[jira] Commented: (RAMPART-305) If Rampart detects a security error a HTML page is send to the client instead of a SOAP fault

[Herwig David (JIRA)]

    [ 
https://issues.apache.org/jira/browse/RAMPART-305?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12893549#action_12893549
 ] 

Herwig David commented on RAMPART-305:
--------------------------------------

Hi Thilina,

In a further try I have tried to load the policy from an external link:

3) <wsp:PolicyReference 
URI="http://edv156-wskome.medical-intern.com:8080/7X4WebServices/AsymmetricBindingPolicy.xml"/>
 

With method 'getRemoteRefrencedPolicy(key)' the policy is found and loaded.
In method 'normalize'  the call of reg.register(key, policy) leads to an 
'UnsupportedOperationException'.

PolicyReference: line 118
-----------------------------------
    public PolicyComponent normalize(PolicyRegistry reg, boolean deep) {
        String key = getURI();
        int pos = key.indexOf("#");
        if (pos == 0) {
            key = key.substring(1);
        }else if(pos > 0){
                key = key.substring(0, pos);
        }
        
        Policy policy = reg.lookup(key);        
        
        if (policy == null) {
                policy = getRemoteReferencedPolicy(key);
                
                if(policy == null){
                        throw new RuntimeException(key + " can't be resolved" );
                }
                
                reg.register(key, policy);
            
        }
        
        return policy.normalize(reg, deep);
    }

PolicyLocator: line 76
------------------------------
        public void register(String identifier, Policy policy) {
                throw new UnsupportedOperationException();

        }

Thanks and regards,
Herwig

> If Rampart detects a security error a HTML page is send to the client instead 
> of a SOAP fault
> ---------------------------------------------------------------------------------------------
>
>                 Key: RAMPART-305
>                 URL: https://issues.apache.org/jira/browse/RAMPART-305
>             Project: Rampart
>          Issue Type: Bug
>          Components: rampart-core
>    Affects Versions: 1.4
>         Environment: Axis2-1.5..1 is installed as web app under Tomcat 5.5.28 
> and uses Rampart 1.4.
> Running on Windows XP 
>            Reporter: Herwig David
>            Assignee: Ruchith Udayanga Fernando
>         Attachments: axis2.log, request.txt, response.txt, services.xml, 
> WS7X4AssortmentOrder.wsdl
>
>
> If I call a web service with wrong security data rampart correctly detects 
> that 'The signature or decryption was invalid'. That's fine.
> Unfortunately I get a NullPointerException when returning to the client 
> afterwards.
> Is there a way to just send the SOAP fault back to the client instead of 
> sending a HTML page?
> Is this related to issue RAMPART-164?
> I've attached the log file, the wsdl file and messages send between client 
> and server.
> Thanks and regards,
> Herwig

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.