|
Hi,
I am facing some
problem with the web service using WSS4J, Iam using
Axis, wss4j for accessing DotNet service Through Username Token
Principle. If I try to call the service it throw
the exception the security token could not be authenticated or
authorized, (version used. Axis1.3, Wss4j
1.1)
My client Config file..
<deployment
xmlns="http://xml.apache.org/axis/wsdd/" xmlns:java="http://xml.apache.org/axis/wsdd/providers/java">
<transport name="http"
pivot="java:org.apache.axis.transport.http.HTTPSender"/>
<transport name="java"
pivot="java:org.apache.axis.transport.java.JavaSender"/>
<transport name="local"
pivot="java:org.apache.axis.transport.local.LocalSender"/>
<globalConfiguration>
<requestFlow>
<handler
type="java:org.apache.ws.axis.security.WSDoAllSender">
<parameter name="action"
value="UsernameToken"/>
<parameter name="user"
value="adminuser"/>
<parameter
name="passwordCallbackClass"
value="org.tempuri.PWCallback"/>
<parameter name="passwordType"
value="PasswordDigest"/>
</handler>
</requestFlow>
</globalConfiguration>
</deployment>
If i use Password type is PlainText its Work GOOD, If i use PasswordDigest it throw secruity
exception
In server side show the following
exception:
Microsoft.Web.Services2.Security.SecurityFault: The
security token could not be authenticated or authorized --->
System.Exception: WSE563: The computed password digest doesn't match that of
the incoming username token.
at
Microsoft.Web.Services2.Security.Tokens.UsernameTokenManager.VerifyHashedPassword(UsernameToken
token, String authenticatedPassword)
at
Microsoft.Web.Services2.Security.Tokens.UsernameTokenManager.VerifyPassword(UsernameToken
token, String authenticatedPassword)
Here with I enclosed my
PWcallback class also, I think wss4j password digest doest match
the dotnet WSE2 password Digest.
Pls help me, Thanks
Lots.......
Regards
Babu J
DISCLAIMER:
Information transmitted by this e-mail may be proprietary to Ramco Systems Ltd., and / or the authors of the information and is intended for use only by the individual or entity to which it is addressed, and may contain confidential or legally privileged information. If you are not the intended recipient or it appears that this mail has been forwarded to you without proper authority, you are not authorised to access, read, disclose, copy, use or otherwise deal with it and any such actions are prohibited and may be unlawful.
Internet communications cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, arrive late or contain viruses. Ramco Systems Limited therefore does not accept liability for any errors, omissions, viruses or computer problems experienced as a result of this transmission.
If you have received this e-mail in error, please notify us immediately at mail to: [EMAIL PROTECTED] and delete this mail from your records. Notice is hereby given that no representation, contract or other binding obligation shall be created by this e-mail.
|
|
PWCallback.java
Description: PWCallback.java
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
