The axis2.xml of the sample needs to be updated! Thanks, Ruchith
On Mon, May 5, 2008 at 6:44 PM, Savitsky, Alex <[EMAIL PROTECTED]> wrote: > Nandana, > > Thanks for your suggestion, it has resolved the issue. > > BTW, my axis2.xml was taken directly from the example java-first-jaxws > (Axis2 1.4 distro), which has the security declared in all but the > OutFaultFlow phase - not sure whether this is intended or a bug... > > Thanks, > > > Alex > > -----Original Message----- > From: Nandana Mihindukulasooriya [mailto:[EMAIL PROTECTED] > > > Sent: May 3, 2008 1:10 AM > To: axis-user@ws.apache.org > Subject: Re: Axis2 1.4 and Rampart 1.3? > > Hi Alex, > Are you using a custom axis2.xml in your scenario ? If so, can you > please check that security phase is defined in <phaseOrder > type="OutFaultFlow"> . You can find the discussion about this in axis2-dev > list. You have to define the security phase as the last phase in OutFaultFlow > phase order. Looking at the default axis2.xml [1] will help you to do that. > > thanks, > nandana > > [1] - > http://svn.apache.org/viewvc/webservices/axis2/trunk/java/modules/kernel/conf/axis2.xml?view=markup > > On 5/3/08, Savitsky, Alex <[EMAIL PROTECTED]> wrote: > > Now it doesn't deploy at all, with exception: > > > > ERROR [org.apache.axis2.deployment.ServiceDeployer] - The > > RecordWebService service, which is not valid, caused Did not find the > > desired phase 'Security' while deploying handler > 'PolicyBasedSecurityOutHandler'. > > org.apache.axis2.phaseresolver.PhaseException: Did not find the > > desired phase 'Security' while deploying handler > 'PolicyBasedSecurityOutHandler'. > > at > > org.apache.axis2.phaseresolver.PhaseHolder.addHandler(PhaseHolder.java:75) > > at > > > org.apache.axis2.phaseresolver.PhaseResolver.engageModuleToFlow(PhaseResolver.java:68) > > at > > > org.apache.axis2.phaseresolver.PhaseResolver.engageModuleToOperation(PhaseResolver.java:104) > > at > > > org.apache.axis2.phaseresolver.PhaseResolver.engageModuleToOperation(PhaseResolver.java:110) > > at > > org.apache.axis2.description.AxisOperation.onEngage(AxisOperation.java:158) > > at > > > org.apache.axis2.description.AxisDescription.engageModule(AxisDescription.java:490) > > at > > org.apache.axis2.description.AxisService.onEngage(AxisService.java:785) > > at > > > org.apache.axis2.description.AxisDescription.engageModule(AxisDescription.java:490) > > at > > > org.apache.axis2.description.AxisDescription.engageModule(AxisDescription.java:453) > > at > > > org.apache.axis2.deployment.DeploymentEngine.fillServiceGroup(DeploymentEngine.java:552) > > at > > > org.apache.axis2.deployment.DeploymentEngine.addServiceGroup(DeploymentEngine.java:499) > > at > > org.apache.axis2.deployment.ServiceDeployer.deploy(ServiceDeployer.java:86) > > at > > > org.apache.axis2.deployment.repository.util.DeploymentFileData.deploy(DeploymentFileData.java:136) > > at > > > org.apache.axis2.deployment.DeploymentEngine.doDeploy(DeploymentEngine.java:597) > > at > > > org.apache.axis2.deployment.repository.util.WSInfoList.update(WSInfoList.java:144) > > at > > > org.apache.axis2.deployment.RepositoryListener.update(RepositoryListener.java:330) > > at > > > org.apache.axis2.deployment.RepositoryListener.checkServices(RepositoryListener.java:227) > > at > > > org.apache.axis2.deployment.DeploymentEngine.loadServices(DeploymentEngine.java:131) > > at > > > org.apache.axis2.deployment.WarBasedAxisConfigurator.loadServices(WarBasedAxisConfigurator.java:284) > > at > > > org.apache.axis2.context.ConfigurationContextFactory.createConfigurationContext(ConfigurationContextFactory.java:82) > > at > > > org.apache.axis2.transport.http.AxisServlet.initConfigContext(AxisServlet.java:511) > > at > > org.apache.axis2.transport.http.AxisServlet.init(AxisServlet.java:431) > > > > Did the configuration steps change? In 1.3, all I had to do was to > > provide the policy element in services.xml, and this element seem to > > have the same format in 1.4 samples as in 1.3 > > > > Regards, > > > > Alex > > > > -----Original Message----- > > From: Nandana Mihindukulasooriya [mailto:[EMAIL PROTECTED] > > Sent: May 2, 2008 2:37 PM > > To: axis-user@ws.apache.org > > Subject: Re: Axis2 1.4 and Rampart 1.3? > > > > Hi Alex, > > Can you try with Rampart 1.4 RC [1] ? > > > > thanks, > > nandana > > > > [1] - http://people.apache.org/~nandana/rampart-1.4/RC1/ > > > > On 5/3/08, Savitsky, Alex <[EMAIL PROTECTED]> wrote: > > > Hi all, > > > > > > Does Axis2 1.4 work with Rampart 1.3? I have an existing app that > > > works for the Axis2 1.3 and Rampart 1.3 combination, but when I > > > upgrade server and client to 1.4, I get an exception from server: > > > > > > ERROR [org.apache.axis2.engine.AxisEngine] - Must Understand check > > > failed for header > > > http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-s > > > ec > > > ext-1.0.xsd > > > : Security > > > org.apache.axis2.AxisFault: Must Understand check failed for header > > > http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-s > > > ec > > > ext-1.0.xsd > > > : Security > > > at > > > org.apache.axis2.engine.AxisEngine.checkMustUnderstand(AxisEngine.ja > > > va > > > :102) at > > > org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:166) > > > at > > > org.apache.axis2.transport.http.HTTPTransportUtils.processHTTPPostRe > > > qu > > > est(HTTPTransportUtils.java:275) at > > > org.apache.axis2.transport.http.AxisServlet.doPost(AxisServlet.java: > > > 13 > > > 1) at javax.servlet.http.HttpServlet.service(HttpServlet.java:710) > > > at javax.servlet.http.HttpServlet.service(HttpServlet.java:803) > > > ... > > > > > > Previously, Axis2 1.3 could understand this header without any > > > problems. Is this a version incompatibility, or am I missing > > > something > > here? > > > > > > My service.xml looks like this: > > > > > > <service name="RecordWebService"> > > > <messageReceivers> > > > <messageReceiver > > > mep="http://www.w3.org/2004/08/wsdl/in-only" > > > > > > class="org.apache.axis2.rpc.receivers.RPCInOnlyMessageReceiver" /> > > > <messageReceiver > > mep="http://www.w3.org/2004/08/wsdl/in-out" > > > > > > class="org.apache.axis2.rpc.receivers.RPCMessageReceiver" /> > > > </messageReceivers> > > > <parameter name="ServiceClass" locked="false"> > > > com.td.cems.ws.service.RecordWebServiceImpl > > > </parameter> > > > <module ref="addressing" /> > > > <module ref="rampart" /> > > > <wsp:Policy > > xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy" > > > > > > xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy" > > > xmlns:ramp="http://ws.apache.org/rampart/policy"> > > > <wsp:ExactlyOne> > > > <wsp:All> > > > <wsp:Policy> > > > <sp:SupportingToken> > > > <wsp:Policy> > > > > > > <sp:UserNameToken> > > > > > > <wsp:Policy> > > > > > > <sp:HashPassword /> > > > > > > </wsp:Policy> > > > > > </sp:UserNameToken> > > > </wsp:Policy> > > > </sp:SupportingToken> > > > </wsp:Policy> > > > <ramp:RampartConfig> > > > <ramp:passwordCallbackClass> > > > > > > com.td.cems.ws.service.PWCBHandler > > > </ramp:passwordCallbackClass> > > > </ramp:RampartConfig> > > > </wsp:All> > > > </wsp:ExactlyOne> > > > </wsp:Policy> > > > </service> > > > > > > Thanks, > > > > > > Alex > > > > > > > > > ******************** > > > NOTICE OF CONFIDENTIALITY > > > This communication including any information transmitted with it is > > > intended only for the use of the addressees and is confidential. > > > If you are not an intended recipient or responsible for delivering > > > the message to an intended recipient, any review, disclosure, > > > conversion to hard copy, dissemination, reproduction or other use of > > > any part of this communication is strictly prohibited, as is the > > > taking or omitting of any action in reliance upon this communication. > > > If you receive this communication in error or without authorization > > > please notify us immediately by return e-mail or otherwise and > > > permanently delete the entire communication from any computer, disk > > > drive, or other storage medium. > > > > > > If the above disclaimer is not properly readable, it can be found at > > > www.td.com/legal > > > > > > AVERTISSEMENT DE CONFIDENTIALITE > > > Ce courriel, ainsi que tout renseignement ci-inclus, destiné > > > uniquement aux destinataires susmentionnés, est confidentiel. Si > > > vous n'êtes pas le destinataire prévu ou un agent responsable de la > > > livraison de ce courriel, tout examen, divulgation, copie, > > > impression, reproduction, distribution, ou autre utilisation d'une > > > partie de ce courriel est strictement interdit de même que toute > > > intervention ou abstraction à cet égard. Si vous avez reçu ce > > > message par erreur ou sans autorisation, veuillez en aviser > > > immédiatement l'expéditeur par retour de courriel ou par un autre > > > moyen et supprimer immédiatement cette communication entière de tout > système électronique. > > > > > > Si l'avis de non-responsabilité ci-dessus n'est pas lisible, vous > > > pouvez le consulter à www.td.com/francais/legale > > > > > > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > -- http://blog.ruchith.org http://wso2.org --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]