users@glassfish.java.net

Re: WSITPVD0035: Error in Verifying Security in Inbound Message. WssSoapFaultException: Invalid Security Header

From: Kumar Jayanti <v.b.kumar.jayanti_at_oracle.com>
Date: Mon, 26 Mar 2012 10:41:35 +0530

From the stack trace it appears the Validation of Timestamp in the message failed. Specifically the creation time validation has failed. Can you send more of the server.log above and below this exception for a log message indicating what the exact error is.

On 23-Mar-2012, at 2:47 PM, forums_at_java.net wrote:

> hello
>
> I'm using GF 3.1.2 and get the following error on the GF log:
>
> This is a web service. I'm using a properly signed cert and have all the
> relevant chain cert, etc.
>
> any idea how to troubleshoot or what could be causing this ?
>
> thanks
>
> [#|2012-03-23T09:06:15.871+0000|SEVERE|glassfish3.1.2|com.sun.xml.wss.provider.wsit|_ThreadID=519;_ThreadName=Thread-2;|WSITPVD0035:
> Error in Verifying Security in Inbound Message.
> com.sun.xml.wss.impl.WssSoapFaultException: Invalid Security Header at
> com.sun.xml.ws.security.opt.impl.util.SOAPUtil.newSOAPFaultException(SOAPUtil.java:159)
> at
> com.sun.xml.wss.impl.misc.WSITProviderSecurityEnvironment.validateCreationTime(WSITProviderSecurityEnvironment.java:2646)
> at
> com.sun.xml.wss.impl.misc.WSITProviderSecurityEnvironment.validateTimestamp(WSITProviderSecurityEnvironment.java:2496)
> at
> com.sun.xml.ws.security.opt.impl.incoming.TimestampHeader.validate(TimestampHeader.java:109)
> at
> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.handleSecurityHeader(SecurityRecipient.java:350)
> at
> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.cacheHeaders(SecurityRecipient.java:291)
> at
> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.validateMessage(SecurityRecipient.java:241)
> at
> com.sun.xml.wss.provider.wsit.WSITServerAuthContext.verifyInboundMessage(WSITServerAuthContext.java:588)
> at
> com.sun.xml.wss.provider.wsit.WSITServerAuthContext.validateRequest(WSITServerAuthContext.java:361)
> at
> com.sun.xml.wss.provider.wsit.WSITServerAuthContext.validateRequest(WSITServerAuthContext.java:264)
> at
> com.sun.enterprise.security.webservices.CommonServerSecurityPipe.processRequest(CommonServerSecurityPipe.java:173)
> at
> com.sun.enterprise.security.webservices.CommonServerSecurityPipe.process(CommonServerSecurityPipe.java:144)
> at
> com.sun.xml.ws.api.pipe.helper.PipeAdapter.processRequest(PipeAdapter.java:119)
> at com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:961) at
> com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:910) at
> com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:873) at
> com.sun.xml.ws.api.pipe.Fiber.runSync(Fiber.java:775) at
> com.sun.xml.ws.server.WSEndpointImpl$2.process(WSEndpointImpl.java:386) at
> com.sun.xml.ws.transport.http.HttpAdapter$HttpToolkit.handle(HttpAdapter.java:640)
> at com.sun.xml.ws.transport.http.HttpAdapter.handle(HttpAdapter.java:263) at
> com.sun.xml.ws.transport.http.servlet.ServletAdapter.handle(ServletAdapter.java:163)
> at org.glassfish.webservices.JAXWSServlet.doPost(JAXWSServlet.java:145) at
> javax.servlet.http.HttpServlet.service(HttpServlet.java:688) at
> javax.servlet.http.HttpServlet.service(HttpServlet.java:770) at
> org.apache.catalina.core.StandardWrapper.service(StandardWrapper.java:1542)
> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:281)
> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175)
> at
> org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:655)
> at
> org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:595)
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:161)
> at
> org.apache.catalina.connector.CoyoteAdapter.doService(CoyoteAdapter.java:331)
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:231)
> at
> com.sun.enterprise.v3.services.impl.ContainerMapper$AdapterCallable.call(ContainerMapper.java:317)
> at
> com.sun.enterprise.v3.services.impl.ContainerMapper.service(ContainerMapper.java:195)
> at com.sun.grizzly.http.ProcessorTask.invokeAdapter(ProcessorTask.java:849)
> at com.sun.grizzly.http.ProcessorTask.doProcess(ProcessorTask.java:746) at
> com.sun.grizzly.http.ProcessorTask.process(ProcessorTask.java:1045) at
> com.sun.grizzly.http.DefaultProtocolFilter.execute(DefaultProtocolFilter.java:228)
> at
> com.sun.grizzly.DefaultProtocolChain.executeProtocolFilter(DefaultProtocolChain.java:137)
> at
> com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:104)
> at com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:90)
> at com.sun.grizzly.http.HttpProtocolChain.execute(HttpProtocolChain.java:79)
> at
> com.sun.grizzly.ProtocolChainContextTask.doCall(ProtocolChainContextTask.java:54)
>
>
> --
>
> [Message sent by forum member 'delaitt']
>
> View Post: http://forums.java.net/node/884493
>
>
© Oracle | By contributing to this project, you are agreeing to the terms of use described here.