Hi Freeman,
I installed *Fuse ESB 4.4.0-fuse-00-43* and use no own JAAS JBI
configuration now.
But your advise does not solve my problems any more:
1) You use jaxws:endpoint in the example.
Can I use *cxfbc:consumer* instead of jaxws:endpoint? How?
I plane to create no new ws implementation but *only ws proxy on the ESB* to
my business services.
This proxy shall solve security and auditing for unsecured end services.
Therefore the wsdl contains no ws-security nor ws-policy.
2) I *cannot use WSS4JInInterceptor without passwordCallbackRef* (as you use
in the example) because I become then this run-time exception:
org.apache.cxf.binding.soap.SoapFault: General security error
(WSSecurityEngine: No password callback supplied)
3) Without *JAASLoginInterceptor* is the request successfully authenticated
with the passwordCallback, which sets the password to smx.
But I will to use JAAS and not simple passwordCallback because I need to
bind LDAP authentication later.
But when I add the JAASLoginInterceptor, it apears this *exception* in it:
11:26:19,295 | WARN | 46-428 - /pocty/ | PhaseInterceptorChain |
? ? | - - | Interceptor for
{http://www.aura.cz/xrg/isl/g/v_1.0.0.0}AGWebService#{http://www.aura.cz/xrg/isl/g/v_1.0.0.0}PoctyTechniky
has thrown exception, unwinding now
java.lang.SecurityException: No user name and/or password is available,
name: null, password: null
at
org.apache.cxf.interceptor.security.JAASLoginInterceptor.handleMessage(JAASLoginInterceptor.java:94)[123:org.apache.cxf.bundle:2.4.1.fuse-00-43]
In the *DEBUG* I can see that the *WSS4JInInterceptor catch the username
token, but the JAASLoginInterceptor not*. Why?
11:26:19,294 | DEBUG | 46-428 - /pocty/ | WSS4JInInterceptor |
? ? | - - | WSS4JInInterceptor: enter
handleMessage()
11:26:19,294 | DEBUG | 46-428 - /pocty/ | UsernameTokenProcessor |
? ? | 125 - org.apache.ws.security.wss4j -
1.6.0 | Found UsernameToken list element
11:26:19,294 | DEBUG | 46-428 - /pocty/ | UsernameTokenValidator |
? ? | 125 - org.apache.ws.security.wss4j -
1.6.0 | UsernameToken user smx
11:26:19,294 | DEBUG | 46-428 - /pocty/ | UsernameTokenValidator |
? ? | 125 - org.apache.ws.security.wss4j -
1.6.0 | UsernameToken password type
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText
11:26:19,295 | DEBUG | 46-428 - /pocty/ | WSS4JInInterceptor-Time |
? ? | - - | Receive request: total= 0
request preparation= 0 request processing= 0 header, cert verify, timestamp=
0
....
11:26:19,295 | DEBUG | 46-428 - /pocty/ | PhaseInterceptorChain |
? ? | - - | Invoking handleMessage on
interceptor org.apache.cxf.interceptor.security.JAASLoginInterceptor@1ce1b2b
11:26:19,295 | WARN | 46-428 - /pocty/ | JAASLoginInterceptor |
? ? | - - | No user name and/or
password is available, name: null, password: null
11:26:19,295 | DEBUG | 46-428 - /pocty/ | PhaseInterceptorChain |
? ? | - - | Invoking handleFault on
interceptor org.apache.cxf.interceptor.security.JAASLoginInterceptor@1ce1b2b
I added the project and the payload for you:
http://servicemix.396122.n5.nabble.com/file/n4797819/gateway.zip gateway.zip
http://servicemix.396122.n5.nabble.com/file/n4797819/cxf_payload.xml
cxf_payload.xml
Tahank you very much for your advice.
Radomir
--
View this message in context:
http://servicemix.396122.n5.nabble.com/JAAS-configuration-ClassNotFoundException-UsernameTokenProcessor-tp4794258p4797819.html
Sent from the ServiceMix - User mailing list archive at Nabble.com.
