WS-Security UsernameToken Issue (WSS4J-based Java client vs. .NET server)

Tue, 14 Mar 2006 14:48:49 -0800

Hi All,

I am trying to access a .NET service with a Java/Axis client (using WSS4J) and am getting a security-related error. Here are the details:

* Web Service: on .NET uses WS-Security UsernameToken (with Password Digest)

* Request Message

<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd=" http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> <soapenv:Header> <wsse:Security xmlns:wsse=" http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"> <wsse:UsernameToken xmlns:wsse=" http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"> <wsse:Username xmlns:wsse=" http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">TestDev</wsse:Username> <wsse:Password Type=" http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordDigest" xmlns:wsse=" http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">R7bh5dDlYgjCurx6Dwq9ki39lQg=</wsse:Password> <wsse:Nonce xmlns:wsse=" http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">/tA24bdIc0uwX7euUqvMVQ==</wsse:Nonce> <wsu:Created xmlns:wsu=" http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">2006-03-14T22:34:50.971Z</wsu:Created> </wsse:UsernameToken> </wsse:Security> </soapenv:Header> <soapenv:Body> <ValidateEmail xmlns="urn:ws-mycoservices-com:mycoEmailValidation:EmailValidation:v2"> <Email xmlns="urn:ws-mycoservices-com:mycoEmailValidation:EmailValidation:v2"> [EMAIL PROTECTED]</Email> </ValidateEmail> </soapenv:Body> </soapenv:Envelope>


* Response Message

<soapenv:Envelope xmlns:soapenv=" http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi=" http://www.w3.org/2001/XMLSchema-instance"> <soapenv:Body> <soapenv:Fault> <faultcode>soapenv:FailedAuthentication</faultcode> <faultstring>The security token could not be authenticated or authorized</faultstring> <faultactor> http://ws.mycoservices.com/mycoEmailValidation/V2/EmailValidation.asmx</faultactor> <detail> <string/> </detail> </soapenv:Fault> </soapenv:Body> </soapenv:Envelope>

Any inputs towards appropriately troubleshooting and resolving this issue would be appreciated.

Regards.

Reply via email to