Hi,
when calling a service with the policy, attached to this mail as file, the
class RampartUtil.java throws a RampartException in the method
processIssuerAddress().
I am using the latest Rampart version of the trunk. When I use a backup of
Ramaprt, which is nearly one week old, everything works fine.
The problem seems to be that the paramter "issuerEpr" in the instance of the
class IssuedToken is NULL. It seems for me that the current Rampart version
has a problem to find the Issuer-Address-Element inside the policy ?!?
Now I am using something like this:
<issuer>
<address>http://....</address>
</issuer>
You can see this when looking at the attached policy. Must I change something
inside the policy at this position?
Greetings
Christian
<wsp:Policy wsu:Id="token" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"; xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy";>
<wsp:ExactlyOne>
<wsp:All>
<sp:SymmetricBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";>
<wsp:Policy>
<sp:ProtectionToken>
<wsp:Policy>
<sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never";>
<wsp:Policy>
<sp:RequireThumbprintReference/>
<sp:WssX509V3Token10/>
</wsp:Policy>
</sp:X509Token>
</wsp:Policy>
</sp:ProtectionToken>
<sp:AlgorithmSuite>
<wsp:Policy>
<sp:Basic256 />
</wsp:Policy>
</sp:AlgorithmSuite>
<sp:Layout>
<wsp:Policy>
<sp:Strict/>
</wsp:Policy>
</sp:Layout>
<sp:OnlySignEntireHeadersAndBody/>
</wsp:Policy>
</sp:SymmetricBinding>
<sp:EndorsingSupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";>
<wsp:Policy>
<sp:IssuedToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient";>
<Issuer xmlns="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";>
<Address xmlns="http://www.w3.org/2005/08/addressing";>
http://localhost:8080/axis2/services/SecurityToken
</Address>
<!--<wsa:Metadata xmlns:wsa="http://www.w3.org/2005/08/addressing";>
<mex:Metadata
xmlns:mex="http://schemas.xmlsoap.org/ws/2004/09/mex";
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";>
<mex:MetadataSection>
<mex:MetadataReference>
<wsa:Address>http://localhost:8080/axis2/services/SecurityToken</wsa:Address>
</mex:MetadataReference>
</mex:MetadataSection>
</mex:Metadata>
</wsa:Metadata>-->
</Issuer>
<sp:RequestSecurityTokenTemplate>
<t:TokenType xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust";>
http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV1.1
</t:TokenType>
<t:KeyType xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust";>
http://schemas.xmlsoap.org/ws/2005/02/trust/SymmetricKey
</t:KeyType>
<t:KeySize xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust";>
256
</t:KeySize>
</sp:RequestSecurityTokenTemplate>
<wsp:Policy>
<sp:RequireExternalReference />
</wsp:Policy>
</sp:IssuedToken>
</wsp:Policy>
</sp:EndorsingSupportingTokens>
<sp:Wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";>
<wsp:Policy>
<sp:MustSupportRefThumbprint/>
</wsp:Policy>
</sp:Wss11>
<sp:Trust10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";>
<wsp:Policy>
<sp:MustSupportIssuedTokens />
<sp:RequireServerEntropy />
</wsp:Policy>
</sp:Trust10>
<sp:SignedParts xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";>
<sp:Body/>
<sp:Header Name="Action" Namespace="http://www.w3.org/2005/08/addressing"; />
<sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"; />
<sp:Header Name="From" Namespace="http://www.w3.org/2005/08/addressing"; />
<sp:Header Name="FaultTo" Namespace="http://www.w3.org/2005/08/addressing"; />
<sp:Header Name="ReplyTo" Namespace="http://www.w3.org/2005/08/addressing"; />
<sp:Header Name="MessageID" Namespace="http://www.w3.org/2005/08/addressing"; />
<sp:Header Name="RelatesTo" Namespace="http://www.w3.org/2005/08/addressing"; />
</sp:SignedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
