HI Tomaz, I'm no guru in the subject but I had a similar problem and I don't see BinarySecurityToken being send in the request, so try changing the correct lines for this one:
<sp:X509Token sp:IncludeToken=" http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/* AlwaysToRecipient*"> Regards, Marcus V. Sánchez D. ______________________ Enterprise Developer. Sun Certified Java Programmer (SCJP) On Thu, Feb 5, 2009 at 6:28 AM, Erwin Reinhoud <erwin.reinh...@ictu.nl>wrote: > Hello Tomaz, > > In my sanbox env i have put the file in the tomcat bin dir and no path > indication in service.xml. > > Regards, > > Erwin > > -----Oorspronkelijk bericht----- > Van: TomazM [mailto:tomaz.majerh...@arnes.si] > Verzonden: donderdag 5 februari 2009 12:13 > Aan: axis-user@ws.apache.org > Onderwerp: Re: Error in signature with X509Token > > I'm using rampart version 1.4, but it seem as the > rampart(org.apache.ws.security.crypto.merlin.file) doesn't pick the > keystore, because I change the name to a nonexistent file and I don't get > any error that file don't exist. > > Regards, Tomaz > > Erwin Reinhoud wrote: > > Hello Tomaz, > > > > Try also using rampart version 1.4 io 1.3. > > > > Regards, > > Erwin > > > > ---------------------------------------------------------------------- > > -- > > *Van:* m4rkuz [mailto:m4r...@gmail.com] > > *Verzonden:* woensdag 4 februari 2009 15:16 > > *Aan:* axis-user@ws.apache.org > > *Onderwerp:* Re: Error in signature with X509Token > > > > Hi Tomaz, > > > > I think you should attach you'r policy.xml file and your > > services.xml, and maybe an example of the soap message generated, so > > it could be esiar to help you. > > > > > > > > Marcus V. Sánchez D. > > ______________________ > > Enterprise Developer. > > Sun Certified Java Programmer (SCJP) > > > > > > On Wed, Feb 4, 2009 at 9:08 AM, TomazM <tomaz.majerh...@arnes.si > > <mailto:tomaz.majerh...@arnes.si>> wrote: > > > > Env: > > OS: Microsoft Windows XP [Version 5.1.2600] > > java: Java(TM) SE Runtime Environment (build 1.6.0_10-b33) > > Tomcat: 6.0.16 > > Axis2: 1.4.1 > > Rampart: 1.3 > > > > > > I'm trying to sign message with my CallbackHandler and wsp:Policy, > > keys are in keystore of JKS type(server.jks and client.jks) > > > > 1) In service.xml I have: > > ..... > > > <ramp:passwordCallbackClass>rampart.sign.service.SecurityHandler</ramp:passwordCallbackClass> > > <ramp:signatureCrypto> > > <ramp:crypto > > provider="org.apache.ws.security.components.crypto.Merlin"> > > <ramp:property > > > name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</ramp:property> > > <ramp:property > > > name="org.apache.ws.security.crypto.merlin.file">keys\\server.jks</ramp:property> > > <ramp:property > > > name="org.apache.ws.security.crypto.merlin.keystore.password">****</ramp:property> > > </ramp:crypto> > > > > > > 2) In client I also have my CallbackHandler and applying > > RampartConfig which use client.jks(contain server key) > > > > > > The finger print of server and client certificates are the same in > > both keystore. > > > > > > > > Error: > > org.apache.axis2.AxisFault: Error in signature with X509Token > > at > > > org.apache.axis2.util.Utils.getInboundFaultFromMessageContext(Utils.java:512) > > at > > > org.apache.axis2.description.OutInAxisOperationClient.handleResponse(OutInAxisOperation.java:370) > > at > > > org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisOperation.java:416) > > at > > > org.apache.axis2.description.OutInAxisOperationClient.executeImpl(OutInAxisOperation.java:228) > > at > > > > org.apache.axis2.client.OperationClient.execute(OperationClient.java:1 > > 63) > > > > > > > > > > Is anybody have a clue what I'm doing wrong???? > > > > > > > > > > Best regards, Tomaz > > > > > > > >