apache.axis2.util.Utils.getInboundFaultFromMessageContext(Utils.java:512) > >> at > >> > > org.apache.axis2.description.OutInAxisOperationClient.handleResponse(OutInAxisOperation.java:370) > >> at > >> > > org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisOperation.java:416) > >> at > >> > > org.apache.axis2.description.OutInAxisOperationClient.executeImpl(OutInAxisOperation.java:228) > >> at > >> > >> > org.apache.axis2.client.OperationClient.execute(OperationClient.java:1 > >> 63) > >> > >> > >> > >> > >> Is anybody have a clue what I'm doing wrong???? > >> > >> > >> > >> > >> Best regards, Tomaz > >> > >> > > > > > >
begin:vcard fn:Tomaz Majerhold n:Majerhold;Tomaz org:ARNES, Slovenian NREN;Development team adr:;;Jamova 39;Ljubljana;Ljubljana;1000;Slovenia email;internet:tomaz.majerh...@arnes.si title:Developer tel;work:+386 14798930 tel;fax:+386 1 479 88 99 tel;home:+386 1425 38 01 tel;cell:+386 40757229 url:http://www.arnes.si/ version:2.1 end:vcard