How is the security stuff in the CXF endpoint configured? I assume either some sort of WS-SecurityPolicy or via WSS4J interceptors? There is probably an IncludeToken=never setting or something in the SecurityPolicy that could be set to try not sending that token back. Not really sure though.
Dan On Thursday 29 July 2010 4:13:52 am [email protected] wrote: > Hi All > > I'm quite new to cxf... I want to write a CXF endpoint which starts camel > route for WCF client (not mine). The ssl connection between client and my > service shouldn't use any specified certyficate. My jetty configuration: > > <httpj:engine port="9005"> > <httpj:tlsServerParameters> > <sec:keyManagers keyPassword="pass"> > <sec:keyStore type="JKS" password="pass" > file="/home/rafal/path/to/jks" /> > </sec:keyManagers> > <sec:clientAuthentication want="false" > required="false" /> > </httpj:tlsServerParameters> > </httpj:engine> > > and a cxf : > > <cxf:cxfEndpoint id="soapMessageEndpoint" > serviceClass="pl.swmind.camel.soap.SOAPMessageProvider" > address="https://localhost:9001/soaprouter"; /> > > where the SOAPMessageProvider is just a class : > public class SOAPMessageProvider implements Provider<SOAPMessage> { ... > > > Connection with server is ok but when the response is coming back i ve got > the following error (on a WCF client side): > > Cannot find a token authenticator for the > 'System.IdentityModel.Tokens.X509SecurityToken' token type. Tokens of > that type cannot be accepted according to current security settings. > > > I found on > http://blogs.msdn.com/b/hongmeig/archive/2006/12/06/mutualcertificate-with- > server-x509-cert-in-the-response.aspx site possibly cause - my server want > to add its cert and WCF doesn't want it. > > Do you think it could be a reason? Can I configure cxf not to add the > certificate? > > apache cxf - version 2.2 > > > > regards > > rafal -- Daniel Kulp [email protected] http://dankulp.com/blog
