Hi forum,
I want to implement a BIPRO Basic authentication. (only a Usernametoken)
I use Spring Boot, CXF 3.1.7 with a java based config.
If i send via SOAPUI a request with a Usernametoken to my endpoint, I get
several policy errors...
*Errormsg*
org.apache.cxf.ws.policy.PolicyException: These policy alternatives can not
be satisfied:
{http://schemas.xmlsoap.org/ws/2005/07/securitypolicy}TransportBinding
{http://schemas.xmlsoap.org/ws/2005/07/securitypolicy}TransportToken
{http://schemas.xmlsoap.org/ws/2005/07/securitypolicy}SupportingTokens
{http://schemas.xmlsoap.org/ws/2005/07/securitypolicy}UsernameToken
at
org.apache.cxf.ws.policy.AssertionInfoMap.checkEffectivePolicy(AssertionInfoMap.java:179)
~[cxf-rt-ws-policy-3.1.7.jar:3.1.7]
at
org.apache.cxf.ws.policy.PolicyVerificationInInterceptor.handle(PolicyVerificationInInterceptor.java:102)
~[cxf-rt-ws-policy-3.1.7.jar:3.1.7]
at
org.apache.cxf.ws.policy.AbstractPolicyInterceptor.handleMessage(AbstractPolicyInterceptor.java:44)
~[cxf-rt-ws-policy-3.1.7.jar:3.1.7]
at
org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:308)
~[cxf-core-3.1.7.jar:3.1.7]
...
*EndErrortext*
My policy definition in the wsdl:
<wsp:Policy xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";
xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy";
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd";
wsu:Id="BiPROAuthSecurityPolicy">
<wsp:ExactlyOne>
<wsp:All>
<sp:TransportBinding>
<wsp:Policy>
<sp:TransportToken>
<wsp:Policy>
<sp:HttpsToken RequireClientCertificate="false"/>
</wsp:Policy>
</sp:TransportToken>
</wsp:Policy>
</sp:TransportBinding>
<sp:SupportingTokens>
<wsp:Policy>
<wsp:ExactlyOne>
<wsp:All>
<sp:UsernameToken wsu:Id="BiPROBasicToken"/>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
</sp:SupportingTokens>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
Furthermore my Callback Handler is very simple and just verify one user:
*JavaClass*
public class STSCallbackHandler implements CallbackHandler {
public void handle(Callback[] callbacks) throws IOException,
UnsupportedCallbackException {
WSPasswordCallback pc = (WSPasswordCallback) callbacks[0];
if ("anna".equals(pc.getIdentifier())) {
pc.setPassword("anna123");
//break;
}
}
}
My Service endpoint looks also very simple:
*JavaClass*
@WebService
(
portName = "UserPasswordLogin",
serviceName = "SecurityTokenService_2.6.0.1.0",
wsdlLocation =
"src/main/resources/wsdl/SecurityTokenService-2.6.0.1.0.wsdl",
endpointInterface = "net.bipro.namespace.SecurityTokenServicePortType"
)
@EndpointProperties({
@EndpointProperty(key = "ws-security.callback-handler",
value="com.muki.endpoint.STSCallbackHandler"),
//@EndpointProperty(key =
"ws-security.return.security.error",value="false"),
})
public class SecurityTokenEndpoint implements SecurityTokenServicePortType {
@Override
public void requestSecurityToken(RequestSecurityTokenType parameters,
Holder<RequestSecurityTokenResponseType> parameters0) {
RequestSecurityTokenResponseType requestSecurityTokenResponse = new
RequestSecurityTokenResponseType();
// "TokenType"
Element tokenType = createElement("TokenType");
tokenType.setTextContent("urn:oasis:names:tc:SAML:1.0:assertion");
requestSecurityTokenResponse.getAny().add(tokenType);
parameters0.value = requestSecurityTokenResponse;
}
private Element createElement(String tagName) {
Element element = null;
try {
DocumentBuilderFactory dbf =
DocumentBuilderFactory.newInstance();
DocumentBuilder db = dbf.newDocumentBuilder();
Document doc = db.newDocument();
element =
doc.createElementNS("http://schemas.xmlsoap.org/ws/2005/02/trust";,
tagName);
} catch(Exception e){
e.printStackTrace();
}
return element;
}
}
Do anybody know why I am getting this errors and help me to find a solution?
I'm new with CXF and Spring Boot.
Kind regards,
patrick
--
View this message in context:
http://cxf.547215.n5.nabble.com/Bipro-Security-token-service-simple-Usernametoken-tp5777721.html
Sent from the cxf-user mailing list archive at Nabble.com.
