Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

XML-Signature and XML-Encryption with weblogic [SWS-740] #830

Closed
gregturn opened this issue Dec 9, 2011 · 3 comments
Closed

XML-Signature and XML-Encryption with weblogic [SWS-740] #830

gregturn opened this issue Dec 9, 2011 · 3 comments

Comments

@gregturn
Copy link
Member

@gregturn gregturn commented Dec 9, 2011

Arnaud BARRE opened SWS-740 and commented

I've implemented a web service with XML-Signature and XML-Encryption as validation and securement actions. When it is deployed on Tomcat, there's no problem, the web service works well but when deployed on weblogic, I get the following exception :

17:17:27.324 [[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] DEBUG o.s.w.s.s.w.Wss4jSecurityInterceptor - Validating message [SaajSoapMessage {http://www.w3.org/2001/04/xmlenc#}EncryptedData] with actions [Signature Encrypt]
17:17:27.332 [[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] DEBUG o.a.ws.security.WSSecurityEngine - enter processSecurityHeader()
17:17:27.334 [[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] DEBUG o.a.ws.security.WSSecurityEngine - Processing WS-Security header for '' actor.
17:17:27.335 [[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] DEBUG o.a.w.s.p.EncryptedKeyProcessor - Found encrypted key element
17:17:27.336 [[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] DEBUG o.a.x.security.algorithms.JCEMapper - Request for URI http://www.w3.org/2001/04/xmlenc#rsa-1_5
17:17:27.340 [[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] DEBUG o.a.xml.security.utils.ElementProxy - setElement("ds:X509IssuerSerial", "")
17:17:27.346 [[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] WARN  o.s.w.s.s.w.Wss4jSecurityInterceptor - Could not validate request: Referenced security token could not be retrieved (Reference "Issuer/Serial data element missing"); nested exception is: 
	org.apache.xml.security.exceptions.XMLSecurityException: Cannot create a http://www.w3.org/2000/09/xmldsig#:X509IssuerSerial from a http://www.w3.org/2000/09/xmldsig#:X509IssuerSerial element; nested exception is org.apache.ws.security.WSSecurityException: Referenced security token could not be retrieved (Reference "Issuer/Serial data element missing"); nested exception is: 
	org.apache.xml.security.exceptions.XMLSecurityException: Cannot create a http://www.w3.org/2000/09/xmldsig#:X509IssuerSerial from a http://www.w3.org/2000/09/xmldsig#:X509IssuerSerial element
17:17:27.346 [[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] DEBUG o.s.w.s.s.w.Wss4jSecurityInterceptor - No exception resolver present, creating basic soap fault

I tried to register to the forum to post this question but the image verification is not displayed on my firefox so I can't finalize my registration on spring forums...


Affects: 2.0.3

@gregturn
Copy link
Member Author

@gregturn gregturn commented Dec 9, 2011

Arnaud BARRE commented

Do I need some weblogic specific configuration files to activate XML-Encryption and XML-Signature ?

@gregturn
Copy link
Member Author

@gregturn gregturn commented Dec 9, 2011

Arnaud BARRE commented

The problem has been fixed using the prefer-web-inf-classes option of weblogic. This forces the web application to use wss4j instead of weblogic libraries.

Issue can be closed.

@gregturn
Copy link
Member Author

@gregturn gregturn commented May 4, 2012

Arjen Poutsma commented

Closing old issues

@gregturn gregturn closed this May 4, 2012
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
1 participant
You can’t perform that action at this time.