This looks suspect: > org.apache.ws.security.crypto.merlin.keystore.alias=/sws-client-privatekey/
Try removing the forward slashes. Colm. On Fri, Jul 1, 2011 at 1:16 PM, srinivas thallapalli <[email protected]> wrote: > Hi Colm, > > Sincere apologies. I have duplicate classpath entry for wss4j 1.5.10, that > is the issue. > On removal of that duplicate entry. I am getting problem with Signature > while getting private for my alias. This alias is mentioned in configuration > property file and keystore contains key for this alias. > > Here is my property file: > > *org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin > org.apache.ws.security.crypto.merlin.keystore.type=jks > org.apache.ws.security.crypto.merlin.keystore.password=sws-client-storepassword > org.apache.ws.security.crypto.merlin.keystore.alias=/sws-client-privatekey/ > org.apache.ws.security.crypto.merlin.file=sws-client-keystore.jks* > > I heard that there are some changes in properties with wss4j1.6+, please let > me know whether the above properties are valid or not? > > And exception stack trace: > > > /Caused by: org.apache.ws.security.WSSecurityException: Error during > Signature: ; nested exception is: > org.apache.ws.security.WSSecurityException: Signature creation failed; > nested exception is: > org.apache.ws.security.WSSecurityException: General security error (The > private key for the supplied alias does not exist in the keystore); nested > exception is: > java.security.UnrecoverableKeyException: Cannot recover key > at > org.apache.ws.security.action.SignatureAction.execute(SignatureAction.java:64) > at > org.apache.ws.security.handler.WSHandler.doSenderAction(WSHandler.java:202) > at > org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor.access$200(WSS4JOutInterceptor.java:52) > at > org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor$WSS4JOutInterceptorInternal.handleMessage(WSS4JOutInterceptor.java:260) > ... 10 more > Caused by: org.apache.ws.security.WSSecurityException: Signature creation > failed; nested exception is: > org.apache.ws.security.WSSecurityException: General security error (The > private key for the supplied alias does not exist in the keystore); nested > exception is: > java.security.UnrecoverableKeyException: Cannot recover key > at > org.apache.ws.security.message.WSSecSignature.computeSignature(WSSecSignature.java:524) > at > org.apache.ws.security.message.WSSecSignature.computeSignature(WSSecSignature.java:447) > at > org.apache.ws.security.message.WSSecSignature.build(WSSecSignature.java:353) > at > org.apache.ws.security.action.SignatureAction.execute(SignatureAction.java:61) > ... 13 more > Caused by: org.apache.ws.security.WSSecurityException: General security > error (The private key for the supplied alias does not exist in the > keystore); nested exception is: > java.security.UnrecoverableKeyException: Cannot recover key > at > org.apache.ws.security.components.crypto.Merlin.getPrivateKey(Merlin.java:706) > at > org.apache.ws.security.message.WSSecSignature.computeSignature(WSSecSignature.java:470) > ... 16 more > Caused by: java.security.UnrecoverableKeyException: Cannot recover key > at sun.security.provider.KeyProtector.recover(Unknown Source) > at sun.security.provider.JavaKeyStore.engineGetKey(Unknown Source) > at java.security.KeyStore.getKey(Unknown Source) > at > org.apache.ws.security.components.crypto.Merlin.getPrivateKey(Merlin.java:692) > ... 17 more > > / > > > But Encryption works fine with same kind of properties. > > > Thanks and Regards > > -- > View this message in context: > http://cxf.547215.n5.nabble.com/WS-Security-Issue-with-upgrading-from-CXF-2-3-3-to-CXF-2-4-1-tp4541788p4541965.html > Sent from the cxf-user mailing list archive at Nabble.com. > -- Colm O hEigeartaigh http://coheigea.blogspot.com/ Talend - http://www.talend.com
