I believe there are two problems with your WSDL policy:
1) There is no such policy "{http://www.w3.org/2007/05/addressing/metadata
}Anonymous" defined in the specification:
http://www.w3.org/TR/ws-addr-metadata/
2) You do not have a "wsam:" prefix before the "AnonymousResponses" policy.
The spec does have some examples where "AnonymousResponses" are given with
no prefix, but as I don't see a default namespace I believe this to be
incorrect.
So I would try adding "wsam:" before "AnonymousResponses" in your WSDL and
see if it works.
Colm.
On Wed, Aug 14, 2013 at 4:24 PM, <[email protected]>wrote:
> Hi Colm,
>
> Thanx for looking into this problem!
> As I can't change the WSDL (only by hand of course but, the WSDL is
> defined by the government). I rebuild my client with snapshot
> '2.7.7-SNAPSHOT-1513735' (the zip apache-cxf-2.7.7-20130814.064938-25.zip
> (sorry I develop with windows!?!?!)). I can now succesfully send a
> message!! So that works.
> I get a reaction from the server and when I look in the SOAP message I
> receive it says that the message I send is ok, but...
>
> But I'm getting an old problem back.
> org.apache.cxf.ws.policy.PolicyException: These policy alternatives can
> not be satisfied:
> {http://www.w3.org/2007/05/addressing/metadata}Anonymous
> {http://schemas.xmlsoap.org/ws/2004/09/policy/optimizedmimeserialization
> }OptimizedMimeSerialization
> AnonymousResponses
>
> I attached the log as txt.
>
> Is this a settings problem or is there something else?
>
> Ralph
>
>
> From: Colm O hEigeartaigh <[email protected]> To: "[email protected]"
> <[email protected]> Date: 13-08-2013 16:46 Subject: Re:
> org.apache.cxf.ws.policy.PolicyException: These policy alternatives can not
> be satisfied:
> ------------------------------
>
>
>
> There is a bug in CXF where it doesn't sign anything when you are using an
> AsymmetricBinding policy + EncryptBeforeSigning + no
> EncryptedParts/EncryptedElements policies. I have fixed it here:
>
> https://issues.apache.org/jira/browse/CXF-5199
>
> So to go further, you could either remove the "EncryptBeforeSigning" policy
> from the WSDL, or else download the latest SNAPSHOT once it has deployed
> via the Jenkins build.
>
> Colm.
>
>
> On Mon, Aug 12, 2013 at 9:06 AM, <[email protected]
> >wrote:
>
> > Sorry, now with attached log.
> >
> >
> >
> >
> > From: Colm O hEigeartaigh <[email protected]> To: "
> [email protected]"
> > <[email protected]> Date: 09-08-2013 17:33 Subject: Re:
> > org.apache.cxf.ws.policy.PolicyException: These policy alternatives can
> not
> > be satisfied:
> > ------------------------------
> >
> >
> >
> > Yes, you can set all of the parameters for WS-SecurityPolicy in Java. All
> > of the configuration tags are in the "SecurityConstants" class - it's
> just
> > a matter of setting them on the outbound message context. For example,
> one
> > of the following tests sets the user for a UsernameToken in this way:
> >
> >
> >
> http://svn.apache.org/viewvc/cxf/trunk/systests/ws-security/src/test/java/org/apache/cxf/systest/ws/ut/UsernameTokenTest.java?view=markup
> >
> > URL wsdl = UsernameTokenTest.class.getResource("DoubleItUt.wsdl");
> > Service service = Service.create(wsdl, SERVICE_QNAME);
> > QName portQName = new QName(NAMESPACE, "DoubleItPlaintextPrincipalPort");
> > DoubleItPortType utPort = service.getPort(portQName,
> > DoubleItPortType.class);
> >
> >
> ((BindingProvider)utPort).getRequestContext().put(SecurityConstants.USERNAME,
> > "Alice");
> >
> > Colm.
> >
> >
> > On Fri, Aug 9, 2013 at 9:56 AM, <[email protected]
> > >wrote:
> >
> > > Hi Colm,
> > >
> > > To get my client working with the config I tried a lot of things, but I
> > > did’n succeed so far, the message didn’t get signed. But I have an
> other
> > > question. Is it possible to set these parameters in Java? I can’t find
> > any
> > > example that sets this runtime.
> > > For our application these settings will be given runtime, so I need to
> > set
> > > them runtime. Is is also posible to set the keystore runtime?
> > >
> > > Thanks for your input in advance!
> > > Ralph Keegstra
> > >
> > >
> > >
> > > From:
> > > Colm O hEigeartaigh <[email protected]>
> > > To:
> > > "[email protected]" <[email protected]>
> > > Date:
> > > 02-08-2013 16:01
> > > Subject:
> > > Re: org.apache.cxf.ws.policy.PolicyException: These policy alternatives
> > > can not be satisfied:
> > >
> > >
> > >
> > > When you have a WS-SecurityPolicy, you should not use either the
> > > WSS4JOutInterceptor or WSS4JInInterceptor. CXF will take care of all of
> > > the
> > > configuration, providing you supply it with the (e.g) Crypto property
> > > configuration and a CallbackHandler, username, etc. Please take a look
> at
> > > the link I posted in my last reply - that configuration works for the
> > > client for both outbound + inbound.
> > >
> > > Colm.
> > >
> > >
> > > On Fri, Aug 2, 2013 at 2:51 PM,
> > > <[email protected]>wrote:
> > >
> > > > OK thank you very much!
> > > > I'm getting a little further, but I think I'm running against a
> problem
> > > I
> > > > had/made before. But now I get the following error:
> > > >
> > > > org.apache.cxf.ws.policy.PolicyException: These policy alternatives
> can
> > > > not be satisfied:
> > > > {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > }AsymmetricBinding: Received Timestamp does not match the
> requirements
> > > >
> > > > Which doesn't supprise me. Earlier in the development proces I had
> the
> > > > problem that I couldn't sign the timestamp. For the outgoing message
> > I'm
> > > > using the following:
> > > > 1 Map<String, Object> outProps = new HashMap<String, Object>();
> > > > 2 outProps.put(WSHandlerConstants.ACTION,
> > > WSHandlerConstants.TIMESTAMP
> > > > + " " + WSHandlerConstants.SIGNATURE);
> > > > 3 //outProps.put(WSHandlerConstants.ACTION,
> > > > WSHandlerConstants.SIGNATURE);
> > > > 4 bindingProvider.getRequestContext().put("password", "xxxxx");
> > > > 5 outProps.put(WSHandlerConstants.USER, "xxxxxxxxx");
> > > > 6 outProps.put(WSHandlerConstants.SIG_PROP_FILE,
> > > > "client_sign.properties");
> > > > 7 outProps.put(WSHandlerConstants.SIG_KEY_ID, "DirectReference");
> > > > 8 outProps.put(WSHandlerConstants.SIGNATURE_PARTS, "{Element}{
> > > > http://www.w3.org/2005/08/addressing}Action;";
> > > > 9 + "{Element}{
> > > > http://www.w3.org/2005/08/addressing}MessageID;";
> > > > 10 + "{Element}{
> > > > http://www.w3.org/2005/08/addressing}To;";
> > > > 11 + "{Element}{
> > > > http://www.w3.org/2005/08/addressing}ReplyTo;";
> > > > 12 + "Body;"
> > > > 13 + "{Element}{
> > > >
> > > >
> > >
> > >
> >
> http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd
> > >
> > > > }Timestamp");
> > > >
> > > > 14 WSS4JOutInterceptor wssOut = new WSS4JOutInterceptor(outProps);
> > > > 15 cxfEndpoint.getOutInterceptors().add(wssOut);
> > > >
> > > > The third line I commented out and in the wsdl I commented out
> > > > '<sp:IncludeTimestamp/>' (which is wrong, but I could send a message
> so
> > > I
> > > > was happy at the moment). If I commented out line 2 I get a error
> that
> > > the
> > > > field Timestamp can not be found.
> > > >
> > > > Is this the cause of the problem above?
> > > > I tried to use PolicyBasedWSS4JOutInterceptor instead of
> > > > WSS4JOutInterceptor, but I don't know how to push the configuration.
> > > >
> > > >
> > > >
> > > >
> > > > From:
> > > > Colm O hEigeartaigh <[email protected]>
> > > > To:
> > > > "[email protected]" <[email protected]>
> > > > Date:
> > > > 02-08-2013 15:15
> > > > Subject:
> > > > Re: org.apache.cxf.ws.policy.PolicyException: These policy
> alternatives
> > > > can not be satisfied:
> > > >
> > > >
> > > >
> > > > Ok your configuration is the issue. You are configuring the
> > > > WSS4JInInterceptor, which is not policy-aware. You need to configure
> > the
> > > > PolicyBasedWSS4JInInterceptor instead. This is done automatically for
> > > you
> > > > if the WSDL has the correct security policy, but the configuration is
> > > done
> > > > in a slightly different way.
> > > >
> > > > For example, see the following configuration:
> > > >
> > > >
> > > >
> > >
> > >
> >
> http://svn.apache.org/viewvc/cxf/trunk/systests/ws-security-examples/src/test/resources/org/apache/cxf/systest/wssec/examples/x509/client.xml?view=markup
> > >
> > > >
> > > >
> > > > Colm.
> > > >
> > > >
> > > > On Fri, Aug 2, 2013 at 2:11 PM,
> > > > <[email protected]>wrote:
> > > >
> > > > > Map<String, Object> inProps = new HashMap<String, Object>();
> > > > > inProps.put(WSHandlerConstants.SIG_PROP_FILE,
> > > > > "server_sign.properties");
> > > > > inProps.put(WSHandlerConstants.ACTION,
> > > WSHandlerConstants.TIMESTAMP
> > > > +
> > > > > " " + WSHandlerConstants.SIGNATURE);
> > > > > bindingProvider.getResponseContext().put("password", "xxxxx");
> > > > > inProps.put(WSHandlerConstants.USER,
> > > > > "cs-bedrijven.procesinfrastructuur.nl");
> > > > >
> > > > > WSS4JInInterceptor wssIn = new WSS4JInInterceptor(inProps);
> > > > > cxfEndpoint.getInInterceptors().add(wssIn);
> > > > >
> > > > > --- server_sign.properties ---
> > > > >
> > > > >
> > > >
> > > >
> > >
> > >
> >
> org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin
> > > > > org.apache.ws.security.crypto.merlin.keystore.type=jks
> > > > > org.apache.ws.security.crypto.merlin.keystore.password=xxxxx
> > > > > #org.apache.ws.security.crypto.merlin.keystore.alias=
> > > > > cs-bedrijven.procesinfrastructuur.nl
> > > > >
> org.apache.ws.security.crypto.merlin.keystore.file=globalkeystore.jks
> > > > >
> > > > > This is how I configure WSS4JInInterceptor. I have no extra config
> > > files
> > > > > and I prefer to set all config in the code. When the client works I
> > > want
> > > > > to try to get rid of the server_sign.properties, I want to set that
> > > > > dynamic.
> > > > >
> > > > > Ralph
> > > > >
> > > > >
> > > > >
> > > > >
> > > > > From:
> > > > > Colm O hEigeartaigh <[email protected]>
> > > > > To:
> > > > > "[email protected]" <[email protected]>
> > > > > Date:
> > > > > 02-08-2013 15:04
> > > > > Subject:
> > > > > Re: org.apache.cxf.ws.policy.PolicyException: These policy
> > > alternatives
> > > > > can not be satisfied:
> > > > >
> > > > >
> > > > >
> > > > > As a sanity check, can I see your CXF client configuration?
> > > > > PolicyVerificationInInterceptor does run after
> > > > > PolicyBasedWSS4JInInterceptor, so maybe you are configuring the
> > > > > WSS4JInInterceptor explicilty in your configuration?
> > > > >
> > > > > Colm.
> > > > >
> > > > >
> > > > > On Fri, Aug 2, 2013 at 1:26 PM,
> > > > > <[email protected]>wrote:
> > > > >
> > > > > > Hi Colm,
> > > > > >
> > > > > > He doesn't reach the point you asked for. In
> > > > > > 'org.apache.cxf.ws.policy.AssertionInfoMap.java'
> > > checkEffectivePolicy
> > > > he
> > > > > > doesn't find any validated policy, the ArrayList validated is
> > empty,
> > > > the
> > > > > > ArrayList errors contains 50. He throws at line 179 an exception
> > > (cxf
> > > > > > 2.7.6).
> > > > > > This method is called from
> > > > > > 'org.apache.cxf.ws.policy.PolicyVerificationInInterceptor' method
> > > > > handle.
> > > > > > Line 101 is the line where call is done.
> > > > > > The variable aim contains:
> > > > > > {{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > }SignedElements=[{
> > > > > > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > }SignedElements:false], {
> > > > > > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > }RecipientToken=[{
> > > > > > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > }RecipientToken:false], {
> > > http://www.w3.org/2007/05/addressing/metadata
> > > > > > }Anonymous=[{http://www.w3.org/2007/05/addressing/metadata
> > > > > > }Anonymous:false, {http://www.w3.org/2007/05/addressing/metadata
> > > > > > }Anonymous:false], {
> > > > > > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > }Layout=[{
> > > > > > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > }Layout:false],
> > > > > > AnonymousResponses=[AnonymousResponses:false,
> > > > AnonymousResponses:false],
> > > > > {
> > > > > > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > }AsymmetricBinding=[{
> > > > > > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > }AsymmetricBinding:false], {
> > > > > http://www.w3.org/2007/02/addressing/metadata
> > > > > > }Addressing=[{http://www.w3.org/2007/02/addressing/metadata
> > > > > > }Addressing:true, {http://www.w3.org/2007/02/addressing/metadata
> > > > > > }Addressing:true, {http://www.w3.org/2007/02/addressing/metadata
> > > > > > }Addressing:true, {http://www.w3.org/2007/02/addressing/metadata
> > > > > > }Addressing:true], {
> > > > > > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > }InitiatorToken=[{
> > > > > > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > }InitiatorToken:false], {
> > > > > > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > }X509Token=[{
> > > > > > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > }X509Token:false,
> > > > > > {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > }X509Token:false], {
> > > > > > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > }SignedParts=[{
> > > > > > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > }SignedParts:false], {
> > > > > >
> > > >
> > http://schemas.xmlsoap.org/ws/2004/09/policy/optimizedmimeserialization
> > > > > > }OptimizedMimeSerialization=[{
> > > > > >
> > > >
> > http://schemas.xmlsoap.org/ws/2004/09/policy/optimizedmimeserialization
> > > > > > }OptimizedMimeSerialization:false]}
> > > > > >
> > > > > > If you need to know something else, let me know!
> > > > > >
> > > > > > Ralph
> > > > > >
> > > > > >
> > > > > >
> > > > > > From:
> > > > > > Colm O hEigeartaigh <[email protected]>
> > > > > > To:
> > > > > > "[email protected]" <[email protected]>
> > > > > > Date:
> > > > > > 02-08-2013 12:57
> > > > > > Subject:
> > > > > > Re: org.apache.cxf.ws.policy.PolicyException: These policy
> > > > alternatives
> > > > > > can not be satisfied:
> > > > > >
> > > > > >
> > > > > >
> > > > > > Do you have access to a debugger? If so could you put a
> breakpoint
> > > in
> > > > > > PolicyBasedWSS4JInInterceptor in the doResults method and trace
> the
> > > > > flow?
> > > > > > The problem is that some policy is getting unasserted, but I
> can't
> > > > > figure
> > > > > > out which one from the logging.
> > > > > >
> > > > > > Colm.
> > > > > >
> > > > > >
> > > > > > On Fri, Aug 2, 2013 at 11:53 AM,
> > > > > > <[email protected]>wrote:
> > > > > >
> > > > > > > Hi,
> > > > > > >
> > > > > > > This comes from the WSDL as it is given to me. When generated
> > with
> > > > all
> > > > > > > three policies enabled, the first is used I believe. I just
> tried
> > > to
> > > > > > > generate with only one enabled. I tried three times (one time
> for
> > > > > > > Basic128Rsa15, one time for Basic256Ras15 and one time for
> > > > > > > TripleDesRsa15), all the same result as before.
> > > > > > > At almost the bottum of the log it says ' LogUtils.doLog(443)
> |
> > > > > > > WS-Addressing - failed to retrieve Message Addressing
> Properties
> > > > from
> > > > > > > context'.
> > > > > > > Is it possible that I need to add something to avoid this? And
> if
> > > > yes
> > > > > > how
> > > > > > > do I do that?
> > > > > > >
> > > > > > > Ralph
> > > > > > >
> > > > > > >
> > > > > > >
> > > > > > >
> > > > > > > From:
> > > > > > > Colm O hEigeartaigh <[email protected]>
> > > > > > > To:
> > > > > > > "[email protected]" <[email protected]>
> > > > > > > Date:
> > > > > > > 02-08-2013 12:34
> > > > > > > Subject:
> > > > > > > Re: org.apache.cxf.ws.policy.PolicyException: These policy
> > > > > alternatives
> > > > > > > can not be satisfied:
> > > > > > >
> > > > > > >
> > > > > > >
> > > > > > > Hi,
> > > > > > >
> > > > > > > I'm not sure if this is the cause of the problem, but the
> > > following
> > > > > > policy
> > > > > > > is not valid:
> > > > > > >
> > > > > > > <sp:AlgorithmSuite>
> > > > > > > <wsp:Policy>
> > > > > > > <sp:Basic128Rsa15/>
> > > > > > > <sp:Basic256Rsa15/>
> > > > > > > <sp:TripleDesRsa15/>
> > > > > > > </wsp:Policy>
> > > > > > > </sp:AlgorithmSuite>
> > > > > > >
> > > > > > > The specification only allows you to specify one of the
> policies
> > > > > above.
> > > > > > >
> > > > > > > Colm.
> > > > > > >
> > > > > > >
> > > > > > > On Thu, Aug 1, 2013 at 3:44 PM,
> > > > > > > <[email protected]>wrote:
> > > > > > >
> > > > > > > > Hi Colm,
> > > > > > > >
> > > > > > > > The previous message didn't contain a attachement. But in the
> > > mean
> > > > > > time
> > > > > > > I
> > > > > > > > managed to get a better log. I will attach it as .txt
> > > > > > > >
> > > > > > > >
> > > > > > > >
> > > > > > > > From: Colm O hEigeartaigh <[email protected]> To:
> > > > > > > "[email protected]"
> > > > > > > > <[email protected]> Date: 01-08-2013 10:48 Subject: Re:
> > > > > > > > org.apache.cxf.ws.policy.PolicyException: These policy
> > > > alternatives
> > > > > > can
> > > > > > > not
> > > > > > > > be satisfied:
> > > > > > > > ------------------------------
> > > > > > > >
> > > > > > > >
> > > > > > > >
> > > > > > > > Could you turn logging to "FINE" + attach the log? That
> should
> > > > tell
> > > > > us
> > > > > > > the
> > > > > > > > exact policy validation error(s).
> > > > > > > >
> > > > > > > > Colm.
> > > > > > > >
> > > > > > > >
> > > > > > > > On Thu, Aug 1, 2013 at 9:17 AM,
> > > > > <[email protected]
> > > > > > > > >wrote:
> > > > > > > >
> > > > > > > > > Hi,
> > > > > > > > >
> > > > > > > > > Because the formatting was crappy an attachement.
> > > > > > > > >
> > > > > > > > >
> > > > > > > > >
> > > > > > > > > From: Colm O hEigeartaigh <[email protected]> To: "
> > > > > > > > [email protected]"
> > > > > > > > > <[email protected]> Date: 01-08-2013 10:09 Subject: Re:
> > > > > > > > > org.apache.cxf.ws.policy.PolicyException: These policy
> > > > > alternatives
> > > > > > > can
> > > > > > > > not
> > > > > > > > > be satisfied:
> > > > > > > > > ------------------------------
> > > > > > > > >
> > > > > > > > >
> > > > > > > > >
> > > > > > > > > Hi,
> > > > > > > > >
> > > > > > > > > It looks like the service is processing the CXF request
> > > > correctly,
> > > > > > but
> > > > > > > is
> > > > > > > > > not returning a response that complies with the security
> > > policy,
> > > > > and
> > > > > > > the
> > > > > > > > > client is throwing an exception. It's impossible to find
> out
> > > > > without
> > > > > > > > seeing
> > > > > > > > > the security policy though. It should be in the WSDL file
> > > > > referenced
> > > > > > > in
> > > > > > > > the
> > > > > > > > > log, if you could attach it:
> > > > > > > > >
> > > > > > > > > file:WSDL/Aanleveren/Aanleverservice_Digipoort_WUS 2.0
> > > > > > > > > Bedrijven_v1.2_preprod.wsdl"
> > > > > > > > >
> > > > > > > > > Colm.
> > > > > > > > >
> > > > > > > > >
> > > > > > > > >
> > > > > > > > > On Thu, Aug 1, 2013 at 8:53 AM,
> > > > > > <[email protected]
> > > > > > > > > >wrote:
> > > > > > > > >
> > > > > > > > > > Dear Colm,
> > > > > > > > > >
> > > > > > > > > > Sorry i didn't see your previous response. Because of my
> > > great
> > > > > > > e-mail
> > > > > > > > > > client (Notus ;) ) I wasn't properly connected to the
> > > > > mailinglist,
> > > > > > > > > > apologies for the inconvenience.
> > > > > > > > > > I don't know how to get the security policy of the
> service.
> > > > > > > > > > I added the message I send to the server. (I've removed
> the
> > > > > > > > SecurityToken
> > > > > > > > > > for security reasons).
> > > > > > > > > > The message I received is the text I copied from the
> log. I
> > > > also
> > > > > > > added
> > > > > > > > > the
> > > > > > > > > > logging I get at the moment.
> > > > > > > > > >
> > > > > > > > > > Ralph
> > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > > From: Colm O hEigeartaigh <[email protected]> To: "
> > > > > > > > > [email protected]"
> > > > > > > > > > <[email protected]> Date: 01-08-2013 09:34 Subject:
> Re:
> > > > > > > > > > org.apache.cxf.ws.policy.PolicyException: These policy
> > > > > > alternatives
> > > > > > > can
> > > > > > > > > not
> > > > > > > > > > be satisfied:
> > > > > > > > > > ------------------------------
> > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > > Did you not see my previous response? We need to see the
> > > > > security
> > > > > > > > policy
> > > > > > > > > of
> > > > > > > > > > the service, the request message + the response message
> to
> > > be
> > > > > able
> > > > > > > to
> > > > > > > > > help
> > > > > > > > > > you.
> > > > > > > > > >
> > > > > > > > > > Colm.
> > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > > On Thu, Aug 1, 2013 at 7:06 AM,
> > > > > > > <[email protected]
> > > > > > > > > > >wrote:
> > > > > > > > > >
> > > > > > > > > > > Dear CXF Support,
> > > > > > > > > > >
> > > > > > > > > > > First, I am a newbie with CXF. I am writing a CXF
> client
> > > to
> > > > > > > interact
> > > > > > > > > with
> > > > > > > > > > > the government. I am able to send a message. But when I
> > > > > receive
> > > > > > > the
> > > > > > > > > > > response my client crashes.
> > > > > > > > > > > Below is the stacktrace. I'm using CXF 2.7.6. I am
> using
> > > > Java
> > > > > > > 1.6.45.
> > > > > > > > > If
> > > > > > > > > > > you need more info, please let me know as I don't
> exactly
> > > > know
> > > > > > > what
> > > > > > > > > info
> > > > > > > > > > > you need to help me.
> > > > > > > > > > > Please help me, I'm stuck.
> > > > > > > > > > >
> > > > > > > > > > > Ralph Keegstra
> > > > > > > > > > >
> > > > > > > > > > > org.apache.cxf.ws.policy.PolicyException: These policy
> > > > > > > alternatives
> > > > > > > > can
> > > > > > > > > > > not be satisfied:
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > > > > }AsymmetricBinding
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > }X509Token
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > > > }InitiatorToken
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > > > }RecipientToken
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > }Layout
> > > > > > > > > > > {http://www.w3.org/2007/05/addressing/metadata
> }Anonymous
> > > > > > > > > > > {
> > > > > > > > >
> > > > > > >
> > > > >
> > >
> http://schemas.xmlsoap.org/ws/2004/09/policy/optimizedmimeserialization
> > > > > > > > > > > }OptimizedMimeSerialization
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > }SignedParts
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > > > }SignedElements
> > > > > > > > > > > AnonymousResponses
> > > > > > > > > > > at
> > > > > > > > > >
> > > > org.apache.cxf.ws.policy.AssertionInfoMap.checkEffectivePolicy(
> > > > > > > > > > > AssertionInfoMap.java:179)
> > > > > > > > > > > at
> > > > > > > > > > >
> > > > > org.apache.cxf.ws.policy.PolicyVerificationInInterceptor.handle(
> > > > > > > > > > > PolicyVerificationInInterceptor.java:101)
> > > > > > > > > > > at
> > > > > > > > > > >
> > > > > > org.apache.cxf.ws.policy.AbstractPolicyInterceptor.handleMessage(
> > > > > > > > > > > AbstractPolicyInterceptor.java:44)
> > > > > > > > > > > at
> > > > > > org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(
> > > > > > > > > > > PhaseInterceptorChain.java:271)
> > > > > > > > > > > at
> org.apache.cxf.endpoint.ClientImpl.onMessage(
> > > > > > > > > > > ClientImpl.java:800)
> > > > > > > > > > > at
> > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > > >
> > > > > > >
> > > > > >
> > > > > >
> > > > >
> > > > >
> > > >
> > > >
> > >
> > >
> >
> org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponseInternal(
> > > > > > > > > > > HTTPConduit.java:1592)
> > > > > > > > > > > at
> > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > > >
> > > > > > >
> > > > > >
> > > > > >
> > > > >
> > > > >
> > > >
> > > >
> > >
> > >
> >
> org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponse(
> > > > > > > > > > > HTTPConduit.java:1490)
> > > > > > > > > > > at
> > > > > > > > > > >
> > > > > > >
> > > org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.close(
> > > > > > > > > > > HTTPConduit.java:1309)
> > > > > > > > > > > at
> > > > > > org.apache.cxf.io.CacheAndWriteOutputStream.postClose(
> > > > > > > > > > > CacheAndWriteOutputStream.java:50)
> > > > > > > > > > > at org.apache.cxf.io.CachedOutputStream.close(
> > > > > > > > > > > CachedOutputStream.java:223)
> > > > > > > > > > > at
> > org.apache.cxf.transport.AbstractConduit.close(
> > > > > > > > > > > AbstractConduit.java:56)
> > > > > > > > > > > at
> > > org.apache.cxf.transport.http.HTTPConduit.close(
> > > > > > > > > > > HTTPConduit.java:622)
> > > > > > > > > > > at
> > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > > >
> > > > > > >
> > > > > >
> > > > > >
> > > > >
> > > > >
> > > >
> > > >
> > >
> > >
> >
> org.apache.cxf.interceptor.MessageSenderInterceptor$MessageSenderEndingInterceptor.handleMessage(
> > > > > > > > > > > MessageSenderInterceptor.java:62)
> > > > > > > > > > > at
> > > > > > org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(
> > > > > > > > > > > PhaseInterceptorChain.java:271)
> > > > > > > > > > > at
> > > > > > > > > >
> > > > org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:530
> > > > > > > > > > > )
> > > > > > > > > > > at
> > > > > > > > >
> > org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:463)
> > > > > > > > > > > at
> > > > > > > > >
> > org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:366)
> > > > > > > > > > > at
> > > > > > > > >
> > org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:319)
> > > > > > > > > > > at
> > org.apache.cxf.frontend.ClientProxy.invokeSync(
> > > > > > > > > > > ClientProxy.java:96)
> > > > > > > > > > > at
> org.apache.cxf.jaxws.JaxWsClientProxy.invoke(
> > > > > > > > > > > JaxWsClientProxy.java:133)
> > > > > > > > > > > at com.sun.proxy.$Proxy34.aanleveren(Unknown
> > > Source)
> > > > > > > > > > > at
> > > > > > > > nl.pfm.wus.aanroep.WUSAanlever.leverAan(WUSAanlever.java:34)
> > > > > > > > > > > at
> > > > > nl.pfm.wus.aanroep.WUSAanroep.main(WUSAanroep.java:9)
> > > > > > > > > > > Exception in thread "main"
> > > > > javax.xml.ws.soap.SOAPFaultException:
> > > > > > > > These
> > > > > > > > > > > policy alternatives can not be satisfied:
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > > > > }AsymmetricBinding
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > }X509Token
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > > > }InitiatorToken
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > > > }RecipientToken
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > }Layout
> > > > > > > > > > > {http://www.w3.org/2007/05/addressing/metadata
> }Anonymous
> > > > > > > > > > > {
> > > > > > > > >
> > > > > > >
> > > > >
> > >
> http://schemas.xmlsoap.org/ws/2004/09/policy/optimizedmimeserialization
> > > > > > > > > > > }OptimizedMimeSerialization
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > }SignedParts
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > > > }SignedElements
> > > > > > > > > > > AnonymousResponses
> > > > > > > > > > > at
> org.apache.cxf.jaxws.JaxWsClientProxy.invoke(
> > > > > > > > > > > JaxWsClientProxy.java:155)
> > > > > > > > > > > at com.sun.proxy.$Proxy34.aanleveren(Unknown
> > > Source)
> > > > > > > > > > > at
> > > > > > > > nl.pfm.wus.aanroep.WUSAanlever.leverAan(WUSAanlever.java:34)
> > > > > > > > > > > at
> > > > > nl.pfm.wus.aanroep.WUSAanroep.main(WUSAanroep.java:9)
> > > > > > > > > > > Caused by: org.apache.cxf.ws.policy.PolicyException:
> > These
> > > > > > policy
> > > > > > > > > > > alternatives can not be satisfied:
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > > > > }AsymmetricBinding
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > }X509Token
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > > > }InitiatorToken
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > > > }RecipientToken
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > }Layout
> > > > > > > > > > > {http://www.w3.org/2007/05/addressing/metadata
> }Anonymous
> > > > > > > > > > > {
> > > > > > > > >
> > > > > > >
> > > > >
> > >
> http://schemas.xmlsoap.org/ws/2004/09/policy/optimizedmimeserialization
> > > > > > > > > > > }OptimizedMimeSerialization
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > }SignedParts
> > > > > > > > > > > {
> > http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702
> > > > > > > > > > }SignedElements
> > > > > > > > > > > AnonymousResponses
> > > > > > > > > > > at
> > > > > > > > > >
> > > > org.apache.cxf.ws.policy.AssertionInfoMap.checkEffectivePolicy(
> > > > > > > > > > > AssertionInfoMap.java:179)
> > > > > > > > > > > at
> > > > > > > > > > >
> > > > > org.apache.cxf.ws.policy.PolicyVerificationInInterceptor.handle(
> > > > > > > > > > > PolicyVerificationInInterceptor.java:101)
> > > > > > > > > > > at
> > > > > > > > > > >
> > > > > > org.apache.cxf.ws.policy.AbstractPolicyInterceptor.handleMessage(
> > > > > > > > > > > AbstractPolicyInterceptor.java:44)
> > > > > > > > > > > at
> > > > > > org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(
> > > > > > > > > > > PhaseInterceptorChain.java:271)
> > > > > > > > > > > at
> org.apache.cxf.endpoint.ClientImpl.onMessage(
> > > > > > > > > > > ClientImpl.java:800)
> > > > > > > > > > > at
> > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > > >
> > > > > > >
> > > > > >
> > > > > >
> > > > >
> > > > >
> > > >
> > > >
> > >
> > >
> >
> org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponseInternal(
> > > > > > > > > > > HTTPConduit.java:1592)
> > > > > > > > > > > at
> > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > > >
> > > > > > >
> > > > > >
> > > > > >
> > > > >
> > > > >
> > > >
> > > >
> > >
> > >
> >
> org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponse(
> > > > > > > > > > > HTTPConduit.java:1490)
> > > > > > > > > > > at
> > > > > > > > > > >
> > > > > > >
> > > org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.close(
> > > > > > > > > > > HTTPConduit.java:1309)
> > > > > > > > > > > at
> > > > > > org.apache.cxf.io.CacheAndWriteOutputStream.postClose(
> > > > > > > > > > > CacheAndWriteOutputStream.java:50)
> > > > > > > > > > > at org.apache.cxf.io.CachedOutputStream.close(
> > > > > > > > > > > CachedOutputStream.java:223)
> > > > > > > > > > > at
> > org.apache.cxf.transport.AbstractConduit.close(
> > > > > > > > > > > AbstractConduit.java:56)
> > > > > > > > > > > at
> > > org.apache.cxf.transport.http.HTTPConduit.close(
> > > > > > > > > > > HTTPConduit.java:622)
> > > > > > > > > > > at
> > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > > >
> > > > > > >
> > > > > >
> > > > > >
> > > > >
> > > > >
> > > >
> > > >
> > >
> > >
> >
> org.apache.cxf.interceptor.MessageSenderInterceptor$MessageSenderEndingInterceptor.handleMessage(
> > > > > > > > > > > MessageSenderInterceptor.java:62)
> > > > > > > > > > > at
> > > > > > org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(
> > > > > > > > > > > PhaseInterceptorChain.java:271)
> > > > > > > > > > > at
> > > > > > > > > >
> > > > org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:530
> > > > > > > > > > > )
> > > > > > > > > > > at
> > > > > > > > >
> > org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:463)
> > > > > > > > > > > at
> > > > > > > > >
> > org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:366)
> > > > > > > > > > > at
> > > > > > > > >
> > org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:319)
> > > > > > > > > > > at
> > org.apache.cxf.frontend.ClientProxy.invokeSync(
> > > > > > > > > > > ClientProxy.java:96)
> > > > > > > > > > > at
> org.apache.cxf.jaxws.JaxWsClientProxy.invoke(
> > > > > > > > > > > JaxWsClientProxy.java:133)
> > > > > > > > > > > ... 3 more
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > > --
> > > > > > > > > > Colm O hEigeartaigh
> > > > > > > > > >
> > > > > > > > > > Talend Community Coder
> > > > > > > > > > http://coders.talend.com
> > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > >
> > > > > > > > >
> > > > > > > > >
> > > > > > > > > --
> > > > > > > > > Colm O hEigeartaigh
> > > > > > > > >
> > > > > > > > > Talend Community Coder
> > > > > > > > > http://coders.talend.com
> > > > > > > > >
> > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > > > >
> > > > > > > > --
> > > > > > > > Colm O hEigeartaigh
> > > > > > > >
> > > > > > > > Talend Community Coder
> > > > > > > > http://coders.talend.com
> > > > > > > >
> > > > > > > >
> > > > > > > >
> > > > > > >
> > > > > > >
> > > > > > > --
> > > > > > > Colm O hEigeartaigh
> > > > > > >
> > > > > > > Talend Community Coder
> > > > > > > http://coders.talend.com
> > > > > > >
> > > > > > >
> > > > > > >
> > > > > >
> > > > > >
> > > > > > --
> > > > > > Colm O hEigeartaigh
> > > > > >
> > > > > > Talend Community Coder
> > > > > > http://coders.talend.com
> > > > > >
> > > > > >
> > > > > >
> > > > >
> > > > >
> > > > > --
> > > > > Colm O hEigeartaigh
> > > > >
> > > > > Talend Community Coder
> > > > > http://coders.talend.com
> > > > >
> > > > >
> > > > >
> > > >
> > > >
> > > > --
> > > > Colm O hEigeartaigh
> > > >
> > > > Talend Community Coder
> > > > http://coders.talend.com
> > > >
> > > >
> > > >
> > >
> > >
> > > --
> > > Colm O hEigeartaigh
> > >
> > > Talend Community Coder
> > > http://coders.talend.com
> > >
> > >
> > >
> > >
> >
> >
> > --
> > Colm O hEigeartaigh
> >
> > Talend Community Coder
> > http://coders.talend.com
> >
> >
> >
>
>
> --
> Colm O hEigeartaigh
>
> Talend Community Coder
> http://coders.talend.com
>
>
>
--
Colm O hEigeartaigh
Talend Community Coder
http://coders.talend.com
