soap - An error was discovered processing the <wsse:Security> header in SoapUI -

-

i try intercept encrypted soap message in wildfly 10 soapui. deployment successful.

first below pics outgoing ws-security configuration includes signature , encryption.

* signature keystore - client keystore alias - alias of client's private key password - password of client's private key key identifier type - x.509 parts - arg0 (name), body (encode)

enter image description here

* encryption keystore - client keystore alias - alias of server's public key password - empty (no password required public key) key identifier type - x.509 parts - arg0 (name), body (content)

enter image description here

the final pic shows incoming ws-security configuration.

decrypt keystore - client keystore signature keystore - client keystore password - password of client's private key

enter image description here

but returned response soap-fault following

<soap:envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/">    <soap:body>       <soap:fault>          <faultcode xmlns:ns1="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">ns1:invalidsecurity</faultcode>          <faultstring>an error discovered processing <wsse:security> header</faultstring>       </soap:fault>    </soap:body> </soap:envelope>

is there process missed?

update

this soap request

<soapenv:envelope xmlns:soap="http://soap.aaa.com/" xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/"> <soapenv:header> <wsse:security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> <wsse:binarysecuritytoken encodingtype="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#base64binary" valuetype="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#x509v3" wsu:id="374fdd240da4088cf9146901568147641"> miicxzccaa+gawibagienlxkmdanbgkqug35lpg== </wsse:binarysecuritytoken> <xenc:encryptedkey id="ek-374fdd240da4088cf9146901568147640" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"> <xenc:encryptionmethod algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> <ds:keyinfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <wsse:securitytokenreference><wsse:reference uri="#374fdd240da4088cf9146901568147641" valuetype="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#x509v3"/> </wsse:securitytokenreference> </ds:keyinfo> <xenc:cipherdata> <xenc:ciphervalue>gbzkbwqh+a== </xenc:ciphervalue> </xenc:cipherdata> <xenc:referencelist> <xenc:datareference uri="#ed-374fdd240da4088cf9146901568147642"/> </xenc:referencelist> </xenc:encryptedkey> <wsse:binarysecuritytoken encodingtype="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#base64binary" valuetype="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#x509pkipathv1" wsu:id="x509-374fdd240da4088cf9146901568146635">miicztccaskwgggxo </wsse:binarysecuritytoken> <ds:signature id="sig-374fdd240da4088cf9146901568146639" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:signedinfo> <ds:canonicalizationmethod algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"> <ec:inclusivenamespaces prefixlist="soap soapenv" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/> </ds:canonicalizationmethod> <ds:signaturemethod algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> <ds:reference uri="#id-374fdd240da4088cf9146901568146638"> <ds:transforms> <ds:transform algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"> <ec:inclusivenamespaces prefixlist="soap soapenv" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/> </ds:transform> </ds:transforms> <ds:digestmethod algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> <ds:digestvalue>eiwlhfc/afhbc2boo2r6chde06s=</ds:digestvalue> </ds:reference> </ds:signedinfo> <ds:signaturevalue>wsnrvbszlf2xxxvkh0udi8gsrwvskzj9knjxpzibz/msx5vpjhgctvogpqw1myuvvwsd20xq== </ds:signaturevalue> <ds:keyinfo id="ki-374fdd240da4088cf9146901568146636"> <wsse:securitytokenreference wsse11:tokentype="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#x509pkipathv1" wsu:id="str-374fdd240da4088cf9146901568146637" xmlns:wsse11="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd"> <wsse:reference uri="#x509-374fdd240da4088cf9146901568146635" valuetype="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#x509pkipathv1"/> </wsse:securitytokenreference> </ds:keyinfo> </ds:signature> </wsse:security> </soapenv:header> <soapenv:body> <soap:sayhello> <!--optional:--> <arg0 wsu:id="id-374fdd240da4088cf9146901568146638" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"><xenc:encrypteddata id="ed-374fdd240da4088cf9146901568147642" type="http://www.w3.org/2001/04/xmlenc#content" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"><xenc:encryptionmethod algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><ds:keyinfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><wsse:securitytokenreference wsse11:tokentype="http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1.1#encryptedkey" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsse11="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd"><wsse:reference uri="#ek-374fdd240da4088cf9146901568147640"/></wsse:securitytokenreference></ds:keyinfo><xenc:cipherdata><xenc:ciphervalue>a9ccxthszz8lzzpszftzuxb40klm08w3ck6+sc8dabg=</xenc:ciphervalue></xenc:cipherdata></xenc:encrypteddata></arg0> </soap:sayhello> </soapenv:body> </soapenv:envelope>

update more

this original soap message

<soapenv:envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:soap="http://soap.aaa.com/">    <soapenv:header/>    <soapenv:body>       <soap:sayhello>          <!--optional:-->          <arg0>jina</arg0>       </soap:sayhello>    </soapenv:body> </soapenv:envelope>

and belows modified wss configuration

  • signature

    keystore : client keystore jks file

    alias : client key alias

    password : client private key password

    key identifier type : x.509

    parts : sayhello(name), http://soap.aaa.com/ (namespace), element (encode)

  • encryption

    keystore : client keystore jks file

    alias : service key alias

    password : empty

    key identifier type : x.509

    parts : sayhello (name), http://soap.aaa.com/ (namespace), content (encode)

*ingoing ws-security configuration 

decrypt keystore : client keystore jks file signature keystore : client keystore jks file password - password of client's private key

this configuration throws no soap exception in soapui side. in soapui log message shown

sun jul 24 08:59:51 kst 2016:debug:attempt 1 execute request sun jul 24 08:59:51 kst 2016:debug:sending request: post /soapsecurityweb/helloworld http/1.1 sun jul 24 08:59:52 kst 2016:debug:receiving response: http/1.1 500 internal server error sun jul 24 08:59:52 kst 2016:debug:connection can kept alive indefinitely sun jul 24 08:59:52 kst 2016:info:got response [helloworldservicesoapbinding.sayhello:request 1] in 326ms (361 bytes)

the soap error response soap service below

<soap:envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/">    <soap:body>       <soap:fault>          <faultcode xmlns:ns1="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">ns1:invalidsecurity</faultcode>          <faultstring>an error discovered processing &lt;wsse:security> header</faultstring>       </soap:fault>    </soap:body> </soap:envelope>

and in ws service side exception diplayed

09:37:54,340 warning [org.apache.cxf.phase.phaseinterceptorchain] (default task-2) interceptor {http://soap.aaa.com/}helloworldservice has thrown exception, unwinding now: org.apache.cxf.binding.soap.soapfault: error discovered processing <wsse:security> header     @ org.apache.cxf.ws.security.wss4j.wss4jutils.createsoapfault(wss4jutils.java:216)     @ org.apache.cxf.ws.security.wss4j.wss4jininterceptor.handlemessageinternal(wss4jininterceptor.java:329)     @ org.apache.cxf.ws.security.wss4j.wss4jininterceptor.handlemessage(wss4jininterceptor.java:184)     @ org.apache.cxf.ws.security.wss4j.policybasedwss4jininterceptor.handlemessage(policybasedwss4jininterceptor.java:79)     @ org.apache.cxf.ws.security.wss4j.policybasedwss4jininterceptor.handlemessage(policybasedwss4jininterceptor.java:66)     @ org.apache.cxf.phase.phaseinterceptorchain.dointercept(phaseinterceptorchain.java:308)     @ org.apache.cxf.transport.chaininitiationobserver.onmessage(chaininitiationobserver.java:121)     @ org.apache.cxf.transport.http.abstracthttpdestination.invoke(abstracthttpdestination.java:251)     @ org.jboss.wsf.stack.cxf.requesthandlerimpl.handlehttprequest(requesthandlerimpl.java:108)     @ org.jboss.wsf.stack.cxf.transport.servlethelper.callrequesthandler(servlethelper.java:134)     @ org.jboss.wsf.stack.cxf.cxfservletext.invoke(cxfservletext.java:88)     @ org.apache.cxf.transport.servlet.abstracthttpservlet.handlerequest(abstracthttpservlet.java:293)     @ org.apache.cxf.transport.servlet.abstracthttpservlet.dopost(abstracthttpservlet.java:212)     @ javax.servlet.http.httpservlet.service(httpservlet.java:707)     @ org.jboss.wsf.stack.cxf.cxfservletext.service(cxfservletext.java:136)     @ org.jboss.wsf.spi.deployment.wsfservlet.service(wsfservlet.java:140)     @ javax.servlet.http.httpservlet.service(httpservlet.java:790)     @ io.undertow.servlet.handlers.servlethandler.handlerequest(servlethandler.java:85)     @ io.undertow.servlet.handlers.security.servletsecurityrolehandler.handlerequest(servletsecurityrolehandler.java:62)     @ io.undertow.servlet.handlers.servletdispatchinghandler.handlerequest(servletdispatchinghandler.java:36)     @ org.wildfly.extension.undertow.security.securitycontextassociationhandler.handlerequest(securitycontextassociationhandler.java:78)     @ io.undertow.server.handlers.predicatehandler.handlerequest(predicatehandler.java:43)     @ io.undertow.servlet.handlers.security.sslinformationassociationhandler.handlerequest(sslinformationassociationhandler.java:131)     @ io.undertow.servlet.handlers.security.servletauthenticationcallhandler.handlerequest(servletauthenticationcallhandler.java:57)     @ io.undertow.server.handlers.predicatehandler.handlerequest(predicatehandler.java:43)     @ io.undertow.security.handlers.abstractconfidentialityhandler.handlerequest(abstractconfidentialityhandler.java:46)     @ io.undertow.servlet.handlers.security.servletconfidentialityconstrainthandler.handlerequest(servletconfidentialityconstrainthandler.java:64)     @ io.undertow.security.handlers.authenticationmechanismshandler.handlerequest(authenticationmechanismshandler.java:60)     @ io.undertow.servlet.handlers.security.cachedauthenticatedsessionhandler.handlerequest(cachedauthenticatedsessionhandler.java:77)     @ io.undertow.security.handlers.notificationreceiverhandler.handlerequest(notificationreceiverhandler.java:50)     @ io.undertow.security.handlers.abstractsecuritycontextassociationhandler.handlerequest(abstractsecuritycontextassociationhandler.java:43)     @ io.undertow.server.handlers.predicatehandler.handlerequest(predicatehandler.java:43)     @ org.wildfly.extension.undertow.security.jacc.jacccontextidhandler.handlerequest(jacccontextidhandler.java:61) caused by: org.apache.wss4j.common.ext.wssecurityexception: error discovered processing <wsse:security> header     @ org.apache.wss4j.common.crypto.algorithmsuitevalidator.checksymmetricencryptionalgorithm(algorithmsuitevalidator.java:149)     @ org.apache.wss4j.dom.processor.encryptedkeyprocessor.decryptdataref(encryptedkeyprocessor.java:550)

and more following exception thrown when soapui 5.2.1 starting, think these exceptions related issues?

sun jul 24 09:34:33 kst 2016:error:an error occurred [com.eviware.soapui.plugins.auto.factories.autodiscoverymethodfactory], see error log details sun jul 24 09:34:33 kst 2016:error:an error occurred [com.eviware.soapui.plugins.auto.factories.autoimportmethodfactory], see error log details sun jul 24 09:34:33 kst 2016:error:an error occurred [com.eviware.soapui.plugins.auto.factories.autodiscoverymethodfactory], see error log details sun jul 24 09:34:33 kst 2016:error:an error occurred [com.eviware.soapui.plugins.auto.factories.autoimportmethodfactory], see error log details

your appreciated! in advance.

update last

i deployed same soap service on both wildfly 8.2 , wildfly 10. different exceptions thrown.

wildfly 10 : 

15:44:53,834 warning [org.apache.cxf.phase.phaseinterceptorchain] (default task-2) interceptor {http://soap.aaa.com/}helloworldservice has thrown exception, unwinding now: org.apache.cxf.binding.soap.soapfault: security error encountered when verifying message     @ org.apache.cxf.ws.security.wss4j.wss4jutils.createsoapfault(wss4jutils.java:216)     @ org.apache.cxf.ws.security.wss4j.wss4jininterceptor.handlemessageinternal(wss4jininterceptor.java:329)     @ org.apache.cxf.ws.security.wss4j.wss4jininterceptor.handlemessage(wss4jininterceptor.java:184)     @ org.apache.cxf.ws.security.wss4j.policybasedwss4jininterceptor.handlemessage(policybasedwss4jininterceptor.java:79)     @ org.apache.cxf.ws.security.wss4j.policybasedwss4jininterceptor.handlemessage(policybasedwss4jininterceptor.java:66)     @ org.apache.cxf.phase.phaseinterceptorchain.dointercept(phaseinterceptorchain.java:308)     @ org.apache.cxf.transport.chaininitiationobserver.onmessage(chaininitiationobserver.java:121)     @ org.apache.cxf.transport.http.abstracthttpdestination.invoke(abstracthttpdestination.java:251)     @ org.jboss.wsf.stack.cxf.requesthandlerimpl.handlehttprequest(requesthandlerimpl.java:108)     @ org.jboss.wsf.stack.cxf.transport.servlethelper.callrequesthandler(servlethelper.java:134)     @ org.jboss.wsf.stack.cxf.cxfservletext.invoke(cxfservletext.java:88)     @ org.apache.cxf.transport.servlet.abstracthttpservlet.handlerequest(abstracthttpservlet.java:293)     @ org.apache.cxf.transport.servlet.abstracthttpservlet.dopost(abstracthttpservlet.java:212)     @ javax.servlet.http.httpservlet.service(httpservlet.java:707)     @ org.jboss.wsf.stack.cxf.cxfservletext.service(cxfservletext.java:136)     @ org.jboss.wsf.spi.deployment.wsfservlet.service(wsfservlet.java:140)     @ javax.servlet.http.httpservlet.service(httpservlet.java:790)     @ io.undertow.servlet.handlers.servlethandler.handlerequest(servlethandler.java:85)     @ io.undertow.servlet.handlers.security.servletsecurityrolehandler.handlerequest(servletsecurityrolehandler.java:62)     @ io.undertow.servlet.handlers.servletdispatchinghandler.handlerequest(servletdispatchinghandler.java:36)     @ org.wildfly.extension.undertow.security.securitycontextassociationhandler.handlerequest(securitycontextassociationhandler.java:78)     @ io.undertow.server.handlers.predicatehandler.handlerequest(predicatehandler.java:43)     @ io.undertow.servlet.handlers.security.sslinformationassociationhandler.handlerequest(sslinformationassociationhandler.java:131)     @ io.undertow.servlet.handlers.security.servletauthenticationcallhandler.handlerequest(servletauthenticationcallhandler.java:57)     @ io.undertow.server.handlers.predicatehandler.handlerequest(predicatehandler.java:43) caused by: org.apache.wss4j.common.ext.wssecurityexception: cannot find key alias: [myclientkey] original exception org.apache.wss4j.common.ext.wssecurityexception: cannot find key alias: [myclientkey]     @ org.apache.wss4j.dom.processor.encryptedkeyprocessor.getasymmetricdecryptedbytes(encryptedkeyprocessor.java:301)     @ org.apache.wss4j.dom.processor.encryptedkeyprocessor.handletoken(encryptedkeyprocessor.java:194)     @ org.apache.wss4j.dom.processor.encryptedkeyprocessor.handletoken(encryptedkeyprocessor.java:76)     @ org.apache.wss4j.dom.engine.wssecurityengine.processsecurityheader(wssecurityengine.java:344)     @ org.apache.cxf.ws.security.wss4j.wss4jininterceptor.handlemessageinternal(wss4jininterceptor.java:280)     ... 42 more caused by: org.apache.wss4j.common.ext.wssecurityexception: cannot find key alias: [myclientkey]     @ org.apache.wss4j.common.crypto.merlin.getprivatekey(merlin.java:632)     @ org.apache.wss4j.dom.processor.encryptedkeyprocessor.getasymmetricdecryptedbytes(encryptedkeyprocessor.java:259)     ... 46 more

soap fault : 

<faultcode xmlns:ns1="http://ws.apache.org/wss4j">ns1:securityerror</faultcode> <faultstring>a security error encountered when verifying message</faultstring>

wildfly 8.2 :

warning [org.apache.cxf.ws.security.wss4j.wss4jininterceptor] (default task-2) : org.apache.ws.security.wssecurityexception: signature or decryption invalid     @ org.apache.ws.security.processor.encryptedkeyprocessor.handletoken(encryptedkeyprocessor.java:163) [wss4j-1.6.17.jar:1.6.17]     @ org.apache.ws.security.processor.encryptedkeyprocessor.handletoken(encryptedkeyprocessor.java:66) [wss4j-1.6.17.jar:1.6.17]     @ org.apache.ws.security.wssecurityengine.processsecurityheader(wssecurityengine.java:402) [wss4j-1.6.17.jar:1.6.17]     @ org.apache.cxf.ws.security.wss4j.wss4jininterceptor.handlemessage(wss4jininterceptor.java:272) [cxf-rt-ws-security-2.7.13.jar:2.7.13]     @ org.apache.cxf.ws.security.wss4j.policybasedwss4jininterceptor.handlemessage(policybasedwss4jininterceptor.java:121) [cxf-rt-ws-security-2.7.13.jar:2.7.13]     @ org.apache.cxf.ws.security.wss4j.policybasedwss4jininterceptor.handlemessage(policybasedwss4jininterceptor.java:106) [cxf-rt-ws-security-2.7.13.jar:2.7.13]     @ org.apache.cxf.phase.phaseinterceptorchain.dointercept(phaseinterceptorchain.java:272) [cxf-api-2.7.13.jar:2.7.13]     @ org.apache.cxf.transport.chaininitiationobserver.onmessage(chaininitiationobserver.java:121) [cxf-api-2.7.13.jar:2.7.13]     @ org.apache.cxf.transport.http.abstracthttpdestination.invoke(abstracthttpdestination.java:241) [cxf-rt-transports-http-2.7.13.jar:2.7.13]     @ org.jboss.wsf.stack.cxf.requesthandlerimpl.handlehttprequest(requesthandlerimpl.java:97)     @ org.jboss.wsf.stack.cxf.transport.servlethelper.callrequesthandler(servlethelper.java:131)     @ org.jboss.wsf.stack.cxf.cxfservletext.invoke(cxfservletext.java:88)     @ org.apache.cxf.transport.servlet.abstracthttpservlet.handlerequest(abstracthttpservlet.java:286) [cxf-rt-transports-http-2.7.13.jar:2.7.13]     @ org.apache.cxf.transport.servlet.abstracthttpservlet.dopost(abstracthttpservlet.java:206) [cxf-rt-transports-http-2.7.13.jar:2.7.13]     @ javax.servlet.http.httpservlet.service(httpservlet.java:707) [jboss-servlet-api_3.1_spec-1.0.0.final.jar:1.0.0.final]     @ org.jboss.wsf.stack.cxf.cxfservletext.service(cxfservletext.java:136)     @ org.jboss.wsf.spi.deployment.wsfservlet.service(wsfservlet.java:140) [jbossws-spi-2.3.1.final.jar:2.3.1.final]     @ javax.servlet.http.httpservlet.service(httpservlet.java:790) [jboss-servlet-api_3.1_spec-1.0.0.final.jar:1.0.0.final]     @ io.undertow.servlet.handlers.servlethandler.handlerequest(servlethandler.java:86) [undertow-servlet-1.1.8.final.jar:1.1.8.final]     @ io.undertow.servlet.handlers.security.servletsecurityrolehandler.handlerequest(servletsecurityrolehandler.java:62) [undertow-servlet-1.1.8.final.jar:1.1.8.final]     @ io.undertow.servlet.handlers.servletdispatchinghandler.handlerequest(servletdispatchinghandler.java:36) [undertow-servlet-1.1.8.final.jar:1.1.8.final]     @ org.wildfly.extension.undertow.security.securitycontextassociationhandler.handlerequest(securitycontextassociationhandler.java:78)     @ io.undertow.server.handlers.predicatehandler.handlerequest(predicatehandler.java:43) [undertow-core-1.1.8.final.jar:1.1.8.final]     @ io.undertow.servlet.handlers.security.sslinformationassociationhandler.handlerequest(sslinformationassociationhandler.java:131) [undertow-servlet-1.1.8.final.jar:1.1.8.final]     @ io.undertow.servlet.handlers.security.servletauthenticationcallhandler.handlerequest(servletauthenticationcallhandler.java:57) [undertow-servlet-1.1.8.final.jar:1.1.8.final]     @ io.undertow.server.handlers.predicatehandler.handlerequest(predicatehandler.java:43) [undertow-core-1.1.8.final.jar:1.1.8.final]     @ io.undertow.security.handlers.abstractconfidentialityhandler.handlerequest(abstractconfidentialityhandler.java:46) [undertow-core-1.1.8.final.jar:1.1.8.final]     @ io.undertow.servlet.handlers.security.servletconfidentialityconstrainthandler.handlerequest(servletconfidentialityconstrainthandler.java:64) [undertow-servlet-1.1.8.final.jar:1.1.8.final]     @ io.undertow.security.handlers.authenticationmechanismshandler.handlerequest(authenticationmechanismshandler.java:58) [undertow-core-1.1.8.final.jar:1.1.8.final] caused by: org.apache.ws.security.wssecurityexception: cannot find key alias: [myclientkey]     @ org.apache.ws.security.components.crypto.merlin.getprivatekey(merlin.java:651) [wss4j-1.6.17.jar:1.6.17]     @ org.apache.ws.security.processor.encryptedkeyprocessor.handletoken(encryptedkeyprocessor.java:142) [wss4j-1.6.17.jar:1.6.17]     ... 43 more 15:46:03,174 warning [org.apache.cxf.phase.phaseinterceptorchain] (default task-2) interceptor {http://soap.aaa.com/}helloworldservice has thrown exception, unwinding now: org.apache.cxf.binding.soap.soapfault: signature or decryption invalid     @ org.apache.cxf.ws.security.wss4j.wss4jininterceptor.createsoapfault(wss4jininterceptor.java:863) [cxf-rt-ws-security-2.7.13.jar:2.7.13]     @ org.apache.cxf.ws.security.wss4j.wss4jininterceptor.handlemessage(wss4jininterceptor.java:329) [cxf-rt-ws-security-2.7.13.jar:2.7.13]     @ org.apache.cxf.ws.security.wss4j.policybasedwss4jininterceptor.handlemessage(policybasedwss4jininterceptor.java:121) [cxf-rt-ws-security-2.7.13.jar:2.7.13]     @ org.apache.cxf.ws.security.wss4j.policybasedwss4jininterceptor.handlemessage(policybasedwss4jininterceptor.java:106) [cxf-rt-ws-security-2.7.13.jar:2.7.13]     @ org.apache.cxf.phase.phaseinterceptorchain.dointercept(phaseinterceptorchain.java:272) [cxf-api-2.7.13.jar:2.7.13]     @ org.apache.cxf.transport.chaininitiationobserver.onmessage(chaininitiationobserver.java:121) [cxf-api-2.7.13.jar:2.7.13]     @ org.apache.cxf.transport.http.abstracthttpdestination.invoke(abstracthttpdestination.java:241) [cxf-rt-transports-http-2.7.13.jar:2.7.13]     @ org.jboss.wsf.stack.cxf.requesthandlerimpl.handlehttprequest(requesthandlerimpl.java:97)     @ org.jboss.wsf.stack.cxf.transport.servlethelper.callrequesthandler(servlethelper.java:131)     @ org.jboss.wsf.stack.cxf.cxfservletext.invoke(cxfservletext.java:88) caused by: org.apache.ws.security.wssecurityexception: signature or decryption invalid     @ org.apache.ws.security.processor.encryptedkeyprocessor.handletoken(encryptedkeyprocessor.java:163) [wss4j-1.6.17.jar:1.6.17]     @ org.apache.ws.security.processor.encryptedkeyprocessor.handletoken(encryptedkeyprocessor.java:66) [wss4j-1.6.17.jar:1.6.17]     @ org.apache.ws.security.wssecurityengine.processsecurityheader(wssecurityengine.java:402) [wss4j-1.6.17.jar:1.6.17]     @ org.apache.cxf.ws.security.wss4j.wss4jininterceptor.handlemessage(wss4jininterceptor.java:272) [cxf-rt-ws-security-2.7.13.jar:2.7.13]     ... 40 more caused by: org.apache.ws.security.wssecurityexception: cannot find key alias: [myclientkey]     @ org.apache.ws.security.components.crypto.merlin.getprivatekey(merlin.java:651) [wss4j-1.6.17.jar:1.6.17]     @ org.apache.ws.security.processor.encryptedkeyprocessor.handletoken(encryptedkeyprocessor.java:142) [wss4j-1.6.17.jar:1.6.17]     ... 43 more

soap fault :

<faultcode xmlns:ns1="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">ns1:failedcheck</faultcode> <faultstring>the signature or decryption invalid</faultstring>

do have idea? if don't mind can make thread on site wildfly version want.


Comments

Post a Comment

Popular posts from this blog

java - Suppress Jboss version details from HTTP error response -

-
my jboss verson jboss eap 6.3 when kind of error response sent jboss, adds server information response. following sample row response: http/1.1 400 bad request server: apache-coyote/1.1 content-type: text/html;charset=utf-8 content-length: 2391 date: tue, 19 jul 2016 09:30:46 gmt connection: close jboss web/7.4.8.final-redhat-4 - jbweb000064: error report jbweb000065: http status 400 - org.codehaus.jackson.map.jsonmappingexception: can not construct instance of mybean.type string value 'xyz': value not 1 of declared enum instance names @ [source: org.jboss.resteasy.core.interception.messagebodyreadercontextimpl$inputstreamwrapper@5e421c2b; line: 14, column: 26] (through reference chain: requestargs["request"]) jbweb000309: type jbweb000067: status report jbweb000068: message org.codehaus.jackson.map.jsonmappingexception: can not construct instance of mybean.type string value 'xyz': value not 1 of declared enum instance names @ [source: org.jboss...
Read more

gridview - Yii2 DataPorivider $totalSum for a column -

-
i have order , ordersearch models. in order list (actionindex) gridview there filtering , sorting. on of columns in order order_total (sum of products in order). i need implement sum of order_total in gridview. if manually counting activedataprovider->getmodels() array_map spend 3 seconds 3000 orders (localhost). don't want miss time. i see 2 ways make faster: create cache every filter , update lifetime (horrible) the interesting can right in ordersearch->search() method $query method. don't understand how can pass in controller. example of code 2nd way: class ordersearch extends order { public $totalsum; public function search($params) { $query = order::find(); $dataprovider = new activedataprovider([ 'query' => $query, ]); $this->load($params); $this->totalsum = $query->sum('order_total'); // works fast return $dataprovider; } } after i...
Read more

Sass watch command compiles .scss files before full sftp upload -

-
i use winscp download , edit .scss files , sass on linux (on server) compile them .css . after saving file, use: sass scss/style.scss css/style.css , replaces css file compiled sccs. the problem i want skip part return command line after editing scss file, sake of automation , saving time. but, if use watch command: sass --watch scss/style.scss:css/style.css synchronize 2 files, alerts nonexistent css errors pop up: change detected to: scss/style.scss error scss/style.scss (line 232: invalid css after "...ht: bold; line-": expected "{", "") note that when file uploads quicker usual (sometimes happens) watch command job, no errors. this because, when file upload takes time, sass compiles scss file (on server) before uploaded remote folder. thus, compiles part of file, resulting in css errors. is there way set timer watch command waits few seconds after detects changes , before compiling? any other way overcome is, of course, ...
Read more