Hi Achini, Please refer the 2nd point in the troubleshooting section of the article[1] <https://wso2.com/library/articles/2012/08/securing-sts-security-token-service-kerberos/> Hope this helps. [1] https://wso2.com/library/articles/2012/08/securing-sts-security-token-service-kerberos/
Thanks, Viduranga. On Fri, Jul 13, 2018 at 3:19 PM Achini Jayasena <achi...@wso2.com> wrote: > - iam-gr...@ws02.com > + iam-gr...@wso2.com > > > *Thanks & Best Regards!* > > *Achini Jayasena* > *Software Engineer - QA | WSO2* > > Email: achi...@wso2.com > Mobile: +943 882 897 > > [image: http://wso2.com/signature] <http://wso2.com/signature> > > On Tue, Jul 3, 2018 at 2:55 PM, Achini Jayasena <achi...@wso2.com> wrote: > >> + dev@wso2.org >> >> >> *Thanks & Best Regards!* >> >> *Achini Jayasena* >> *Software Engineer - QA | WSO2* >> >> Email: achi...@wso2.com >> Mobile: +943 882 897 >> >> [image: http://wso2.com/signature] <http://wso2.com/signature> >> >> On Mon, Jul 2, 2018 at 7:36 PM, Achini Jayasena <achi...@wso2.com> wrote: >> >>> Hi All, >>> >>> Could you help to solve following issue. >>> >>> *Scenario:* SSO with WS-Trust >>> *Reference:* https://docs.wso2.com/display/IS550/WS-Trust >>> *Issue Description:* Executing sts-clien.sh file (file location: >>> IS-SAMPLES/modules/samples/sts/sts-client) create following exception >>> *Issue: * >>> >>> achini@achini-ThinkPad-X1-Carbon-5th:~/IS/is-samples/modules/samples/sts/sts-client$ >>> export CLASSPATH=$CLASSPATH:../lib/*:target/* >>> achini@achini-ThinkPad-X1-Carbon-5th:~/IS/is-samples/modules/samples/sts/sts-client$ >>> $JAVA_HOME/bin/java org.wso2.carbon.identity.samples.sts.Client $@ >>> log4j:WARN No appenders could be found for logger >>> (org.apache.axis2.deployment.FileSystemConfigurator). >>> log4j:WARN Please initialize the log4j system properly. >>> <saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" >>> xmlns:xs="http://www.w3.org/2001/XMLSchema"; >>> ID="urn:uuid:2971E96344F259222F1530539326505" >>> IssueInstant="2018-07-02T13:48:46.497Z" Version="2.0"><saml2:Issuer> >>> https://localhost</saml2:Issuer><ds:Signature xmlns:ds=" >>> http://www.w3.org/2000/09/xmldsig#";> >>> <ds:SignedInfo> >>> <ds:CanonicalizationMethod Algorithm=" >>> http://www.w3.org/2001/10/xml-exc-c14n#"; /> >>> <ds:SignatureMethod Algorithm=" >>> http://www.w3.org/2000/09/xmldsig#rsa-sha1"; /> >>> <ds:Reference URI="#urn:uuid:2971E96344F259222F1530539326505"> >>> <ds:Transforms> >>> <ds:Transform Algorithm=" >>> http://www.w3.org/2000/09/xmldsig#enveloped-signature"; /> >>> <ds:Transform >>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#";><ec:InclusiveNamespaces >>> xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"; PrefixList="xs" >>> /></ds:Transform> >>> </ds:Transforms> >>> <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"; /> >>> <ds:DigestValue>MJkaDjwfnE9CERG2E/Qhcjr+ig4=</ds:DigestValue> >>> </ds:Reference> >>> </ds:SignedInfo> >>> <ds:SignatureValue> >>> >>> HX2GsquRrgmoLjPbjSKJUGn938VpsgfzjkyzkWDSkW/M6+UbjsuJYnC+ZjeXwX10a/sE/kFe5J9z >>> >>> js451ikBqs8cxxAemZ/wR+1HQINXB9L7feYtx8IF/xjEe/vJ9Oms4p0IqHhxSoktlv6RNd2v1m9t >>> >>> m6vrTYH+Srj++GVuX+gSK4GY/04DLMenv4Se8UyOK2qfU5RWQrYa/Le+1lsN51yFIxTUpNzNn4/+ >>> >>> /W7gM6Wa8M0cIc3eVVWIBvyPe9q9PctAG2f0s7d3TSAvDRqKGi58CpuPG11r10aF39Knk31WemzX >>> a49583MLJx+l+zxU4V0+74TSV+lROYX6tkHoyQ== >>> </ds:SignatureValue> >>> >>> <ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIIDSTCCAjGgAwIBAgIEAoLQ/TANBgkqhkiG9w0BAQsFADBVMQswCQYDVQQGEwJVUzELMAkGA1UE >>> >>> CBMCQ0ExFjAUBgNVBAcTDU1vdW50YWluIFZpZXcxDTALBgNVBAoTBFdTTzIxEjAQBgNVBAMTCWxv >>> >>> Y2FsaG9zdDAeFw0xNzA3MTkwNjUyNTFaFw0yNzA3MTcwNjUyNTFaMFUxCzAJBgNVBAYTAlVTMQsw >>> >>> CQYDVQQIEwJDQTEWMBQGA1UEBxMNTW91bnRhaW4gVmlldzENMAsGA1UEChMEV1NPMjESMBAGA1UE >>> >>> AxMJbG9jYWxob3N0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAluZFdW1ynitztkWL >>> >>> C6xKegbRWxky+5P0p4ShYEOkHs30QI2VCuR6Qo4Bz5rTgLBrky03W1GAVrZxuvKRGj9V9+PmjdGt >>> >>> au4CTXu9pLLcqnruaczoSdvBYA3lS9a7zgFU0+s6kMl2EhB+rk7gXluEep7lIOenzfl2f6IoTKa2 >>> >>> fVgVd3YKiSGsyL4tztS70vmmX121qm0sTJdKWP4HxXyqK9neolXI9fYyHOYILVNZ69z/73OOVhkh >>> >>> /mvTmWZLM7GM6sApmyLX6OXUp8z0pkY+vT/9+zRxxQs7GurC4/C1nK3rI/0ySUgGEafO1atNjYml >>> >>> FN+M3tZX6nEcA6g94IavyQIDAQABoyEwHzAdBgNVHQ4EFgQUtS8kIYxQ8UVvVrZSdgyide9OHxUw >>> >>> DQYJKoZIhvcNAQELBQADggEBABfk5mqsVUrpFCYTZZhOxTRRpGXqoW1G05bOxHxs42Paxw8rAJ06 >>> >>> Pty9jqM1CgRPpqvZa2lPQBQqZrHkdDE06q4NG0DqMH8NT+tNkXBe9YTre3EJCSfsvswtLVDZ7GDv >>> >>> THKojJjQvdVCzRj6XH5Truwefb4BJz9APtnlyJIvjHk1hdozqyOniVZd0QOxLAbcdt946chNdQvC >>> >>> m6aUOputp8Xogr0KBnEy3U8es2cAfNZaEkPU8Va5bU6Xjny8zGQnXCXxPKp7sMpgO93nPBt/liX1 >>> qfyXM7xEotWoxmm6HZx8oWQ8U5aiXjZ5RKDWCCq4ZuXl6wVsUz1iE61suO5yWi8=</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><saml2:Subject><saml2:NameID >>> Format="urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress">admin</saml2:NameID><saml2:SubjectConfirmation >>> Method="urn:oasis:names:tc:SAML:2.0:cm:bearer" >>> /></saml2:Subject><saml2:Conditions NotBefore="2018-07-02T13:48:46.497Z" >>> NotOnOrAfter="2018-07-02T13:53:46.497Z"><saml2:AudienceRestriction><saml2:Audience> >>> https://localhost:10443/services/echo</saml2:Audience></saml2:AudienceRestriction></saml2:Conditions><saml2:AttributeStatement><saml2:Attribute >>> Name="http://wso2.org/claims/emailaddress"; NameFormat=" >>> http://wso2.org/claims/emailaddress";><saml2:AttributeValue xmlns:xsi=" >>> http://www.w3.org/2001/XMLSchema-instance"; xsi:type="xs:string"> >>> ad...@wso2.com</saml2:AttributeValue></saml2:Attribute><saml2:Attribute >>> Name="http://wso2.org/claims/givenname"; NameFormat=" >>> http://wso2.org/claims/givenname";><saml2:AttributeValue xmlns:xsi=" >>> http://www.w3.org/2001/XMLSchema-instance"; >>> xsi:type="xs:string">admin</saml2:AttributeValue></saml2:Attribute></saml2:AttributeStatement><saml2:AuthnStatement >>> AuthnInstant="2018-07-02T13:48:46.504Z"><saml2:AuthnContext><saml2:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml2:AuthnContextClassRef></saml2:AuthnContext></saml2:AuthnStatement></saml2:Assertion> >>> Renewing 2.0 >>> org.apache.rahas.TrustException: Error in renewing token from : " >>> https://localhost:9443/services/wso2carbon-sts"; >>> at org.apache.rahas.client.STSClient.renewToken(STSClient.java:386) >>> at org.wso2.carbon.identity.samples.sts.Client.run(Client.java:153) >>> at org.wso2.carbon.identity.samples.sts.Client.main(Client.java:94) >>> Caused by: org.apache.axis2.AxisFault: java.lang.NullPointerException >>> at org.apache.axis2.util.Utils.ge >>> tInboundFaultFromMessageContext(Utils.java:531) >>> at >>> org.apache.axis2.description.OutInAxisOperationClient.handleResponse(OutInAxisOperation.java:375) >>> at >>> org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisOperation.java:421) >>> at >>> org.apache.axis2.description.OutInAxisOperationClient.executeImpl(OutInAxisOperation.java:229) >>> at >>> org.apache.axis2.client.OperationClient.execute(OperationClient.java:165) >>> at >>> org.apache.axis2.client.ServiceClient.sendReceive(ServiceClient.java:555) >>> at org.apache.rahas.client.STSClient.renewToken(STSClient.java:378) >>> >>> >>> *Thanks & Best Regards!* >>> >>> *Achini Jayasena* >>> *Software Engineer - QA | WSO2* >>> >>> Email: achi...@wso2.com >>> Mobile: +943 882 897 >>> >>> [image: http://wso2.com/signature] <http://wso2.com/signature> >>> >> >> > -- Regards*,* *Viduranga Gunarathne* *Software Engineer* *WSO2 (Pvt) Ltd.* *Mobile : *+94712437484 *Email : *vidura...@wso2.com *Web : *http://wso2.com *Blog : *http://medium.com/vlgunarathne <http://wso2.com/signature>
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
