Hi Hasintha, What I'm saying is that Soap UI doesn't send basic auth header, we have to manually add that.
Thanks, On Fri, Oct 16, 2015 at 3:05 PM, Hasintha Indrajee <[email protected]> wrote: > Hi Rajith, > > Ideally even if you do not add authorization headers (xml), it should > work. Ie POX handler converts basicAuth headers to xml security headers. In > the current master branch of carbon-identity, this works as expected. > > On Fri, Oct 16, 2015 at 10:08 AM, Rajith Vitharana <[email protected]> > wrote: > >> Hi Hasintha, >> >> I was able to resolve the error with help of ESB team, There was an error >> in our deployment flow as well. How ever when we use Soap UI, it still >> doesn't send the security headers itself, where as we have to manually add >> the security header to the request >> >> This was working fine with earlier ESB versions (4.8.0 where security was >> enabled via security management UI) the same flow doesn't work in ESB >> 4.9.0. In DSS as well, this is the case now (have to add authorization >> header manually). >> >> Soap UI version I'm using is 5.0.0 >> >> Thanks, >> >> On Thu, Oct 15, 2015 at 2:45 PM, Hasintha Indrajee <[email protected]> >> wrote: >> >>> Are you calling the service with security headers in the request it self >>> ?. >>> >>> On Wed, Oct 14, 2015 at 8:37 PM, Rajith Vitharana <[email protected]> >>> wrote: >>> >>>> Hi Hasintha, >>>> >>>> We are using carbon-identity 4.5.6 >>>> >>>> @Firzan we are using [1] as the policy file which contains the element >>>> you mentioned above. >>>> >>>> [1] - >>>> http://svn.wso2.org/repos/wso2/people/isuruu/qos/synapse-configs/default/local-entries/p1.xml >>>> >>>> Thanks, >>>> >>>> On Wed, Oct 14, 2015 at 5:12 PM, Hasintha Indrajee <[email protected]> >>>> wrote: >>>> >>>>> Can you please tell me the carbon-identity version you are using ? >>>>> >>>>> On Wed, Oct 14, 2015 at 3:04 PM, Rajith Vitharana <[email protected]> >>>>> wrote: >>>>> >>>>>> + Asela >>>>>> >>>>>> On Wed, Oct 14, 2015 at 1:13 PM, Rajith Vitharana <[email protected]> >>>>>> wrote: >>>>>> >>>>>>> Hi, >>>>>>> >>>>>>> I have enabled security in DSS service specifying the policy file >>>>>>> (roles included in the policy). But when invoking the service with >>>>>>> username >>>>>>> password, it throws below exception. >>>>>>> >>>>>>> java.lang.ClassCastException: >>>>>>> org.apache.axiom.om.impl.dom.ElementImpl cannot be cast to >>>>>>> org.apache.axiom.soap.SOAPHeaderBlock >>>>>>> at >>>>>>> org.wso2.carbon.security.pox.POXSecurityHandler.isSOAPWithoutSecHeader(POXSecurityHandler.java:362) >>>>>>> at >>>>>>> org.wso2.carbon.security.pox.POXSecurityHandler.invoke(POXSecurityHandler.java:102) >>>>>>> at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) >>>>>>> at org.apache.axis2.engine.Phase.invoke(Phase.java:313) >>>>>>> at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:261) >>>>>>> at org.apache.axis2.engine.AxisEngine.sendFault(AxisEngine.java:515) >>>>>>> at >>>>>>> org.apache.axis2.transport.http.AxisServlet.handleFault(AxisServlet.java:433) >>>>>>> at >>>>>>> org.apache.axis2.transport.http.AxisServlet.processAxisFault(AxisServlet.java:398) >>>>>>> at >>>>>>> org.apache.axis2.transport.http.AxisServlet.doPost(AxisServlet.java:188) >>>>>>> at >>>>>>> org.wso2.carbon.core.transports.CarbonServlet.doPost(CarbonServlet.java:231) >>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:646) >>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:727) >>>>>>> at >>>>>>> org.eclipse.equinox.http.servlet.internal.ServletRegistration.service(ServletRegistration.java:61) >>>>>>> at >>>>>>> org.eclipse.equinox.http.servlet.internal.ProxyServlet.processAlias(ProxyServlet.java:128) >>>>>>> at >>>>>>> org.eclipse.equinox.http.servlet.internal.ProxyServlet.service(ProxyServlet.java:68) >>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:727) >>>>>>> at >>>>>>> org.wso2.carbon.tomcat.ext.servlet.DelegationServlet.service(DelegationServlet.java:68) >>>>>>> at >>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:303) >>>>>>> at >>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>>>> at >>>>>>> org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52) >>>>>>> at >>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>>>>>> at >>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>>>> at >>>>>>> org.wso2.carbon.ui.filters.CSRFPreventionFilter.doFilter(CSRFPreventionFilter.java:88) >>>>>>> at >>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>>>>>> at >>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>>>> at >>>>>>> org.wso2.carbon.ui.filters.CRLFPreventionFilter.doFilter(CRLFPreventionFilter.java:59) >>>>>>> at >>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>>>>>> at >>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>>>> at >>>>>>> org.wso2.carbon.tomcat.ext.filter.CharacterSetFilter.doFilter(CharacterSetFilter.java:61) >>>>>>> at >>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>>>>>> at >>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>>>> at >>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) >>>>>>> at >>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) >>>>>>> at >>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:504) >>>>>>> at >>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:170) >>>>>>> at >>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103) >>>>>>> at >>>>>>> org.wso2.carbon.tomcat.ext.valves.CompositeValve.continueInvocation(CompositeValve.java:99) >>>>>>> at >>>>>>> org.wso2.carbon.tomcat.ext.valves.CarbonTomcatValve$1.invoke(CarbonTomcatValve.java:47) >>>>>>> at >>>>>>> org.wso2.carbon.webapp.mgt.TenantLazyLoaderValve.invoke(TenantLazyLoaderValve.java:57) >>>>>>> at >>>>>>> org.wso2.carbon.tomcat.ext.valves.TomcatValveContainer.invokeValves(TomcatValveContainer.java:47) >>>>>>> at >>>>>>> org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke(CompositeValve.java:62) >>>>>>> at >>>>>>> org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetectionValve.invoke(CarbonStuckThreadDetectionValve.java:159) >>>>>>> at >>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950) >>>>>>> at >>>>>>> org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve.invoke(CarbonContextCreatorValve.java:57) >>>>>>> at >>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116) >>>>>>> at >>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:421) >>>>>>> at >>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1074) >>>>>>> at >>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611) >>>>>>> at >>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1739) >>>>>>> at >>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1698) >>>>>>> at >>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) >>>>>>> at >>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) >>>>>>> at >>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) >>>>>>> at java.lang.Thread.run(Thread.java:744) >>>>>>> >>>>>>> Do we need to do anything else? >>>>>>> >>>>>>> Thanks, >>>>>>> >>>>>>> -- >>>>>>> Rajith Vitharana >>>>>>> >>>>>>> Software Engineer, >>>>>>> WSO2 Inc. : wso2.com >>>>>>> Mobile : +94715883223 >>>>>>> Blog : http://lankavitharana.blogspot.com/ >>>>>>> >>>>>> >>>>>> >>>>>> >>>>>> -- >>>>>> Rajith Vitharana >>>>>> >>>>>> Software Engineer, >>>>>> WSO2 Inc. : wso2.com >>>>>> Mobile : +94715883223 >>>>>> Blog : http://lankavitharana.blogspot.com/ >>>>>> >>>>> >>>>> >>>>> >>>>> -- >>>>> Hasintha Indrajee >>>>> Software Engineer >>>>> WSO2, Inc. >>>>> Mobile:+94 771892453 >>>>> >>>>> >>>> >>>> >>>> -- >>>> Rajith Vitharana >>>> >>>> Software Engineer, >>>> WSO2 Inc. : wso2.com >>>> Mobile : +94715883223 >>>> Blog : http://lankavitharana.blogspot.com/ >>>> >>> >>> >>> >>> -- >>> Hasintha Indrajee >>> Software Engineer >>> WSO2, Inc. >>> Mobile:+94 771892453 >>> >>> >> >> >> -- >> Rajith Vitharana >> >> Software Engineer, >> WSO2 Inc. : wso2.com >> Mobile : +94715883223 >> Blog : http://lankavitharana.blogspot.com/ >> > > > > -- > Hasintha Indrajee > Software Engineer > WSO2, Inc. > Mobile:+94 771892453 > > -- Rajith Vitharana Software Engineer, WSO2 Inc. : wso2.com Mobile : +94715883223 Blog : http://lankavitharana.blogspot.com/
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
