Hi Peter, The problem is that the Timestamp is expired. That only has a 5 minute window. From the log:
> Sep 29, 2014 4:51:22 PM > <wsu:Expires>2014-09-29T14:49:02.380Z</wsu:Expires> So I guess you could try again with a 5 minute window + see if it works. Colm. On Mon, Sep 29, 2014 at 4:04 PM, <[email protected]> wrote: > Hello All! > > I would like to drive the "wsClientWebapp" demo in CXF Fediz via SoapUI. > > I've set up the demo successfully (with Colm's help, thanks Colm!). It's > working: I can go to https://localhost:8443/fedizhelloworld/secure/ > fedservlet , sign in there then go to https://localhost:8443/ > fedizhelloworld/secure/service.jsp and use the GreeterService service > with the signed in user. > > After this, I tried to use the GreeterService via SoapUI. > > A. First I requested a Security Token at the IDP/STS (9443) via SoapUI. > That worked, I got back a Security Token with a <saml2:Assertion> inside > which was valid for 20 minutes. See attached files for the message exchange. > > B. Next I tried to request the GreeterService (10443) via SoapUI with > the <saml2:Assertion> I got the previous step. But the result was a "The > message has expired" response. Note that I created the request like this: > 1. copied the request from the GreeterService's log after it had driven > via the eaxmple's "Relying Party" web app, > 2. replaced the <saml2:Assertion> part with the assertion from A. > See attached files for the message exchange. > > I was in the 20 minutes time window, I guess that couldn't be the > problem. > > I don't know what's the problem. > > Is my aproach with this experiment valid at all (getting the token, then > use it for requesting the service)? > > Also attached the GReetingService's relevant log excerpt. > > Any help is really appreciated! > > Thank you, best regards, Peter > > --- > > Peter Risko > -- Colm O hEigeartaigh Talend Community Coder http://coders.talend.com
