[Dev] [GSOC][SS] Proposal for Implementing Policy Driven Storage Provisioning for WSO2 SS
Hi, Attached here is the proposal I submitted for $subject. https://docs.google.com/document/d/1rVUDiIxM3tHiZH9FNqPHU9xcHRGELmCiCSpkpWd_3rY/edit?usp=sharing Thanks *Prasad Priyadarshana Fernando http://www.linkedin.com/in/prasadfernando* Mobile: +1 330 283 5827 ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
[Dev] [GSOC][SS] Proposal 9:Policy Driven Storage Provisioning for WSO2 SS
Hi, Can you explain bit more on what it expects to with the policy. Will this policy structure be a configuration file which is dynamically edited and read by the SS or will it be a set of rules imposed on SS that governs the service provision? Thanks *Prasad Priyadarshana Fernando http://www.linkedin.com/in/prasadfernando* Mobile: +1 330 283 5827 ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] [ESB][SecureClient][Axis2Fault] Must Understand check failed for header
Hi, Any updates on the root cause for the above issue? I am using the dependent libraries (including rampart) come with the ESB 4.8.1 repository/components/plugins folder for my esb client. Included the bouncy castle jar which is for jdk 1.5 - 1.7 and both ESB and client are running on jdk 1.6 u45. Thanks On Fri, Apr 18, 2014 at 12:20 PM, Prasad Fernando pras...@wso2.com wrote: Hi, I have added RampartMessageData.KEY_RAMPART_POLICY with the client policy xml to client's options and engaged the rampart module to the client. thanks On Fri, Apr 18, 2014 at 12:10 PM, Suresh Attanayaka sur...@wso2.comwrote: Hi Prasad, Your client should build the required security headers. How have you configured Apache Rampart to your service client? Thanks, -Suresh On Fri, Apr 18, 2014 at 8:23 AM, Prasad Fernando pras...@wso2.comwrote: hi, I have secured the proxy service with the attached policy. Also attached the source view of my secure proxy service. thanks On Thu, Apr 17, 2014 at 5:05 PM, Suresh Attanayaka sur...@wso2.comwrote: Hi Prasad, What is the security scenario/policy you are trying here ? How have you secured the service ? Thanks, -Suresh On Thu, Apr 17, 2014 at 4:58 PM, Prasad Fernando pras...@wso2.comwrote: Hi, I am getting the following error when I connect my secure client to the esb secure proxy service. *ON ESB* org.apache.axis2.AxisFault: General security error (No certificates were found for decryption (KeyId)) at org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFault(RampartReceiver.java:180) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:95) at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) at org.apache.axis2.engine.Phase.invoke(Phase.java:313) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:261) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:167) at org.apache.synapse.transport.passthru.ServerWorker.processEntityEnclosingRequest(ServerWorker.java:411) at org.apache.synapse.transport.passthru.ServerWorker.run(ServerWorker.java:183) at org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeWorkerPool.java:172) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) at java.lang.Thread.run(Thread.java:744) Caused by: org.apache.ws.security.WSSecurityException: General security error (No certificates were found for decryption (KeyId)) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:253) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:119) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleToken(EncryptedKeyProcessor.java:95) at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:332) at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:249) at org.apache.rampart.RampartEngine.process(RampartEngine.java:214) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:92) ... 10 more [2014-04-17 16:44:34,101] ERROR - ServerWorker Error processing POST request for : /services/SecureOrderService org.apache.axis2.AxisFault: General security error (No certificates were found for decryption (KeyId)) at org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFault(RampartReceiver.java:180) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:95) at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) at org.apache.axis2.engine.Phase.invoke(Phase.java:313) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:261) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:167) at org.apache.synapse.transport.passthru.ServerWorker.processEntityEnclosingRequest(ServerWorker.java:411) at org.apache.synapse.transport.passthru.ServerWorker.run(ServerWorker.java:183) at org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeWorkerPool.java:172) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) at java.lang.Thread.run(Thread.java:744) Caused by: org.apache.ws.security.WSSecurityException: General security error (No certificates were found for decryption (KeyId)) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:253) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:119) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleToken(EncryptedKeyProcessor.java:95) at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:332
Re: [Dev] [ESB][SecureClient][Axis2Fault] Must Understand check failed for header
hi, Let's see. I am currently using the policy file uploaded to ESB registry. It seems that esb is not getting the policy engaged with this approach. Thanks On Tue, Apr 22, 2014 at 8:39 PM, Rajith Siriwardena raj...@wso2.com wrote: Hi all, I too get the same error, but it works when the policy file is taken from the local repository, as in the sample. Thanks On Tue, Apr 22, 2014 at 12:34 PM, Prasad Fernando pras...@wso2.comwrote: Hi, Any updates on the root cause for the above issue? I am using the dependent libraries (including rampart) come with the ESB 4.8.1 repository/components/plugins folder for my esb client. Included the bouncy castle jar which is for jdk 1.5 - 1.7 and both ESB and client are running on jdk 1.6 u45. Thanks On Fri, Apr 18, 2014 at 12:20 PM, Prasad Fernando pras...@wso2.comwrote: Hi, I have added RampartMessageData.KEY_RAMPART_POLICY with the client policy xml to client's options and engaged the rampart module to the client. thanks On Fri, Apr 18, 2014 at 12:10 PM, Suresh Attanayaka sur...@wso2.comwrote: Hi Prasad, Your client should build the required security headers. How have you configured Apache Rampart to your service client? Thanks, -Suresh On Fri, Apr 18, 2014 at 8:23 AM, Prasad Fernando pras...@wso2.comwrote: hi, I have secured the proxy service with the attached policy. Also attached the source view of my secure proxy service. thanks On Thu, Apr 17, 2014 at 5:05 PM, Suresh Attanayaka sur...@wso2.comwrote: Hi Prasad, What is the security scenario/policy you are trying here ? How have you secured the service ? Thanks, -Suresh On Thu, Apr 17, 2014 at 4:58 PM, Prasad Fernando pras...@wso2.comwrote: Hi, I am getting the following error when I connect my secure client to the esb secure proxy service. *ON ESB* org.apache.axis2.AxisFault: General security error (No certificates were found for decryption (KeyId)) at org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFault(RampartReceiver.java:180) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:95) at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) at org.apache.axis2.engine.Phase.invoke(Phase.java:313) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:261) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:167) at org.apache.synapse.transport.passthru.ServerWorker.processEntityEnclosingRequest(ServerWorker.java:411) at org.apache.synapse.transport.passthru.ServerWorker.run(ServerWorker.java:183) at org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeWorkerPool.java:172) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) at java.lang.Thread.run(Thread.java:744) Caused by: org.apache.ws.security.WSSecurityException: General security error (No certificates were found for decryption (KeyId)) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:253) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:119) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleToken(EncryptedKeyProcessor.java:95) at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:332) at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:249) at org.apache.rampart.RampartEngine.process(RampartEngine.java:214) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:92) ... 10 more [2014-04-17 16:44:34,101] ERROR - ServerWorker Error processing POST request for : /services/SecureOrderService org.apache.axis2.AxisFault: General security error (No certificates were found for decryption (KeyId)) at org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFault(RampartReceiver.java:180) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:95) at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) at org.apache.axis2.engine.Phase.invoke(Phase.java:313) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:261) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:167) at org.apache.synapse.transport.passthru.ServerWorker.processEntityEnclosingRequest(ServerWorker.java:411) at org.apache.synapse.transport.passthru.ServerWorker.run(ServerWorker.java:183) at org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeWorkerPool.java:172) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) at java.lang.Thread.run(Thread.java:744) Caused by: org.apache.ws.security.WSSecurityException: General security error (No certificates were found for decryption (KeyId
Re: [Dev] [ESB][SecureClient][Axis2Fault] Must Understand check failed for header
Hi, I have added RampartMessageData.KEY_RAMPART_POLICY with the client policy xml to client's options and engaged the rampart module to the client. thanks On Fri, Apr 18, 2014 at 12:10 PM, Suresh Attanayaka sur...@wso2.com wrote: Hi Prasad, Your client should build the required security headers. How have you configured Apache Rampart to your service client? Thanks, -Suresh On Fri, Apr 18, 2014 at 8:23 AM, Prasad Fernando pras...@wso2.com wrote: hi, I have secured the proxy service with the attached policy. Also attached the source view of my secure proxy service. thanks On Thu, Apr 17, 2014 at 5:05 PM, Suresh Attanayaka sur...@wso2.comwrote: Hi Prasad, What is the security scenario/policy you are trying here ? How have you secured the service ? Thanks, -Suresh On Thu, Apr 17, 2014 at 4:58 PM, Prasad Fernando pras...@wso2.comwrote: Hi, I am getting the following error when I connect my secure client to the esb secure proxy service. *ON ESB* org.apache.axis2.AxisFault: General security error (No certificates were found for decryption (KeyId)) at org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFault(RampartReceiver.java:180) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:95) at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) at org.apache.axis2.engine.Phase.invoke(Phase.java:313) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:261) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:167) at org.apache.synapse.transport.passthru.ServerWorker.processEntityEnclosingRequest(ServerWorker.java:411) at org.apache.synapse.transport.passthru.ServerWorker.run(ServerWorker.java:183) at org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeWorkerPool.java:172) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) at java.lang.Thread.run(Thread.java:744) Caused by: org.apache.ws.security.WSSecurityException: General security error (No certificates were found for decryption (KeyId)) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:253) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:119) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleToken(EncryptedKeyProcessor.java:95) at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:332) at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:249) at org.apache.rampart.RampartEngine.process(RampartEngine.java:214) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:92) ... 10 more [2014-04-17 16:44:34,101] ERROR - ServerWorker Error processing POST request for : /services/SecureOrderService org.apache.axis2.AxisFault: General security error (No certificates were found for decryption (KeyId)) at org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFault(RampartReceiver.java:180) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:95) at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) at org.apache.axis2.engine.Phase.invoke(Phase.java:313) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:261) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:167) at org.apache.synapse.transport.passthru.ServerWorker.processEntityEnclosingRequest(ServerWorker.java:411) at org.apache.synapse.transport.passthru.ServerWorker.run(ServerWorker.java:183) at org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeWorkerPool.java:172) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) at java.lang.Thread.run(Thread.java:744) Caused by: org.apache.ws.security.WSSecurityException: General security error (No certificates were found for decryption (KeyId)) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:253) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:119) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleToken(EncryptedKeyProcessor.java:95) at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:332) at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:249) at org.apache.rampart.RampartEngine.process(RampartEngine.java:214) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:92) *ON Client* org.apache.axis2.AxisFault: Must Understand check failed for header http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd: Security
Re: [Dev] [ESB][SecureClient][Axis2Fault] Must Understand check failed for header
hi, I have secured the proxy service with the attached policy. Also attached the source view of my secure proxy service. thanks On Thu, Apr 17, 2014 at 5:05 PM, Suresh Attanayaka sur...@wso2.com wrote: Hi Prasad, What is the security scenario/policy you are trying here ? How have you secured the service ? Thanks, -Suresh On Thu, Apr 17, 2014 at 4:58 PM, Prasad Fernando pras...@wso2.com wrote: Hi, I am getting the following error when I connect my secure client to the esb secure proxy service. *ON ESB* org.apache.axis2.AxisFault: General security error (No certificates were found for decryption (KeyId)) at org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFault(RampartReceiver.java:180) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:95) at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) at org.apache.axis2.engine.Phase.invoke(Phase.java:313) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:261) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:167) at org.apache.synapse.transport.passthru.ServerWorker.processEntityEnclosingRequest(ServerWorker.java:411) at org.apache.synapse.transport.passthru.ServerWorker.run(ServerWorker.java:183) at org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeWorkerPool.java:172) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) at java.lang.Thread.run(Thread.java:744) Caused by: org.apache.ws.security.WSSecurityException: General security error (No certificates were found for decryption (KeyId)) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:253) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:119) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleToken(EncryptedKeyProcessor.java:95) at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:332) at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:249) at org.apache.rampart.RampartEngine.process(RampartEngine.java:214) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:92) ... 10 more [2014-04-17 16:44:34,101] ERROR - ServerWorker Error processing POST request for : /services/SecureOrderService org.apache.axis2.AxisFault: General security error (No certificates were found for decryption (KeyId)) at org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFault(RampartReceiver.java:180) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:95) at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) at org.apache.axis2.engine.Phase.invoke(Phase.java:313) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:261) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:167) at org.apache.synapse.transport.passthru.ServerWorker.processEntityEnclosingRequest(ServerWorker.java:411) at org.apache.synapse.transport.passthru.ServerWorker.run(ServerWorker.java:183) at org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeWorkerPool.java:172) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) at java.lang.Thread.run(Thread.java:744) Caused by: org.apache.ws.security.WSSecurityException: General security error (No certificates were found for decryption (KeyId)) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:253) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:119) at org.apache.ws.security.processor.EncryptedKeyProcessor.handleToken(EncryptedKeyProcessor.java:95) at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:332) at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:249) at org.apache.rampart.RampartEngine.process(RampartEngine.java:214) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:92) *ON Client* org.apache.axis2.AxisFault: Must Understand check failed for header http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd: Security at org.apache.axis2.engine.AxisEngine.checkMustUnderstand(AxisEngine.java:105) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:171) at org.apache.axis2.description.OutInAxisOperationClient.handleResponse(OutInAxisOperation.java:364) at org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisOperation.java:421) at org.apache.axis2.description.OutInAxisOperationClient.executeImpl(OutInAxisOperation.java:229