users@jax-rpc.java.net

Re: XWS problem

From: Venu <K.Venugopal_at_Sun.COM>
Date: Thu, 07 Jul 2005 10:47:11 +0530

Venu wrote:

> One of the reasons could be that the body was modified after sign was
> performed on the body. Was wsu:Id added before sign operation
> is performed.Just checking. ?
>
>
If above is not the case, you may want to canonicalize the targets that
are signed
by setting appropriate transformation algorithm on the sending side .


Hope this helps.

>
> Content-Type: multipart/mixed;
> boundary="----_=_NextPart_001_01C5822E.5E820C2B"
> Date: Wed, 6 Jul 2005 15:26:51 +0200
> From: Sels Wannes <Wannes.Sels_at_cronos.be>
> Subject: XWS problem
>
>
> I forgot the attachment
>
>
>
> 6-jul-2005 15:02:18 com.sun.xml.wss.impl.filter.DumpFilter process
> INFO: ==== Received Message Start ====
> <?xml version="1.0" encoding="UTF-8"?>
> <SOAP-ENV:Envelope
> xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"
> xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
> xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/" xmlns:tns="ht
> tp://xmlsoap.org/Ping" xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
> xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
> xmlns:xsd="http://www.w3.org/2001/XM
> LSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
> <SOAP-ENV:Header>
> <wsse:Security
> xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
>
> <ds:Signature
> xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
> <ds:SignedInfo>
> <ds:CanonicalizationMethod
> Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"/>
> <ds:SignatureMethod
> Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
> <ds:Reference URI="#Body">
> <ds:DigestMethod
> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>
> <ds:DigestValue>MWcqvmPBA0/zju+bkjg0vMJIW4U=</ds:DigestValue>
> </ds:Reference>
> </ds:SignedInfo>
> <ds:SignatureValue>
>
> BoLFf0O2fn2YHMmXKPpwghY888db4IiqXSlwdqpu3XlSGUOPxl12cUSEFel/ev3Gas2k6qra
>
> k4BKEsN2U+ZSK2x3/dBdMf8sGRXSAVD3mRYNCNCrcd8mDW9lYdxt1ES8Z+eRXR7kEgS02Szq
> 0Gewmxu7nJaVWic56L7CTJGG9d4=
> </ds:SignatureValue>
> <ds:KeyInfo>
> <X509Data xmlns="http://www.w3.org/2000/09/xmldsig#">
> <X509Certificate>
>
> MIIDuzCCAySgAwIBAgIKG+YxcQAAAAAAAjANBgkqhkiG9w0BAQUFADAPMQ0wCwYDVQQDEwRr
>
> emVuMB4XDTA1MDcwMTExMzMwMVoXDTA2MDcwMTExNDMwMVowgZkxCzAJBgNVBAYTAkJFMRAw
>
> DgYDVQQIEwdBbnR3ZXJwMRAwDgYDVQQHEwdLb250aWNoMQ0wCwYDVQQKEwRrWmVuMR8wHQYD
>
> VQQLDBZSZXNlYXJjaCAmIERldmVsb3BtZW50MRIwEAYDVQQDEwlOaWNrIE9vbXMxIjAgBgkq
>
> hkiG9w0BCQEWE25pY2sub29tc0Bjcm9ub3MuYmUwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJ
>
> AoGBAL77WBAQITePR+54H7dI1zRmdnhujcmgWpCRTWFDq5A7vudkMf01clGKa2lu1FbnCA/k
>
> vkA/93c+sQQGv3MPPRcZJ5RW5vjtpRWs2gimRYHpkeWGskWG0wVsaFIBQtH6cNupqypQMGkD
>
> 8XS/wSioQYAjQ2m3by+INK2CKG7tI3ORAgMBAAGjggGRMIIBjTAOBgNVHQ8BAf8EBAMCBsAw
>
> HQYDVR0OBBYEFI5KKh49OCl2MBNU+O0013hzmdCEMBMGA1UdJQQMMAoGCCsGAQUFBwMDMB8G
>
> A1UdIwQYMBaAFPN2tXITdsqwDeYnpcVmCITOY8hWMHEGA1UdHwRqMGgwZqBkoGKGLmh0dHA6
>
> Ly93czAzLWJwZWwuaWNvbm9zLmJlL0NlcnRFbnJvbGwva3plbi5jcmyGMGZpbGU6Ly9cXHdz
>
> MDMtYnBlbC5pY29ub3MuYmVcQ2VydEVucm9sbFxremVuLmNybDCBsgYIKwYBBQUHAQEEgaUw
>
> gaIwTgYIKwYBBQUHMAKGQmh0dHA6Ly93czAzLWJwZWwuaWNvbm9zLmJlL0NlcnRFbnJvbGwv
>
> d3MwMy1icGVsLmljb25vcy5iZV9remVuLmNydDBQBggrBgEFBQcwAoZEZmlsZTovL1xcd3Mw
>
> My1icGVsLmljb25vcy5iZVxDZXJ0RW5yb2xsXHdzMDMtYnBlbC5pY29ub3MuYmVfa3plbi5j
>
> cnQwDQYJKoZIhvcNAQEFBQADgYEASh8D+AA2JxsN1TRnGK/BoHDKV5AW96NCksvKzeQcPL4t
>
> KdRHhyiu9fCSSdON0O6Jq0qL416G+pXlkRc0xYNdIT1GZcdU2/QqHYBuSxjygovI00m7ynlH
> kzqHCkyWSiQYIS8ergfdH3AFHzdbLH4MGcDYvayXv3mQZqvPA7yRWw0=
> </X509Certificate>
> </X509Data>
> </ds:KeyInfo>
> </ds:Signature>
> </wsse:Security>
> </SOAP-ENV:Header>
> <SOAP-ENV:Body Id="Body" wsu:Id="Body">
> <Ping xmlns="http://xmlsoap.org/Ping">
> <text xmlns="">test</text>
> </Ping>
> </SOAP-ENV:Body>
> </SOAP-ENV:Envelope>
> ==== Received Message End ====
>
> 6-jul-2005 15:02:18 com.sun.xml.wss.impl.filter.DumpFilter process
> INFO: ==== Sending Message Start ====
> <?xml version="1.0" encoding="UTF-8"?>
> <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/"
> xmlns:enc="http://schemas.xmlsoap.org/soap/encoding/"
> xmlns:ns0="http://xmlsoap.org/Ping"
> xmlns:xsd="http://www.w3.org/2001/XMLSchem
> a" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
> <env:Body>
> <env:Fault>
> <faultcode
> xmlns:ans1="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">ans1:FailedAuthentication</faultcode>
>
> <faultstring>com.sun.xml.wss.WssSoapFaultException: Signature
> verification failed </faultstring>
> </env:Fault>
> </env:Body>
> </env:Envelope>
> ==== Sending Message End ====
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: users-unsubscribe_at_jax-rpc.dev.java.net
>For additional commands, e-mail: users-help_at_jax-rpc.dev.java.net
>
>


-- 
Regards,
K.V.R
"What lies behind us and what lies before us are tiny matters when compared to what lies within us."
-Ralph Waldo Emerson