"Could not load security policy" error thrown when configuring
secureConversation scenario
------------------------------------------------------------------------------------------
Key: WSAS-765
URL: https://wso2.org/jira/browse/WSAS-765
Project: WSO2 WSAS
Issue Type: Bug
Components: core
Affects Versions: Nightly
Environment: winxp, jdk15
Reporter: Charitha Kankanamge
Assignee: Sanka Samaranayake
Priority: Critical
Attachments: sec-con.JPG
Following exception thrown when configuring secureConversation scenario
(SecureConversation - Sign only - Service as STS - Bootstrap policy - Sign and
Encrypt , X509 Authentication)
ERROR [2008-05-29 17:44:29,984] Could not load security policy
org.apache.axis2.AxisFault: Could not load security policy
at
org.wso2.wsas.admin.service.SecurityScenarioConfigAdmin.configureScenario(SecurityScenarioConfigAdmin.java:208)
at
org.wso2.wsas.admin.service.SecurityScenarioConfigAdmin.assignKeyStores(SecurityScenarioConfigAdmin.java:471)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:585)
at
org.apache.axis2.rpc.receivers.RPCUtil.invokeServiceClass(RPCUtil.java:194)
at
org.apache.axis2.rpc.receivers.RPCInOnlyMessageReceiver.invokeBusinessLogic(RPCInOnlyMessageReceiver.java:63)
at
org.apache.axis2.receivers.AbstractMessageReceiver.receive(AbstractMessageReceiver.java:100)
at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:176)
at
org.apache.axis2.transport.http.HTTPTransportUtils.processHTTPPostRequest(HTTPTransportUtils.java:275)
at
org.apache.axis2.transport.http.AxisServlet.doPost(AxisServlet.java:131)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:709)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188)
at
org.wso2.adminui.AdminUIServletFilter.doFilter(AdminUIServletFilter.java:142)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:215)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:210)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:870)
at
org.apache.coyote.http11.Http11BaseProtocol$Http11ConnectionHandler.processConnection(Http11BaseProtocol.java:665)
at
org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:528)
at
org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWorkerThread.java:81)
at
org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:685)
at java.lang.Thread.run(Thread.java:595)
Caused by: org.apache.axis2.AxisFault: Error: Invalid policy
at
org.wso2.wsas.admin.service.ServiceAdmin.setPolicy(ServiceAdmin.java:1137)
at
org.wso2.wsas.admin.service.SecurityScenarioConfigAdmin.configureScenario(SecurityScenarioConfigAdmin.java:204)
... 30 more
Caused by: java.lang.RuntimeException: Incorrect inclusion value: -1
at org.apache.ws.secpolicy.model.Token.setInclusion(Token.java:56)
at
org.apache.ws.secpolicy11.builders.SecureConversationTokenBuilder.build(SecureConversationTokenBuilder.java:45)
at
org.apache.neethi.AssertionBuilderFactory.build(AssertionBuilderFactory.java:99)
at
org.apache.neethi.PolicyEngine.processOperationElement(PolicyEngine.java:225)
at
org.apache.neethi.PolicyEngine.getPolicyOperator(PolicyEngine.java:154)
at org.apache.neethi.PolicyEngine.getPolicy(PolicyEngine.java:126)
at
org.apache.ws.secpolicy11.builders.ProtectionTokenBuilder.build(ProtectionTokenBuilder.java:39)
at
org.apache.neethi.AssertionBuilderFactory.build(AssertionBuilderFactory.java:99)
at
org.apache.neethi.PolicyEngine.processOperationElement(PolicyEngine.java:225)
at
org.apache.neethi.PolicyEngine.getPolicyOperator(PolicyEngine.java:154)
at org.apache.neethi.PolicyEngine.getPolicy(PolicyEngine.java:126)
at
org.apache.ws.secpolicy11.builders.SymmetricBindingBuilder.build(SymmetricBindingBuilder.java:41)
at
org.apache.neethi.AssertionBuilderFactory.build(AssertionBuilderFactory.java:99)
at
org.apache.neethi.PolicyEngine.processOperationElement(PolicyEngine.java:225)
at org.apache.neethi.PolicyEngine.getAllOperator(PolicyEngine.java:162)
at
org.apache.neethi.PolicyEngine.processOperationElement(PolicyEngine.java:216)
at
org.apache.neethi.PolicyEngine.getExactlyOneOperator(PolicyEngine.java:158)
at
org.apache.neethi.PolicyEngine.processOperationElement(PolicyEngine.java:211)
at
org.apache.neethi.PolicyEngine.getPolicyOperator(PolicyEngine.java:154)
at org.apache.neethi.PolicyEngine.getPolicy(PolicyEngine.java:126)
at
org.wso2.wsas.util.PolicyUtil.getPolicyFromOMElement(PolicyUtil.java:86)
at
org.wso2.wsas.admin.service.ServiceAdmin.setPolicy(ServiceAdmin.java:1120)
... 31 more
steps to reproduce:
===============
1. Select a service
2. Go to security configuration screen
3. Select scenario 9 - SecureConversation - Sign only - Service as STS -
Bootstrap policy - Sign and Encrypt , X509 Authentication
4. Click continue
5. Select wso2wsas.jks as trusted certificate store and same as private key
store
6. Click 'Apply'
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://wso2.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
_______________________________________________
Wsas-java-dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/wsas-java-dev
