[jira] [Created] (CXF-6241) WS-RM doesn't work with WS-Security configured with @EndpointProperties

Thu, 05 Feb 2015 00:38:52 -0800 

Jim Ma created CXF-6241:
---------------------------

             Summary: WS-RM doesn't work with WS-Security configured with 
@EndpointProperties
                 Key: CXF-6241
                 URL: https://issues.apache.org/jira/browse/CXF-6241
             Project: CXF
          Issue Type: Bug
          Components: WS-* Components
    Affects Versions: 2.7.14, 3.0.3
            Reporter: Jim Ma
            Assignee: Jim Ma
             Fix For: 3.0.4, 2.7.15


When ws-rm and ws-security are both enabled, the ws-security.* properties are 
missed in the new created RMEndpoint and cause the following error:
15:56:10,771 WARNING [org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor] 
(http-/127.0.0.1:8080-1) : org.apache.ws.security.WSSecurityException: General 
security error (WSSecurityEngine: No crypto property file supplied to verify 
signature)
        at 
org.apache.ws.security.message.token.X509Security.getX509Certificate(X509Security.java:100)
 [wss4j-1.6.16.redhat-2.jar:1.6.16.redhat-2]
        at 
org.apache.ws.security.processor.BinarySecurityTokenProcessor.getCertificatesTokenReference(BinarySecurityTokenProcessor.java:132)
 [wss4j-1.6.16.redhat-2.jar:1.6.16.redhat-2]
        at 
org.apache.ws.security.processor.BinarySecurityTokenProcessor.handleToken(BinarySecurityTokenProcessor.java:75)
 [wss4j-1.6.16.redhat-2.jar:1.6.16.redhat-2]
        at 
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:402)
 [wss4j-1.6.16.redhat-2.jar:1.6.16.redhat-2]
        at 
org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.handleMessage(WSS4JInInterceptor.java:270)
 [cxf-rt-ws-security-2.7.12.SP1-redhat-1.jar:2.7.12.SP1-redhat-1]
        at 
org.apache.cxf.ws.security.wss4j.PolicyBasedWSS4JInInterceptor.handleMessage(PolicyBasedWSS4JInInterceptor.java:121)
 [cxf-rt-ws-security-2.7.12.SP1-redhat-1.jar:2.7.12.SP1-redhat-1]
        at 
org.apache.cxf.ws.security.wss4j.PolicyBasedWSS4JInInterceptor.handleMessage(PolicyBasedWSS4JInInterceptor.java:106)
 [cxf-rt-ws-security-2.7.12.SP1-redhat-1.jar:2.7.12.SP1-redhat-1]
        at 
org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:272)
 [cxf-api-2.7.12.jar:2.7.12]
        at 
org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiationObserver.java:121)
 [cxf-api-2.7.12.jar:2.7.12]
        at 
org.apache.cxf.transport.http.AbstractHTTPDestination.invoke(AbstractHTTPDestination.java:241)
 [cxf-rt-transports-http-2.7.12.SP1-redhat-1.jar:2.7.12.SP1-redhat-1]
        at 
org.jboss.wsf.stack.cxf.RequestHandlerImpl.handleHttpRequest(RequestHandlerImpl.java:97)
        at 
org.jboss.wsf.stack.cxf.transport.ServletHelper.callRequestHandler(ServletHelper.java:131)
        at org.jboss.wsf.stack.cxf.CXFServletExt.invoke(CXFServletExt.java:88)
        at 
org.apache.cxf.transport.servlet.AbstractHTTPServlet.handleRequest(AbstractHTTPServlet.java:286)
 [cxf-rt-transports-http-2.7.12.SP1-redhat-1.jar:2.7.12.SP1-redhat-1]
        at 
org.apache.cxf.transport.servlet.AbstractHTTPServlet.doPost(AbstractHTTPServlet.java:206)
 [cxf-rt-transports-http-2.7.12.SP1-redhat-1.jar:2.7.12.SP1-redhat-1]
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:754) 
[jboss-servlet-api_3.0_spec-1.0.2.Final-redhat-1.jar:1.0.2.Final-redhat-1]
        at org.jboss.wsf.stack.cxf.CXFServletExt.service(CXFServletExt.java:136)
        at org.jboss.wsf.spi.deployment.WSFServlet.service(WSFServlet.java:140) 
[jbossws-spi-2.3.0.Final-redhat-1.jar:2.3.0.Final-redhat-1]
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:847) 
[jboss-servlet-api_3.0_spec-1.0.2.Final-redhat-1.jar:1.0.2.Final-redhat-1]
        at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:295)
 [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
        at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:214)
 [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
        at 
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:231)
 [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
        at 
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:149)
 [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
        at 
org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:169)
 [jboss-as-web-7.4.2.Final-redhat-2.jar:7.4.2.Final-redhat-2]
        at 
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:145) 
[jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
        at 
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:97) 
[jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
        at 
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:102)
 [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
        at 
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:344) 
[jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
        at 
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:856) 
[jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
        at 
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:653)
 [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
        at 
org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:926) 
[jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
        at java.lang.Thread.run(Thread.java:724) [rt.jar:1.7.0_25]




--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to