OK, I stand corrected then, having multiple endpoints open is necessary
in many cases. I'm unsure whether Fediz, or the CXF STS itself for that
matter, has all possibilities as given in the WSDL presently implemented
and available--Fediz is still quite new of course, and the fact that the
some endpoints are commented out might indicate they're not ready yet.
This is more of an Oli (possibly Colm) question.
Glen
On 07/10/2012 09:07 AM, Gina Choi wrote:
Hi Glen,
As always, thanks for your response and nice tutorials.
I might had misunderstanding about Fediz STS. I expect that Fediz STS
provides passive profile(SSO) and active profile with several end
points. ADFS has around 37 endpoints available and depends on needs,
we can turn off most of them, leave 5 or 6 on. This is because
applications integrated using SSO requires different end point for
their web services. For our case, when we call from .NET, we used
windowsmixed, but when we call from Java, we used usernamixed and both
endpoints are available same time.
Currently I have both Transport_Port and TransportUT_Port are
available and these two are needed to support passive profile if I
understand correct. On top of these, I need UTEncrypted_Port at least,
so that soap client is authenticated by Fediz IDP STS using encrypted
username token. X509_Port is very useful as well. Under my
tomcat-idp\webapps\fedizidpsts\WEB-INF directory, I have
cxf-encrypted-ut.xml, cxf-transport.xml, cxf-x509.xml, cxf-ut.xml and
cxf-servlet.xml. So, I should able to turn on cxf-encrypted-ut. I have
following content Inside cxf-servlet.xml. So by default, except
cxf-transport.xml, everything else are commented out.
<import resource="cxf-transport.xml"/>
<!--
<import resource="cxf-ut.xml"/>
<import resource="cxf-encrypted-ut.xml"/>
<import resource="cxf-x509.xml"/>
-->
If I uncomment any of them, I am getting following exception. In this
case, I uncommented cxf-encrypted-ut.xml. Perhaps if I configured
something incorrectly?
org.springframework.beans.factory.BeanCreationException: Error
creating bean with name 'encryptedUtSTSProviderBean' defined in URL
[jndi:/localhost/fedizidpsts/WEB-INF/cxf-encrypted-ut.xml]: Cannot
resolve reference to bean 'encryptedUtIssueDelegate' while setting
bean property 'issueOperation'; nested exception is
org.springframework.beans.factory.BeanCreationException: Error
creating bean with name 'encryptedUtIssueDelegate' defined in URL
[jndi:/localhost/fedizidpsts/WEB-INF/cxf-encrypted-ut.xml]: Cannot
resolve reference to bean 'encryptedUtService' while setting bean
property 'services'; nested exception is
org.springframework.beans.factory.BeanCreationException: Error
creating bean with name 'encryptedUtService' defined in URL
[jndi:/localhost/fedizidpsts/WEB-INF/cxf-encrypted-ut.xml]: Error
setting property values; nested exception is
org.springframework.beans.NotWritablePropertyException: Invalid
property 'encryptionName' of bean class
[org.apache.cxf.sts.service.StaticService]: Bean property
'encryptionName' is not writable or has an invalid setter method. Does
the parameter type of the setter match the return type of the getter?
org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveReference(BeanDefinitionValueResolver.java:328)
org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveValueIfNecessary(BeanDefinitionValueResolver.java:106)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.applyPropertyValues(AbstractAutowireCapableBeanFactory.java:1327)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.populateBean(AbstractAutowireCapableBeanFactory.java:1085)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:516)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:455)
org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:293)
org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:222)
org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:290)
org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:192)
org.springframework.beans.factory.support.DefaultListableBeanFactory.preInstantiateSingletons(DefaultListableBeanFactory.java:585)
org.springframework.context.support.AbstractApplicationContext.finishBeanFactoryInitialization(AbstractApplicationContext.java:895)
org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:425)
org.apache.cxf.transport.servlet.CXFServlet.createSpringContext(CXFServlet.java:146)
org.apache.cxf.transport.servlet.CXFServlet.loadBus(CXFServlet.java:72)
org.apache.cxf.transport.servlet.CXFNonSpringServlet.init(CXFNonSpringServlet.java:67)
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472)
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:98)
org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:927)
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:407)
org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:999)
org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:565)
org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:307)
java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
java.lang.Thread.run(Thread.java:662)
*root cause*
org.springframework.beans.factory.BeanCreationException: Error
creating bean with name 'encryptedUtIssueDelegate' defined in URL
[jndi:/localhost/fedizidpsts/WEB-INF/cxf-encrypted-ut.xml]: Cannot
resolve reference to bean 'encryptedUtService' while setting bean
property 'services'; nested exception is
org.springframework.beans.factory.BeanCreationException: Error
creating bean with name 'encryptedUtService' defined in URL
[jndi:/localhost/fedizidpsts/WEB-INF/cxf-encrypted-ut.xml]: Error
setting property values; nested exception is
org.springframework.beans.NotWritablePropertyException: Invalid
property 'encryptionName' of bean class
[org.apache.cxf.sts.service.StaticService]: Bean property
'encryptionName' is not writable or has an invalid setter method. Does
the parameter type of the setter match the return type of the getter?
org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveReference(BeanDefinitionValueResolver.java:328)
org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveValueIfNecessary(BeanDefinitionValueResolver.java:106)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.applyPropertyValues(AbstractAutowireCapableBeanFactory.java:1327)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.populateBean(AbstractAutowireCapableBeanFactory.java:1085)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:516)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:455)
org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:293)
org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:222)
org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:290)
org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:192)
org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveReference(BeanDefinitionValueResolver.java:322)
org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveValueIfNecessary(BeanDefinitionValueResolver.java:106)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.applyPropertyValues(AbstractAutowireCapableBeanFactory.java:1327)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.populateBean(AbstractAutowireCapableBeanFactory.java:1085)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:516)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:455)
org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:293)
org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:222)
org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:290)
org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:192)
org.springframework.beans.factory.support.DefaultListableBeanFactory.preInstantiateSingletons(DefaultListableBeanFactory.java:585)
org.springframework.context.support.AbstractApplicationContext.finishBeanFactoryInitialization(AbstractApplicationContext.java:895)
org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:425)
org.apache.cxf.transport.servlet.CXFServlet.createSpringContext(CXFServlet.java:146)
org.apache.cxf.transport.servlet.CXFServlet.loadBus(CXFServlet.java:72)
org.apache.cxf.transport.servlet.CXFNonSpringServlet.init(CXFNonSpringServlet.java:67)
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472)
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:98)
org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:927)
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:407)
org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:999)
org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:565)
org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:307)
java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
java.lang.Thread.run(Thread.java:662)
*root cause*
org.springframework.beans.factory.BeanCreationException: Error
creating bean with name 'encryptedUtService' defined in URL
[jndi:/localhost/fedizidpsts/WEB-INF/cxf-encrypted-ut.xml]: Error
setting property values; nested exception is
org.springframework.beans.NotWritablePropertyException: Invalid
property 'encryptionName' of bean class
[org.apache.cxf.sts.service.StaticService]: Bean property
'encryptionName' is not writable or has an invalid setter method. Does
the parameter type of the setter match the return type of the getter?
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.applyPropertyValues(AbstractAutowireCapableBeanFactory.java:1363)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.populateBean(AbstractAutowireCapableBeanFactory.java:1085)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:516)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:455)
org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:293)
org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:222)
org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:290)
org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:192)
org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveReference(BeanDefinitionValueResolver.java:322)
org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveValueIfNecessary(BeanDefinitionValueResolver.java:106)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.applyPropertyValues(AbstractAutowireCapableBeanFactory.java:1327)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.populateBean(AbstractAutowireCapableBeanFactory.java:1085)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:516)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:455)
org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:293)
org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:222)
org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:290)
org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:192)
org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveReference(BeanDefinitionValueResolver.java:322)
org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveValueIfNecessary(BeanDefinitionValueResolver.java:106)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.applyPropertyValues(AbstractAutowireCapableBeanFactory.java:1327)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.populateBean(AbstractAutowireCapableBeanFactory.java:1085)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:516)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:455)
org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:293)
org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:222)
org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:290)
org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:192)
org.springframework.beans.factory.support.DefaultListableBeanFactory.preInstantiateSingletons(DefaultListableBeanFactory.java:585)
org.springframework.context.support.AbstractApplicationContext.finishBeanFactoryInitialization(AbstractApplicationContext.java:895)
org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:425)
org.apache.cxf.transport.servlet.CXFServlet.createSpringContext(CXFServlet.java:146)
org.apache.cxf.transport.servlet.CXFServlet.loadBus(CXFServlet.java:72)
org.apache.cxf.transport.servlet.CXFNonSpringServlet.init(CXFNonSpringServlet.java:67)
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472)
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:98)
org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:927)
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:407)
org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:999)
org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:565)
org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:307)
java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
java.lang.Thread.run(Thread.java:662)
*root cause*
org.springframework.beans.NotWritablePropertyException: Invalid
property 'encryptionName' of bean class
[org.apache.cxf.sts.service.StaticService]: Bean property
'encryptionName' is not writable or has an invalid setter method. Does
the parameter type of the setter match the return type of the getter?
org.springframework.beans.BeanWrapperImpl.setPropertyValue(BeanWrapperImpl.java:1052)
org.springframework.beans.BeanWrapperImpl.setPropertyValue(BeanWrapperImpl.java:921)
org.springframework.beans.AbstractPropertyAccessor.setPropertyValues(AbstractPropertyAccessor.java:76)
org.springframework.beans.AbstractPropertyAccessor.setPropertyValues(AbstractPropertyAccessor.java:58)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.applyPropertyValues(AbstractAutowireCapableBeanFactory.java:1360)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.populateBean(AbstractAutowireCapableBeanFactory.java:1085)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:516)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:455)
org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:293)
org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:222)
org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:290)
org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:192)
org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveReference(BeanDefinitionValueResolver.java:322)
org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveValueIfNecessary(BeanDefinitionValueResolver.java:106)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.applyPropertyValues(AbstractAutowireCapableBeanFactory.java:1327)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.populateBean(AbstractAutowireCapableBeanFactory.java:1085)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:516)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:455)
org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:293)
org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:222)
org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:290)
org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:192)
org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveReference(BeanDefinitionValueResolver.java:322)
org.springframework.beans.factory.support.BeanDefinitionValueResolver.resolveValueIfNecessary(BeanDefinitionValueResolver.java:106)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.applyPropertyValues(AbstractAutowireCapableBeanFactory.java:1327)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.populateBean(AbstractAutowireCapableBeanFactory.java:1085)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:516)
org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:455)
org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:293)
org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:222)
org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:290)
org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:192)
org.springframework.beans.factory.support.DefaultListableBeanFactory.preInstantiateSingletons(DefaultListableBeanFactory.java:585)
org.springframework.context.support.AbstractApplicationContext.finishBeanFactoryInitialization(AbstractApplicationContext.java:895)
org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:425)
org.apache.cxf.transport.servlet.CXFServlet.createSpringContext(CXFServlet.java:146)
org.apache.cxf.transport.servlet.CXFServlet.loadBus(CXFServlet.java:72)
org.apache.cxf.transport.servlet.CXFNonSpringServlet.init(CXFNonSpringServlet.java:67)
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472)
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:98)
org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:927)
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:407)
org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:999)
org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:565)
org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:307)
java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
java.lang.Thread.run(Thread.java:662)
On Mon, Jul 9, 2012 at 2:00 PM, Glen Mazza <[email protected]
<mailto:[email protected]>> wrote:
Yes, the http://localhost:8080/jaxws-sts/sts addresses are dummy
addresses, you'll see the actual ones once you deploy the STS.
Only a SOAP client relies on the soap:address location fields
(and for those it must be accurate), for web service endpoints
they use an algorithm as described in Note #2 here:
http://www.jroller.com/gmazza/entry/web_service_tutorial#notes.
My browser returned similar (but not identical) results:
<wsdl:service name="SecurityTokenService">
<wsdl:port binding="wstrust:X509_Binding"name="X509_Port">
<soap:address location="http://localhost:8080/jaxws-sts/sts"/>
</wsdl:port>
<wsdl:port
binding="wstrust:TransportUT_Binding"name="TransportUT_Port">
<soap:address
location="https://localhost:9443/fedizidpsts/STSService"/>
</wsdl:port>
<wsdl:port
binding="wstrust:TransportKerberos_Binding"name="TransportKerberos_Port">
<soap:address location="http://localhost:8080/jaxws-sts/sts"/>
</wsdl:port>
<wsdl:port
binding="wstrust:UTEncrypted_Binding"name="UTEncrypted_Port">
<soap:address location="http://localhost:8080/jaxws-sts/sts"/>
</wsdl:port>
<wsdl:port
binding="wstrust:Transport_Binding"name="Transport_Port">
<soap:address
location="https://localhost:9443/fedizidpsts/STSServiceTransport"/>
</wsdl:port>
<wsdl:port binding="wstrust:UT_Binding"name="UT_Port">
<soap:address location="http://localhost:8080/jaxws-sts/sts"/>
</wsdl:port>
</wsdl:service>
Offhand, I would say the problem is in the Fediz STS
configuration, it shouldn't need to have six ports open (one
should be sufficient). How do you want to authenticate against
the IDP STS? That will determine which port needs configuration
and which ports should be deleted from your WSDL.
Regards,
Glen
On 07/09/2012 01:16 PM, Gina Choi wrote:
I just browsed my CXF-Fediz wsdl file, I am seeing following.
Both
TransportUT_Port and Transport_Port soap address look valid. I
need to have
valid soap address for UTEncrypted_Port and UT_Por. I must
missing some
additional configuration.
<wsdl:service name="SecurityTokenService">
<wsdl:port binding="wstrust:X509_Binding" name="X509_Port">
<soap:address location="
http://wkqasv0805.global.sdl.corp:8080/jaxws-sts/sts"/>
</wsdl:port>
<wsdl:port binding="wstrust:TransportUT_Binding"
name="TransportUT_Port">
<soap:address location="
http://wkqasv0805.global.sdl.corp:9080/fedizidpsts/STSService"/>
</wsdl:port>
<wsdl:port binding="wstrust:TransportKerberos_Binding"
name="TransportKerberos_Port">
<soap:address location="
http://wkqasv0805.global.sdl.corp:8080/jaxws-sts/sts"/>
</wsdl:port>
<wsdl:port binding="wstrust:UTEncrypted_Binding"
name="UTEncrypted_Port">
<soap:address location="
http://wkqasv0805.global.sdl.corp:8080/jaxws-sts/sts"/>
</wsdl:port>
<wsdl:port binding="wstrust:Transport_Binding"
name="Transport_Port">
<soap:address location="/STSServiceTransport"/>
</wsdl:port>
<wsdl:port binding="wstrust:UT_Binding" name="UT_Port">
<soap:address location="
http://wkqasv0805.global.sdl.corp:8080/jaxws-sts/sts"/>
</wsdl:port>
</wsdl:service>
On Mon, Jul 9, 2012 at 12:58 PM, Gina Choi
<[email protected] <mailto:[email protected]>> wrote:
Hi all,
We try to integrate .NET application for SSO+Web security
using CXF-Fediz
STS. Passive profile worked well without any problem. Now
we try to call
cxf-encrypted-ut.xml endpoint using actas and we need a
soap address for
this endpoint. If we look at ADFS2.0 wsdl file, I have
following part.
<wsdl:service name="SecurityTokenService">
<wsdl:port name="UserNameWSTrustBinding_IWSTrust13Async2"
binding="tns:UserNameWSTrustBinding_IWSTrust13Async2">
<soap12:address location="
https://strts01.ams.dev/adfs/services/trust/13/usernamemixed";
/>
<wsa10:EndpointReference>
<wsa10:Address>
https://strts01.ams.dev/adfs/services/trust/13/usernamemixed
</wsa10:Address>
</wsa10:EndpointReference>
</wsdl:port>
</wsdl:service>
I am looking for corresponding end point soap address(
https://strts01.ams.dev/adfs/services/trust/13/usernamemixed)
from
CXF-Fediz STS. If I look at ws-trust-1.4-service.wsdl
file, we have
following. Soap address for each ports are the same. How
do we identify
soap addresses? Do we need additional configuration? By
the way, I
currently I have CXF-Fediz STS + OpenLDAP environment.
<wsdl:service name="SecurityTokenService">
<wsdl:port name="UT_Port" binding="tns:UT_Binding">
<soap:address
location="http://localhost:8080/jaxws-sts/sts"; />
</wsdl:port>
<wsdl:port name="X509_Port" binding="tns:X509_Binding">
<soap:address
location="http://localhost:8080/jaxws-sts/sts"; />
</wsdl:port>
<wsdl:port name="Transport_Port"
binding="tns:Transport_Binding">
<soap:address
location="http://localhost:8080/jaxws-sts/sts"; />
</wsdl:port>
<wsdl:port name="UTEncrypted_Port"
binding="tns:UTEncrypted_Binding">
<soap:address
location="http://localhost:8080/jaxws-sts/sts"; />
</wsdl:port>
<wsdl:port name="TransportUT_Port"
binding="tns:TransportUT_Binding">
<soap:address
location="http://localhost:8080/jaxws-sts/sts"; />
</wsdl:port>
<wsdl:port name="TransportKerberos_Port"
binding="tns:TransportKerberos_Binding">
<soap:address location="
http://wkengchoi.global.sdl.corp:8080/jaxws-sts/sts"; />
</wsdl:port>
</wsdl:service>
Thanks.
Gina
--
Glen Mazza
Talend Community Coders
coders.talend.com <http://coders.talend.com>
blog: www.jroller.com/gmazza <http://www.jroller.com/gmazza>
--
Glen Mazza
Talend Community Coders
coders.talend.com
blog:www.jroller.com/gmazza
