[
https://issues.apache.org/jira/browse/CXF-6241?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Jim Ma resolved CXF-6241.
-------------------------
Resolution: Fixed
> WS-RM doesn't work with WS-Security configured with @EndpointProperties
> -----------------------------------------------------------------------
>
> Key: CXF-6241
> URL: https://issues.apache.org/jira/browse/CXF-6241
> Project: CXF
> Issue Type: Bug
> Components: WS-* Components
> Affects Versions: 3.0.3, 2.7.14
> Reporter: Jim Ma
> Assignee: Jim Ma
> Fix For: 3.0.4, 2.7.15
>
>
> When ws-rm and ws-security are both enabled, the ws-security.* properties are
> missed in the new created RMEndpoint and cause the following error:
> 15:56:10,771 WARNING [org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor]
> (http-/127.0.0.1:8080-1) : org.apache.ws.security.WSSecurityException:
> General security error (WSSecurityEngine: No crypto property file supplied to
> verify signature)
> at
> org.apache.ws.security.message.token.X509Security.getX509Certificate(X509Security.java:100)
> [wss4j-1.6.16.redhat-2.jar:1.6.16.redhat-2]
> at
> org.apache.ws.security.processor.BinarySecurityTokenProcessor.getCertificatesTokenReference(BinarySecurityTokenProcessor.java:132)
> [wss4j-1.6.16.redhat-2.jar:1.6.16.redhat-2]
> at
> org.apache.ws.security.processor.BinarySecurityTokenProcessor.handleToken(BinarySecurityTokenProcessor.java:75)
> [wss4j-1.6.16.redhat-2.jar:1.6.16.redhat-2]
> at
> org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:402)
> [wss4j-1.6.16.redhat-2.jar:1.6.16.redhat-2]
> at
> org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.handleMessage(WSS4JInInterceptor.java:270)
> [cxf-rt-ws-security-2.7.12.SP1-redhat-1.jar:2.7.12.SP1-redhat-1]
> at
> org.apache.cxf.ws.security.wss4j.PolicyBasedWSS4JInInterceptor.handleMessage(PolicyBasedWSS4JInInterceptor.java:121)
> [cxf-rt-ws-security-2.7.12.SP1-redhat-1.jar:2.7.12.SP1-redhat-1]
> at
> org.apache.cxf.ws.security.wss4j.PolicyBasedWSS4JInInterceptor.handleMessage(PolicyBasedWSS4JInInterceptor.java:106)
> [cxf-rt-ws-security-2.7.12.SP1-redhat-1.jar:2.7.12.SP1-redhat-1]
> at
> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:272)
> [cxf-api-2.7.12.jar:2.7.12]
> at
> org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiationObserver.java:121)
> [cxf-api-2.7.12.jar:2.7.12]
> at
> org.apache.cxf.transport.http.AbstractHTTPDestination.invoke(AbstractHTTPDestination.java:241)
> [cxf-rt-transports-http-2.7.12.SP1-redhat-1.jar:2.7.12.SP1-redhat-1]
> at
> org.jboss.wsf.stack.cxf.RequestHandlerImpl.handleHttpRequest(RequestHandlerImpl.java:97)
> at
> org.jboss.wsf.stack.cxf.transport.ServletHelper.callRequestHandler(ServletHelper.java:131)
> at org.jboss.wsf.stack.cxf.CXFServletExt.invoke(CXFServletExt.java:88)
> at
> org.apache.cxf.transport.servlet.AbstractHTTPServlet.handleRequest(AbstractHTTPServlet.java:286)
> [cxf-rt-transports-http-2.7.12.SP1-redhat-1.jar:2.7.12.SP1-redhat-1]
> at
> org.apache.cxf.transport.servlet.AbstractHTTPServlet.doPost(AbstractHTTPServlet.java:206)
> [cxf-rt-transports-http-2.7.12.SP1-redhat-1.jar:2.7.12.SP1-redhat-1]
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:754)
> [jboss-servlet-api_3.0_spec-1.0.2.Final-redhat-1.jar:1.0.2.Final-redhat-1]
> at org.jboss.wsf.stack.cxf.CXFServletExt.service(CXFServletExt.java:136)
> at org.jboss.wsf.spi.deployment.WSFServlet.service(WSFServlet.java:140)
> [jbossws-spi-2.3.0.Final-redhat-1.jar:2.3.0.Final-redhat-1]
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:847)
> [jboss-servlet-api_3.0_spec-1.0.2.Final-redhat-1.jar:1.0.2.Final-redhat-1]
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:295)
> [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:214)
> [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:231)
> [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:149)
> [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
> at
> org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:169)
> [jboss-as-web-7.4.2.Final-redhat-2.jar:7.4.2.Final-redhat-2]
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:145)
> [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:97)
> [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:102)
> [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:344)
> [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
> at
> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:856)
> [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
> at
> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:653)
> [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
> at
> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:926)
> [jbossweb-7.4.9.Final-redhat-1.jar:7.4.9.Final-redhat-1]
> at java.lang.Thread.run(Thread.java:724) [rt.jar:1.7.0_25]
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
