Hello Guys, Thank you so much for your help. It works now by adding the stax jar :-)
Best Regards. -----Original Message----- From: Daniel Kulp [mailto:[email protected]] Sent: mercredi 6 novembre 2013 14:27 To: [email protected] Cc: [email protected] Subject: Re: CXF client working with cxf 2.5.4/2.6.1 and not on cxf 2.6.10 Woodstox would require stax2-api jar as well. Make sure you add that in. Dan On Nov 6, 2013, at 1:33 PM, COURTAULT Francois <[email protected]> wrote: > Hello, > > I have made a try on 2.7.7 as well and have added the woodstox jar as you > suggested with no luck: still getting the same error. > Now the jars in my CXF 2.7.7 client classpath are: > - common-logging-1.1.1.jar > - cxf-2.7.7.jar > - neethi-3.0.2.jar > - slf4j-api-1.7.5.jar > - slf4j-jdk14-1.7.5.jar > - woodstox-core-asl-4.2.0.jar > - wsdl4j-1.6.3.jar > - wss4j-1.6.12.jar > - xmlschema-core-2.0.3.jar > - xmlsec-1.5.5.jar > > It seems that with CXF version serializer and xalan are gone. > > Best Regards. > > > -----Original Message----- > From: Colm O hEigeartaigh [mailto:[email protected]] > Sent: mercredi 6 novembre 2013 13:20 > To: [email protected] > Subject: Re: CXF client working with cxf 2.5.4/2.6.1 and not on cxf > 2.6.10 > > Hi Francois, > > You are missing Woodstox. Please see here for more information: > > http://coheigea.blogspot.ie/2013/06/denial-of-service-attacks-on-apach > e-cxf.html > > Colm. > > > On Wed, Nov 6, 2013 at 12:09 PM, COURTAULT Francois < > [email protected]> wrote: > >> Hello everyone, >> >> Something which puzzle me :( >> I have a CXF client code which works fine by using CXF 2.5.4 >> libraries or CXF 2.6.1 libraries which targets a Web service hosted >> in Weblogic 11g. I have generated the client artifacts by using the >> following command: >> wsdl2java.bat -client -fe jaxws21 -p xxx.yyy.zzz -d "D:\Temp\src" >> http://myhost:7101/TestWSA/WsaWebServiceTest?WSDL >> >> With the following CXF 2.5.4 jars in my client classpath running on >> jdk1.6 >> u45 everything works fine :) >> >> - common-logging-1.1.1.jar >> >> - cxf-2.5.4.jar >> >> - neethi-3.0.2.jar >> >> - serializer-2.7.1.jar >> >> - slf4j-api-1.6.2.jar >> >> - slf4j-jdk14-1.6.2.jar >> >> - wsdl4j-1.6.2.jar >> >> - wss4j-1.6.5.jar >> >> - xalan-2.7.1.jar >> >> - xmlschema-core-2.0.2.jar >> >> - xmlsec-1.5.1.jar >> >> It work also fine with their CXF 2.6.1 counter parts :) >> >> With the same artifacts and the same client, I replace in my >> classpath the above libraries by their CXF 2.6.10 counter parts: >> >> - common-logging-1.1.1.jar >> >> - cxf-2.6.10.jar >> >> - neethi-3.0.2.jar >> >> - serializer-2.7.1.jar >> >> - slf4j-api-1.7.5.jar >> >> - slf4j-jdk14-1.7.5.jar >> >> - wsdl4j-1.6.3.jar >> >> - wss4j-1.6.12.jar >> >> - xalan-2.7.1.jar >> >> - xmlschema-core-2.0.3.jar >> >> - xmlsec-1.5.5.jar >> >> I got the following error: >> Exception in thread "main" javax.xml.ws.WebServiceException: >> org.apache.cxf.service.factory.ServiceConstructionException: Failed >> to create service. >> at org.apache.cxf.jaxws.ServiceImpl.<init>(ServiceImpl.java:149) >> at >> org.apache.cxf.jaxws.spi.ProviderImpl.createServiceDelegate(ProviderImpl.java:98) >> at javax.xml.ws.Service.<init>(Service.java:56 >> ... >> Caused by: org.apache.cxf.service.factory.ServiceConstructionException: >> Failed to create service. >> at >> org.apache.cxf.wsdl11.WSDLServiceFactory.<init>(WSDLServiceFactory.java:100) >> at >> org.apache.cxf.jaxws.ServiceImpl.initializePorts(ServiceImpl.java:203) >> at org.apache.cxf.jaxws.ServiceImpl.<init>(ServiceImpl.java:147) >> ... 4 more >> Caused by: javax.wsdl.WSDLException: WSDLException: >> faultCode=PARSER_ERROR: java.lang.RuntimeException: Cannot create a >> secure XMLInputFactory >> at >> org.apache.cxf.wsdl11.WSDLManagerImpl.loadDefinition(WSDLManagerImpl.java:244) >> at >> org.apache.cxf.wsdl11.WSDLManagerImpl.getDefinition(WSDLManagerImpl.java:193) >> at >> org.apache.cxf.wsdl11.WSDLServiceFactory.<init>(WSDLServiceFactory.java:98) >> ... 6 more >> Caused by: java.lang.RuntimeException: Cannot create a secure >> XMLInputFactory >> at >> org.apache.cxf.staxutils.StaxUtils.createXMLInputFactory(StaxUtils.java:311) >> at >> org.apache.cxf.staxutils.StaxUtils.getXMLInputFactory(StaxUtils.java:261) >> at >> org.apache.cxf.staxutils.StaxUtils.createXMLStreamReader(StaxUtils.java:1488) >> at >> org.apache.cxf.staxutils.StaxUtils.createXMLStreamReader(StaxUtils.java:1382) >> at >> org.apache.cxf.wsdl11.WSDLManagerImpl.loadDefinition(WSDLManagerImpl.java:234) >> ... 8 more >> >> But if put in the client CXF 2.6.10 classpath all the jars, >> everything works fine :) So what jar files are missing in my >> classpath for CXF >> 2.6.10 ? >> >> Best Regards. >> >> ________________________________ >> This message and any attachments are intended solely for the >> addressees and may contain confidential information. Any unauthorized >> use or disclosure, either whole or partial, is prohibited. >> E-mails are susceptible to alteration. Our company shall not be >> liable for the message if altered, changed or falsified. If you are >> not the intended recipient of this message, please delete it and notify the >> sender. >> Although all reasonable efforts have been made to keep this >> transmission free from viruses, the sender will not be liable for >> damages caused by a transmitted virus >> > > > > -- > Colm O hEigeartaigh > > Talend Community Coder > http://coders.talend.com > > This message and any attachments are intended solely for the addressees and > may contain confidential information. Any unauthorized use or disclosure, > either whole or partial, is prohibited. > E-mails are susceptible to alteration. Our company shall not be liable for > the message if altered, changed or falsified. If you are not the intended > recipient of this message, please delete it and notify the sender. > Although all reasonable efforts have been made to keep this > transmission free from viruses, the sender will not be liable for > damages caused by a transmitted virus -- Daniel Kulp [email protected] - http://dankulp.com/blog Talend Community Coder - http://coders.talend.com This message and any attachments are intended solely for the addressees and may contain confidential information. Any unauthorized use or disclosure, either whole or partial, is prohibited. E-mails are susceptible to alteration. Our company shall not be liable for the message if altered, changed or falsified. If you are not the intended recipient of this message, please delete it and notify the sender. Although all reasonable efforts have been made to keep this transmission free from viruses, the sender will not be liable for damages caused by a transmitted virus
