org.apache.axis2.engine.AxisEngine - Missing wsse:Security header in request

sridhar patnayak Wed, 24 Feb 2010 08:00:20 -0800

HI,
Could you please help me in solving the issue.
The issue is:
The Exception occured at the service is not transmit to the client Instead
of It transmitting as Missing wsse:Security header in request.


I  am using rampart version1.4 and axis2.1.4.Before using the rampart The
Exceptions at the service are reflected at the client as it is.
For Your reference I am attaching the policy.xml file

Thanks & Regards,
Sridhar

<wsp:Policy wsu:Id="SgnOnlyAnonymous"
		xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd";
		xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy";
		xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing";
		xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";>
	<wsp:ExactlyOne>
		<wsp:All>
			<sp:SymmetricBinding>
				<wsp:Policy>
					<sp:ProtectionToken>
						<wsp:Policy>
							<sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never";>
								<wsp:Policy>
									<sp:RequireThumbprintReference/>
									<sp:WssX509V3Token10/>
								</wsp:Policy>
							</sp:X509Token>
						</wsp:Policy>
					</sp:ProtectionToken>
					<sp:AlgorithmSuite>
						<wsp:Policy>
							<sp:Basic256/>
						</wsp:Policy>
					</sp:AlgorithmSuite>
					<sp:Layout>
						<wsp:Policy>
							<sp:Lax/>
						</wsp:Policy>
					</sp:Layout>
					<sp:IncludeTimestamp/>
					<sp:OnlySignEntireHeadersAndBody/>
				</wsp:Policy>
			</sp:SymmetricBinding>
			<sp:SupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";>
					<wsp:Policy>
						<sp:IssuedToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient";>
							<Issuer xmlns="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";>
								<Address xmlns="http://www.w3.org/2005/08/addressing";>http://localhost:8080/IDM/services/STS</Address>
								<Metadata xmlns="http://www.w3.org/2005/08/addressing";>
                                    <mex:Metadata
                                        xmlns:mex="http://schemas.xmlsoap.org/ws/2004/09/mex";
                                        xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";>
                                        <mex:MetadataSection Dialect="http://schemas.xmlsoap.org/ws/2004/09/mex";>
                                            <mex:MetadataReference>
                                                <Address
                                                    xmlns="http://www.w3.org/2005/08/addressing";>http://localhost:8080/IDM/services/mex
</Address>
                                            </mex:MetadataReference>
                                        </mex:MetadataSection>
                                    </mex:Metadata>
                                </Metadata>
							</Issuer>
							<sp:RequestSecurityTokenTemplate>
								<t:TokenType xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust";>http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV1.1</t:TokenType>
								<t:KeyType xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust";>http://schemas.xmlsoap.org/ws/2005/02/trust/PublicKey</t:KeyType>
								<t:KeySize xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust";>256</t:KeySize>
							</sp:RequestSecurityTokenTemplate>
							<wsp:Policy>
								<sp:RequireInternalReference/>
							</wsp:Policy>
						</sp:IssuedToken>
						<sp:SignedParts>
							<sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"/>
						</sp:SignedParts>
					</wsp:Policy>
		     </sp:SupportingTokens>
			<sp:Wss11>
				<wsp:Policy>
					<sp:MustSupportRefKeyIdentifier/>
					<sp:MustSupportRefIssuerSerial/>
					<sp:MustSupportRefThumbprint/>
					<sp:MustSupportRefEncryptedKey/>
				<sp:RequireSignatureConfirmation/>
				</wsp:Policy>
			</sp:Wss11>
			<sp:SignedParts xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";>
                <sp:Body/>
            </sp:SignedParts>
            <sp:EncryptedParts xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy";>
                <sp:Body/>
            </sp:EncryptedParts>
           			<sp:Trust10>
				<wsp:Policy>
					<sp:MustSupportIssuedTokens/>
					<sp:RequireClientEntropy/>
					<sp:RequireServerEntropy/>
				</wsp:Policy>
			</sp:Trust10>
			<ramp:RampartConfig xmlns:ramp="http://ws.apache.org/rampart/policy";> 
				<ramp:user>client</ramp:user>
				<ramp:encryptionUser>service</ramp:encryptionUser>
				<ramp:stsAlias>sts</ramp:stsAlias>
				<ramp:passwordCallbackClass>com.apere.ws.policy.PWCBHandler</ramp:passwordCallbackClass>
				
				<ramp:signatureCrypto>
					<ramp:crypto provider="org.apache.ws.security.components.crypto.Merlin">
						<ramp:property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</ramp:property>
						<ramp:property name="org.apache.ws.security.crypto.merlin.file">client.jks</ramp:property>
						<ramp:property name="org.apache.ws.security.crypto.merlin.keystore.password">apache</ramp:property>
					</ramp:crypto>
				</ramp:signatureCrypto>
				
				<ramp:stsCrypto>
			      <ramp:crypto provider="org.apache.ws.security.components.crypto.Merlin">
                    <ramp:property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</ramp:property>
                    <ramp:property name="org.apache.ws.security.crypto.merlin.file">client.jks</ramp:property>
                    <ramp:property name="org.apache.ws.security.crypto.merlin.keystore.password">apache</ramp:property>
                  </ramp:crypto>
				</ramp:stsCrypto>
				
			</ramp:RampartConfig>
		</wsp:All>
	</wsp:ExactlyOne>
</wsp:Policy>

org.apache.axis2.engine.AxisEngine - Missing wsse:Security header in request

Reply via email to