Hi,
My comment inline
On 2011-9-13, at 下午5:50, Radomir Kadlec wrote:
Hi Freeman,
I installed *Fuse ESB 4.4.0-fuse-00-43* and use no own JAAS JBI
configuration now.
But your advise does not solve my problems any more:
1) You use jaxws:endpoint in the example.
Can I use *cxfbc:consumer* instead of jaxws:endpoint? How?
No, you can't. cxfbc:consumer is JBI endpoint, so if you really need
use JBI endpoint, then my suggestion doesn't work for you as it's
totally another way.
I plane to create no new ws implementation but *only ws proxy on the
ESB* to
my business services.
This proxy shall solve security and auditing for unsecured end
services.
Therefore the wsdl contains no ws-security nor ws-policy.
2) I *cannot use WSS4JInInterceptor without passwordCallbackRef* (as
you use
in the example) because I become then this run-time exception:
org.apache.cxf.binding.soap.SoapFault: General security error
(WSSecurityEngine: No password callback supplied)
3) Without *JAASLoginInterceptor* is the request successfully
authenticated
with the passwordCallback, which sets the password to smx.
But I will to use JAAS and not simple passwordCallback because I
need to
bind LDAP authentication later.
But when I add the JAASLoginInterceptor, it apears this *exception*
in it:
Ensure you have
<jaxws:properties>
<entry key="ws-security.ut.no-callbacks" value="true"/>
</jaxws:properties>
for jaxws:endpoint.
Freeman
11:26:19,295 | WARN | 46-428 - /pocty/ |
PhaseInterceptorChain |
? ? | - - | Interceptor for
{http://www.aura.cz/xrg/isl/g/v_1.0.0.0}AGWebService#{http://www.aura.cz/xrg/isl/g/v_1.0.0.0
}PoctyTechniky
has thrown exception, unwinding now
java.lang.SecurityException: No user name and/or password is
available,
name: null, password: null
at
org
.apache
.cxf
.interceptor
.security
.JAASLoginInterceptor.handleMessage(JAASLoginInterceptor.java:94)
[123:org.apache.cxf.bundle:2.4.1.fuse-00-43]
In the *DEBUG* I can see that the *WSS4JInInterceptor catch the
username
token, but the JAASLoginInterceptor not*. Why?
11:26:19,294 | DEBUG | 46-428 - /pocty/ |
WSS4JInInterceptor |
? ? | - - | WSS4JInInterceptor:
enter
handleMessage()
11:26:19,294 | DEBUG | 46-428 - /pocty/ |
UsernameTokenProcessor |
? ? | 125 -
org.apache.ws.security.wss4j -
1.6.0 | Found UsernameToken list element
11:26:19,294 | DEBUG | 46-428 - /pocty/ |
UsernameTokenValidator |
? ? | 125 -
org.apache.ws.security.wss4j -
1.6.0 | UsernameToken user smx
11:26:19,294 | DEBUG | 46-428 - /pocty/ |
UsernameTokenValidator |
? ? | 125 -
org.apache.ws.security.wss4j -
1.6.0 | UsernameToken password type
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText
11:26:19,295 | DEBUG | 46-428 - /pocty/ | WSS4JInInterceptor-
Time |
? ? | - - | Receive request:
total= 0
request preparation= 0 request processing= 0 header, cert verify,
timestamp=
0
....
11:26:19,295 | DEBUG | 46-428 - /pocty/ |
PhaseInterceptorChain |
? ? | - - | Invoking
handleMessage on
interceptor
org.apache.cxf.interceptor.security.JAASLoginInterceptor@1ce1b2b
11:26:19,295 | WARN | 46-428 - /pocty/ |
JAASLoginInterceptor |
? ? | - - | No user name and/or
password is available, name: null, password: null
11:26:19,295 | DEBUG | 46-428 - /pocty/ |
PhaseInterceptorChain |
? ? | - - | Invoking
handleFault on
interceptor
org.apache.cxf.interceptor.security.JAASLoginInterceptor@1ce1b2b
I added the project and the payload for you:
http://servicemix.396122.n5.nabble.com/file/n4797819/gateway.zip
gateway.zip
http://servicemix.396122.n5.nabble.com/file/n4797819/cxf_payload.xml
cxf_payload.xml
Tahank you very much for your advice.
Radomir
--
View this message in context:
http://servicemix.396122.n5.nabble.com/JAAS-configuration-ClassNotFoundException-UsernameTokenProcessor-tp4794258p4797819.html
Sent from the ServiceMix - User mailing list archive at Nabble.com.
---------------------------------------------
Freeman Fang
FuseSource
Email:[email protected]
Web: fusesource.com
Twitter: freemanfang
Blog: http://freemanfang.blogspot.com
