Hi Prasad, Your client should build the required security headers. How have you configured Apache Rampart to your service client?
Thanks, -Suresh On Fri, Apr 18, 2014 at 8:23 AM, Prasad Fernando <[email protected]> wrote: > hi, > > I have secured the proxy service with the attached policy. Also attached > the source view of my secure proxy service. > > thanks > > > On Thu, Apr 17, 2014 at 5:05 PM, Suresh Attanayaka <[email protected]>wrote: > >> Hi Prasad, >> >> What is the security scenario/policy you are trying here ? How have you >> secured the service ? >> >> Thanks, >> -Suresh >> >> >> On Thu, Apr 17, 2014 at 4:58 PM, Prasad Fernando <[email protected]>wrote: >> >>> Hi, >>> >>> I am getting the following error when I connect my secure client to the >>> esb secure proxy service. >>> >>> *ON ESB* >>> org.apache.axis2.AxisFault: General security error (No certificates were >>> found for decryption (KeyId)) >>> at >>> org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFault(RampartReceiver.java:180) >>> at >>> org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:95) >>> at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) >>> at org.apache.axis2.engine.Phase.invoke(Phase.java:313) >>> at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:261) >>> at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:167) >>> at >>> org.apache.synapse.transport.passthru.ServerWorker.processEntityEnclosingRequest(ServerWorker.java:411) >>> at >>> org.apache.synapse.transport.passthru.ServerWorker.run(ServerWorker.java:183) >>> at >>> org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeWorkerPool.java:172) >>> at >>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) >>> at >>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) >>> at java.lang.Thread.run(Thread.java:744) >>> Caused by: org.apache.ws.security.WSSecurityException: General security >>> error (No certificates were found for decryption (KeyId)) >>> at >>> org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:253) >>> at >>> org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:119) >>> at >>> org.apache.ws.security.processor.EncryptedKeyProcessor.handleToken(EncryptedKeyProcessor.java:95) >>> at >>> org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:332) >>> at >>> org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:249) >>> at org.apache.rampart.RampartEngine.process(RampartEngine.java:214) >>> at >>> org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:92) >>> ... 10 more >>> [2014-04-17 16:44:34,101] ERROR - ServerWorker Error processing POST >>> request for : /services/SecureOrderService >>> org.apache.axis2.AxisFault: General security error (No certificates were >>> found for decryption (KeyId)) >>> at >>> org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFault(RampartReceiver.java:180) >>> at >>> org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:95) >>> at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) >>> at org.apache.axis2.engine.Phase.invoke(Phase.java:313) >>> at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:261) >>> at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:167) >>> at >>> org.apache.synapse.transport.passthru.ServerWorker.processEntityEnclosingRequest(ServerWorker.java:411) >>> at >>> org.apache.synapse.transport.passthru.ServerWorker.run(ServerWorker.java:183) >>> at >>> org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeWorkerPool.java:172) >>> at >>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) >>> at >>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) >>> at java.lang.Thread.run(Thread.java:744) >>> Caused by: org.apache.ws.security.WSSecurityException: General security >>> error (No certificates were found for decryption (KeyId)) >>> at >>> org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:253) >>> at >>> org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:119) >>> at >>> org.apache.ws.security.processor.EncryptedKeyProcessor.handleToken(EncryptedKeyProcessor.java:95) >>> at >>> org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:332) >>> at >>> org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:249) >>> at org.apache.rampart.RampartEngine.process(RampartEngine.java:214) >>> at >>> org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:92) >>> >>> *ON Client* >>> org.apache.axis2.AxisFault: Must Understand check failed for header >>> http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd: >>> Security >>> at >>> org.apache.axis2.engine.AxisEngine.checkMustUnderstand(AxisEngine.java:105) >>> at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:171) >>> at >>> org.apache.axis2.description.OutInAxisOperationClient.handleResponse(OutInAxisOperation.java:364) >>> at >>> org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisOperation.java:421) >>> at >>> org.apache.axis2.description.OutInAxisOperationClient.executeImpl(OutInAxisOperation.java:229) >>> at >>> org.apache.axis2.client.OperationClient.execute(OperationClient.java:165) >>> at >>> org.apache.axis2.client.ServiceClient.sendReceive(ServiceClient.java:555) >>> at >>> org.apache.axis2.client.ServiceClient.sendReceive(ServiceClient.java:531) >>> at com.wso2.training.esb.secureclient.Main.main(Main.java:40) >>> >>> SRC: https://svn.wso2.com/wso2/interns/2013/prasadf/ESB/ >>> >>> Do you have any idea on this error? >>> >>> thanks >>> -- >>> *Prasad Priyadarshana Fernando >>> <http://www.linkedin.com/in/prasadfernando>* >>> Mobile: +94715186801, +94772074279 >>> >>> _______________________________________________ >>> Dev mailing list >>> [email protected] >>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>> >>> >> >> >> -- >> Suresh Attanayake >> Senior Software Engineer; WSO2 Inc. http://wso2.com/ >> Blog : http://sureshatt.blogspot.com/ >> Web : http://www.ssoarcade.com/ >> Facebook : https://www.facebook.com/IdentityWorld >> Twitter : https://twitter.com/sureshatt >> LinkedIn : http://lk.linkedin.com/in/sureshatt >> Mobile : +94755012060 >> Mobile : +016166171172 >> > > > > -- > *Prasad Priyadarshana Fernando <http://www.linkedin.com/in/prasadfernando>* > Mobile: +94715186801, +94772074279 > -- Suresh Attanayake Senior Software Engineer; WSO2 Inc. http://wso2.com/ Blog : http://sureshatt.blogspot.com/ Web : http://www.ssoarcade.com/ Facebook : https://www.facebook.com/IdentityWorld Twitter : https://twitter.com/sureshatt LinkedIn : http://lk.linkedin.com/in/sureshatt Mobile : +94755012060 Mobile : +016166171172
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
