Hi
I am trying to test the WS xml encrytion using Axis 1.2.1 and wss4j 1.1. I
am getting this following exception and not sure where I have done wrong.
I had imported the servers public key as a RFC format certificate into the
client keystore [teststore2]. I have some confusion abt the client cfg wsdd
and hence I have pasted the content also - not sure what
theencryptionuser prop should be - I have set it to the cert alias -
right/wrong?.
AxisFault
faultCode:
{http://schemas.xmlsoap.org/soap/envelope/}Server.generalException
faultSubcode:
faultString: WSHandler: Encryption: error during message
processingorg.apache.ws.security.WSSecurityException: An unsupported
signature or encryption algorithm was used; nested exception is:
org.apache.xml.security.encryption.XMLEncryptionException: Cannot
find any provider supporting DESede/CBC/ISO10126Padding
Original Exception was java.security.NoSuchAlgorithmException: Cannot find
any provider supporting DESede/CBC/ISO10126Padding; nested exception is:
org.apache.ws.security.WSSecurityException: WSHandler: Encryption:
error during message processingorg.apache.ws.security.WSSecurityException:
An unsupported signature or encryption algorithm was used; nested exception
is:
org.apache.xml.security.encryption.XMLEncryptionException: Cannot
find any provider supporting DESede/CBC/ISO10126Padding
Original Exception was java.security.NoSuchAlgorithmException: Cannot find
any provider supporting DESede/CBC/ISO10126Padding
faultActor:
faultNode:
faultDetail:
{http://xml.apache.org/axis/}hostname:D2DFJ971
I have run the following commands to set the keystores on both sides.
keytool -genkey -alias testalias1 -keystore teststore1 -dname
"cn=testalias1" -keypass testkp1 -storepass testsp1
keytool -genkey -alias testalias2 -keystore teststore2 -dname
"cn=testalias2" -keypass testkp2 -storepass testsp2
keytool -selfcert -alias testalias1 -keystore teststore1 -keypass testkp1
-storepass testsp1
keytool -selfcert -alias testalias2 -keystore teststore2 -keypass testkp2
-storepass testsp2
keytool -export -keystore teststore1 -alias testalias1 -storepass testsp1
-file testcert1 -rfc
keytool -import -alias testcert1 -file testcert1 -keystore teststore2
-storepass testsp2
My teststore1 is on the server side and the teststore2 is on the client
side.
My clientconfig wsdd is as below:
<deployment xmlns="http://xml.apache.org/axis/wsdd/";
xmlns:java="http://xml.apache.org/axis/wsdd/providers/java";>
<transport name="http"
pivot="java:org.apache.axis.transport.http.HTTPSender"/>
<globalConfiguration >
<requestFlow >
<handler type="java:org.apache.ws.axis.security.WSDoAllSender" >
<parameter name="action" value="Encrypt"/>
<parameter name="encryptionUser" value="testcert1" />
<parameter name="encryptionPropFile" value="clientcrypto.properties"
/>
<parameter name="encryptionKeyIdentifier" value="X509KeyIdentifier" />
</handler>
</requestFlow>
</globalConfiguration>
</deployment>
and my server config is
<service name="MXINVOICEInterface" provider="java:MSG" style="message"
use="literal">
<requestFlow>
<handler type="java:org.apache.ws.axis.security.WSDoAllReceiver">
<parameter name="action" value="Encrypt"/>
<parameter name="decryptionPropFile"
value="C:\merlin\tools\maximo\internal\mycrypto.properties" />
</handler>
</requestFlow>
<wsdlFile>C:\bea8\user_projects\domains\mydomain\wsdl\MXINVOICEInterface.wsdl</wsdlFile>
<parameter name="allowedMethods" value="processDocument"/>
<parameter name="className"
value="psdi.iface.webservices.MEADocumentService"/>
<parameter name="scope" value="Application"/>
<parameter name="sendXsiTypes" value="false"/>
<parameter name="sendMultiRefs" value="false"/>
</service>
thanks
Anamitra
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
