Re: Axis2 1.3 CodeGen problems with xsd:import
WSDL2Java works fine.. the prob is the codegen.. mikle wrote: Hi Amila, http://www.nabble.com/file/p15930225/ClearingHouseService.wsdl ClearingHouseService.wsdl http://www.nabble.com/file/p15930225/ECP.xsd ECP.xsd I am getting Error Parsing WSDL when using the ant (with unwrap) to update my classes: taskdef name=wsdl2code classname=org.apache.axis2.tool.ant.AntCodegenTask classpathref=axis2.class.path / If i use the ui codegen I get the following: URISyntaxException: illegal character exception in path at index 18: file://c:/pathtowsdl/ -- View this message in context: http://www.nabble.com/Axis2-1.3-CodeGen-problems-with-xsd%3Aimport-tp15925873p16763991.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Disable MustUndertand check
I'm having probs throwing SOAP faults when using a security policy (x509 Sign Only).. the server is throwing a must understand check failed axisfault.. somewhere in the message out phase... ie after the security headers are added to the message.. I created a post in Axis-dev.. http://www.nabble.com/MustUnderstand-check-after-service-is-invoked---OutFaultFlow-Problem-td16467475.html#a16467475 Is it possible to disable the mustunderstand check through the policy.xml? Thanks, Mike -- View this message in context: http://www.nabble.com/Disable-MustUndertand-check-tp16699539p16699539.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Different Security Policies for encryption and signing
is it possible to make use of multiple policies? I had a look at the WS-Policy spec..and i only found info on policy alternatives.. I would like to encrypt using secureConv sign using asymmetric (because certificate details are not accessible in the service impl when using SecureConv) Thanks, Mike -- View this message in context: http://www.nabble.com/Different-Security-Policies-for-encryption-and-signing-tp16657652p16657652.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: axisFault error in extracting message properties with SecureConv-SignOnly/WSO2 WSAS 2.2.1
I am getting this error with every exception. (handled and unhandled) It seems that it is related to the out fault flow as it also happens when i intentionally throw a custom soap fault.. Could it be because there is no SecurityOutHandler in the OutfaultFlow? Thanks, Mike -- View this message in context: http://www.nabble.com/axisFault-%22error-in-extracting-message-properties%22-with-SecureConv-SignOnly-WSO2-WSAS-2.2.1-tp16384767p16415657.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: axisFault error in extracting message properties with SecureConv-SignOnly/WSO2 WSAS 2.2.1
problem solved I had copied-pasted the policy myself into the WSDL added the policy reference to the binding element.. I removed it.. just in case it was conflicting with the policy set by WSAS.. and it started working!! Thanks, Mike -- View this message in context: http://www.nabble.com/axisFault-%22error-in-extracting-message-properties%22-with-SecureConv-SignOnly-WSO2-WSAS-2.2.1-tp16384767p16394578.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
setOperationContext Dependency Injection not working
I need to access the messageContext to access the certificate authentication
details.
The prob is that setOperationContext is not being called as described here:
http://www.mail-archive.com/axis-user@ws.apache.org/msg13070.html
http://wso2.org/library/259
http://www.developer.com/services/print.php/10928_3613896_2
public void setOperationContext(OperationContext opctx)
throws AxisFault {
System.out.println(xxx);
msgCtx =
opctx.getMessageContext(WSDLConstants.MESSAGE_LABEL_IN_VALUE);
}
do i need to enable something for this work?
--
View this message in context:
http://www.nabble.com/setOperationContext-Dependency-Injection-not-working-tp16395622p16395622.html
Sent from the Axis - User mailing list archive at Nabble.com.
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: setOperationContext Dependency Injection not working
solved -- View this message in context: http://www.nabble.com/setOperationContext-Dependency-Injection-not-working-tp16395622p16396050.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Access Certificate details when using SecureConv
I would like to access the certificate details for the
SecureContext/DerivedKey... however this info is not available in the RECV
Results..
is there a way to access this info using the SCT identifier or
DerivedKeyID??
try {
Vector results = null;
if ((results = (Vector)
ctx.getProperty(WSHandlerConstants.RECV_RESULTS))
== null) {
throw new RuntimeException(No security
results!!);
} else {
for (int i = 0; i results.size(); i++) {
//Get hold of the WSHandlerResult
instance
WSHandlerResult rResult =
(WSHandlerResult) results.get(i);
Vector wsSecEngineResults =
rResult.getResults();
for (int j = 0; j
wsSecEngineResults.size(); j++) {
//Get hold of the
WSSecurityEngineResult instance
WSSecurityEngineResult wser =
(WSSecurityEngineResult)wsSecEngineResults.get(j);
if(wser.getAction()==WSConstants.TS) {
System.out.println(TS);
} else
if(wser.getAction()==WSConstants.SIGN) {
System.out.println(SIGN);
} else {
System.out.println(wser.getAction());
}
try {
WSDerivedKeyTokenPrincipal principal = (WSDerivedKeyTokenPrincipal)
wser.getPrincipal();
user =
principal.getName();
System.out.println(user);
} catch (Exception e) {
System.out.println(error);
}
X509Certificate certificate =
wser.getCertificate();
if (certificate != null) {
System.out.println(certificate.toString());
System.out.println(IssuerDN: + certificate.getIssuerDN());
System.out.println(SubjectDN: +certificate.getSubjectDN());
System.out.println(SerialNumber: + certificate.getSerialNumber());
} else {
System.out.println(cert is null);
}
SecurityContextToken sct =
wser.getSecurityContextToken();
if (sct != null) {
SimpleTokenStore
tokenStore = new SimpleTokenStore();
Token
tok=tokenStore.getToken(sct.getID());
//tokenStore.getToken(sct.getIdentifier());
System.out.println(sct.getIdentifier());
if (tok!=null) {
System.out.println(tok.getIssuerAddress());
}else {
System.out.println(tok is null);
}
} else {
System.out.println(sct
is null);
}
}
}
}
} catch (Exception e) {
System.out.println(e.getMessage());
}
--
View this message in context:
http://www.nabble.com/Access-Certificate-details-when-using-SecureConv-tp16396510p16396510.html
Sent from the Axis - User mailing list
Rampart/Secureconv JaxenException
I am getting a JaxenException in the client stub on _operationClient.execute(true); I started getting this exception after i setup the client to use rampart. ConfigurationContext context = ConfigurationContextFactory.createConfigurationContextFromFileSystem(repository); ClearingHouseServiceStub service = new ClearingHouseServiceStub(context, this.jTextFieldMain_EndPoint.getText()); service._getServiceClient().engageModule(rampart); Properties properties = new Properties(); properties.setProperty(org.apache.ws.security.crypto.merlin.keystore.type, JKS); properties.setProperty(org.apache.ws.security.crypto.merlin.file, jTextFieldMain_KeyStore.getText()); properties.setProperty(org.apache.ws.security.crypto.merlin.keystore.password, String.valueOf(jPasswordKeystoreMain_Password.getPassword())); CryptoConfig signcryptoInfo = new CryptoConfig(); signcryptoInfo.setProvider(Merlin.class.getName()); signcryptoInfo.setProp(properties); CryptoConfig encryptcryptoInfo = new CryptoConfig(); encryptcryptoInfo.setProvider(Merlin.class.getName()); encryptcryptoInfo.setProp(properties); RampartConfig config = new RampartConfig(); config.setUser(jTextFieldMain_KeystoreAlias.getText()); config.setEncryptionUser(service); config.setPwCbClass(org.mch.bankclient.security.PWCBHandler); config.setSigCryptoConfig(signcryptoInfo); config.setEncrCryptoConfig(encryptcryptoInfo); Policy rampConfigPolicy = new Policy(); rampConfigPolicy.addAssertion(config); service._getServiceClient().getAxisService().getPolicyInclude().addPolicyElement(PolicyInclude.SERVICE_POLICY, rampConfigPolicy); //service._getServiceClient().getServiceContext().getConfigurationContext().setProperty(RampartMessageData.KEY_RAMPART_POLICY,rampConfigPolicy); the last entry in the axis log when using addPolicyElement is: 2008-03-30,12:42:43,687 DEBUG: org.apache.rampart.MessageBuilder.build Building SymmetricBinding 2008-03-30,12:42:43,703 DEBUG: org.apache.rampart.builder.SymmetricBindingBuilder.build SymmetricBindingBuilder build invoked 2008-03-30,12:42:43,703 DEBUG: org.apache.rampart.builder.BindingBuilder.addTimestamp Adding timestamp When using getConfigurationContext.setProperty the last log entry is: 2008-03-30,12:28:24,656 DEBUG: org.apache.rampart.builder.AsymmetricBindingBuilder.build AsymmetricBindingBuilder build invoked Is there something wrong with the way i am configuring rampart? Michael -- View this message in context: http://www.nabble.com/Rampart-Secureconv-%3E-JaxenException-tp16380606p16380606.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Rampart/Secureconv JaxenException
I am using the signonly/secureconv policy template provided in WSAS... I added the policy to the WSDL and inserted a policy reference to the binding element.. I also tried removing the policy from the WSDL and saving the policy into an xml file..like in the rampart samples.. but i got the same exception. The error is generated from the AWT-Queue thread... I'll try create a client without ui... will get back to you with the stack trace.. Thanks, Mike http://www.nabble.com/file/p16381908/ClearingHouseService.wsdl ClearingHouseService.wsdl -- View this message in context: http://www.nabble.com/Rampart-Secureconv-%3E-JaxenException-tp16380606p16381908.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Rampart/Secureconv JaxenException
Here's the stack trace: Exception in thread main java.lang.NoClassDefFoundError: org/jaxen/JaxenException at org.apache.rampart.builder.BindingBuilder.addTimestamp(BindingBuilder.java:86) at org.apache.rampart.builder.SymmetricBindingBuilder.build(SymmetricBindingBuilder.java:68) at org.apache.rampart.MessageBuilder.build(MessageBuilder.java:128) at org.apache.rampart.handler.RampartSender.invoke(RampartSender.java:64) at org.apache.axis2.engine.Phase.invoke(Phase.java:292) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:212) at org.apache.axis2.engine.AxisEngine.send(AxisEngine.java:377) at org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisOperation.java:374) at org.apache.axis2.description.OutInAxisOperationClient.executeImpl(OutInAxisOperation.java:211) at org.apache.axis2.client.OperationClient.execute(OperationClient.java:163) at org.mch.clearinghouse.client.ClearingHouseServiceStub.getChequeImages(ClearingHouseServiceStub.java:4142) at org.mch.bankclient.TestConsoleClient.main(TestConsoleClient.java:49) Caused by: java.lang.ClassNotFoundException: org.jaxen.JaxenException at java.net.URLClassLoader$1.run(URLClassLoader.java:200) at java.security.AccessController.doPrivileged(Native Method) at java.net.URLClassLoader.findClass(URLClassLoader.java:188) at java.lang.ClassLoader.loadClass(ClassLoader.java:306) at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:276) at java.lang.ClassLoader.loadClass(ClassLoader.java:251) at java.lang.ClassLoader.loadClassInternal(ClassLoader.java:319) ... 12 more Nunny wrote: Hi Michael, Configuration seems ok. Can you post the WSDL and the stack trace of the Exception ? thanks, /nandana On 3/30/08, mikle [EMAIL PROTECTED] wrote: I am getting a JaxenException in the client stub on _operationClient.execute(true); I started getting this exception after i setup the client to use rampart. ConfigurationContext context = ConfigurationContextFactory.createConfigurationContextFromFileSystem(repository); ClearingHouseServiceStub service = new ClearingHouseServiceStub(context, this.jTextFieldMain_EndPoint.getText()); service._getServiceClient().engageModule(rampart); Properties properties = new Properties(); properties.setProperty(org.apache.ws.security.crypto.merlin.keystore.type, JKS); properties.setProperty(org.apache.ws.security.crypto.merlin.file, jTextFieldMain_KeyStore.getText()); properties.setProperty(org.apache.ws.security.crypto.merlin.keystore.password, String.valueOf(jPasswordKeystoreMain_Password.getPassword())); CryptoConfig signcryptoInfo = new CryptoConfig(); signcryptoInfo.setProvider(Merlin.class.getName()); signcryptoInfo.setProp(properties); CryptoConfig encryptcryptoInfo = new CryptoConfig(); encryptcryptoInfo.setProvider(Merlin.class.getName()); encryptcryptoInfo.setProp(properties); RampartConfig config = new RampartConfig(); config.setUser(jTextFieldMain_KeystoreAlias.getText()); config.setEncryptionUser(service); config.setPwCbClass(org.mch.bankclient.security.PWCBHandler); config.setSigCryptoConfig(signcryptoInfo); config.setEncrCryptoConfig(encryptcryptoInfo); Policy rampConfigPolicy = new Policy(); rampConfigPolicy.addAssertion(config); service._getServiceClient().getAxisService().getPolicyInclude().addPolicyElement(PolicyInclude.SERVICE_POLICY, rampConfigPolicy); //service._getServiceClient().getServiceContext().getConfigurationContext().setProperty(RampartMessageData.KEY_RAMPART_POLICY,rampConfigPolicy); the last entry in the axis log when using addPolicyElement is: 2008-03-30,12:42:43,687 DEBUG: org.apache.rampart.MessageBuilder.build Building SymmetricBinding 2008-03-30,12:42:43,703 DEBUG: org.apache.rampart.builder.SymmetricBindingBuilder.build SymmetricBindingBuilder build invoked 2008-03-30,12:42:43,703 DEBUG: org.apache.rampart.builder.BindingBuilder.addTimestamp Adding timestamp When using getConfigurationContext.setProperty the last log entry is: 2008-03-30,12:28:24,656 DEBUG: org.apache.rampart.builder.AsymmetricBindingBuilder.build AsymmetricBindingBuilder build invoked Is there something wrong with the way i am configuring rampart? Michael -- View this message in context: http://www.nabble.com/Rampart-Secureconv-%3E-JaxenException-tp16380606p16380606.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Nandana Mihindukulasooriya WSO2 inc. http://nandana83.blogspot.com/ http://nandanasm.wordpress.com/ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED
Re: Rampart/Secureconv JaxenException
ok i think its ok now.. jaxen was not referenced!! -- View this message in context: http://www.nabble.com/Rampart-Secureconv-%3E-JaxenException-tp16380606p16382737.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Rampart/Secureconv JaxenException
Not sure if its against the mailing list rules... another q... what is the difference between these to methods of adding a policy? service._getServiceClient().getAxisService().getPolicyInclude().addPolicyElement(PolicyInclude.SERVICE_POLICY, rampConfigPolicy); service._getServiceClient().getServiceContext().getConfigurationContext().setProperty(RampartMessageData.KEY_RAMPART_POLICY,rampConfigPolicy); the last entry in the axis log when using addPolicyElement is: 2008-03-30,12:42:43,687 DEBUG: org.apache.rampart.MessageBuilder.build Building SymmetricBinding 2008-03-30,12:42:43,703 DEBUG: org.apache.rampart.builder.SymmetricBindingBuilder.build SymmetricBindingBuilder build invoked 2008-03-30,12:42:43,703 DEBUG: org.apache.rampart.builder.BindingBuilder.addTimestamp Adding timestamp When using getConfigurationContext.setProperty the last log entry is: 2008-03-30,12:28:24,656 DEBUG: org.apache.rampart.builder.AsymmetricBindingBuilder.build AsymmetricBindingBuilder build invoked -- View this message in context: http://www.nabble.com/Rampart-Secureconv-%3E-JaxenException-tp16380606p16382896.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
axisFault error in extracting message properties with SecureConv-SignOnly/WSO2 WSAS 2.2.1
I am getting the following error on the WSAS console: INFO [2008-03-30 18:35:49,484] Verification successful for URI #Id-4339206 INFO [2008-03-30 18:35:49,484] Verification successful for URI #Timestamp-32207230 INFO [2008-03-30 18:35:49,500] org.apache.axis2.AxisFault: Error in extracting message properties I'm also attaching the securecontexttoken request and actual request: http://www.nabble.com/file/p16384767/SecureContextRequest.txt SecureContextRequest.txt http://www.nabble.com/file/p16384767/actualrequest.txt actualrequest.txt Any idea what the prob is? I found this post for the same error but its for WSAS 2.1 http://wso2.org/forum/thread/2615 My WSDL code can be found here: http://www.nabble.com/Rampart-Secureconv-%3E-JaxenException-td16380606.html Thanks, Michael -- View this message in context: http://www.nabble.com/axisFault-%22error-in-extracting-message-properties%22-with-SecureConv-SignOnly-WSO2-WSAS-2.2.1-tp16384767p16384767.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Setting up SecureConversation
I would like to use Ws-Secureconversation to sign messages (I will be using one-way SSL to encrypt) I am using WSO2 WSAS and have setup a security configuration for my service (this is a wizard that defines the service's policy) and keystore in the WSAS management console.. but i can't figure out the next step.. According to this Axis2 book that I am using, the policies need to be added to the WSDL so that the axis2 codegen will include the policy information in the generated code...however the book does not cover secure conversation. I also noticed that in the example...a policyreference was added to the operation - does this apply in this case? Can someone point me to a good guide or give me some pointers on what needs to be done? Do I need to make any changes to my WSDL? maybe a reference to the Policy doc generated by WSAS? Thanks, Michael -- View this message in context: http://www.nabble.com/Setting-up-SecureConversation-tp16369657p16369657.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
codegen generating void methods in skeleton interface
I am using Axis2 1.3 - wrapped/wsdl first.. for some reason the method in skeleton interface for PresentCheques is being generated with a void return.. I have another operation that returns an array and it is working fineso it has to be something else.. xsd:element name=PresentChequesResponse xsd:complexType xsd:sequence xsd:element maxOccurs=1 minOccurs=1 name=Ack type=xsd:boolean/xsd:element xsd:element maxOccurs=500 minOccurs=0 name=RejectedCheques type=ecp:RejectedChequeType/xsd:element /xsd:sequence /xsd:complexType /xsd:element I set the minoccurs to 1 just in case it didn't like the 0, but the problem persisted...This is the schema for RejectedChequeType: complexType name=RejectedChequeType sequence element name=Reason type=string minOccurs=1 maxOccurs=1/element element name=MICR type=tns:MICRType minOccurs=1 maxOccurs=1/element /sequence /complexType When i remove RejectedChequeType from the PresentChequesResponse..the interface is generated correctly.. Whats strange is that PresentChequesResponse RejectedChequeType are being generated correctly.. Is there something wrong with my WSDL/XSD? or is it a known bug in axis2? Thanks, Mikle -- View this message in context: http://www.nabble.com/codegen-generating-void-methods-in-skeleton-interface-tp16124913p16124913.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: codegen generating void methods in skeleton interface
If I remove the Ack element, the method is generated correctly... seems like the codegen isn't happy with multiple elements within the wrapper.. Must be coz i'm using unwrap.. would be cool if the codegen would revert back to wrapped in such cases... -- View this message in context: http://www.nabble.com/codegen-generating-void-methods-in-skeleton-interface-tp16124913p16125733.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
SOAP faults for parts of the message?
I am working on a web service which accepts arrays of items for posting.. some may be accepted, others not.. I don't want the clients to have to resend the whole message.. I have thought about sending back an array of rejected items with the reason along with the correlationID.. but I read that null arrays (in case of no rejected items) are problematic and not good for interop.. I'm not sure how SOAP faults work..is it possible to return faults together with a response? Mike -- View this message in context: http://www.nabble.com/SOAP-faults-for-parts-of-the-message--tp16103225p16103225.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
get SOAP message information
is there a way to get the request and response msg size and duration? I'm working on a project that will test 3 or 4 modes of Web service security with large payloads (arrays of small binary files) I would like to have the test client display the following: req size req time resp size resp time i haven't decided whether it would make more sense to get the size/time before or after encryption/decryption/signing.. so i guess i'll do with whats available.. i'm hoping there's something in the axis2 api that can give me this info through a property -- View this message in context: http://www.nabble.com/get-SOAP-message-information-tp16030050p16030050.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Axis2 1.3 CodeGen problems with xsd:import
I am getting Error Parsing WSDL when using xsd:import.. with wsdl:import it works fine.. but the WSDL editor in eclipse gives me Error resolving component for an element defined in the schema. Is there soemthing wrong with the wsdl or is it just a bug? ?xml version=1.0 encoding=UTF-8 standalone=no? wsdl:definitions name=ClearingHouseService targetNamespace=http://mch.org/ClearingHouse/; xmlns:soap=http://schemas.xmlsoap.org/wsdl/soap/; xmlns:wsdl=http://schemas.xmlsoap.org/wsdl/; xmlns:xsd=http://www.w3.org/2001/XMLSchema; xmlns:tns=http://mch.org/ClearingHouse/; xmlns:ecp=http://mch.org/ClearingHouse/ECPSchema; wsdl:import namespace=http://mch.org/ClearingHouse/ECPSchema; location=ECP.xsd/ wsdl:types xsd:schema targetNamespace=http://mch.org/ClearingHouse/; !-- Reverted to wsdl:import as this was generating errors in codegen -- !-- xsd:import namespace=http://mch.org/ClearingHouse/ECPSchema; schemaLocation=ECP.xsd/xsd:import-- xsd:element name=PresentCheques xsd:complexType xsd:sequence xsd:element name=Cheques type=ecp:PresentedChequeType minOccurs=1 maxOccurs=unbounded /xsd:element xsd:element name=ProcDate type=xsd:dateTime minOccurs=1 maxOccurs=1 /xsd:element /xsd:sequence /xsd:complexType /xsd:element -- View this message in context: http://www.nabble.com/Axis2-1.3-CodeGen-problems-with-xsd%3Aimport-tp15925873p15925873.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Axis2 1.3 CodeGen problems with xsd:import
Hi Amila, http://www.nabble.com/file/p15930225/ClearingHouseService.wsdl ClearingHouseService.wsdl http://www.nabble.com/file/p15930225/ECP.xsd ECP.xsd I am getting Error Parsing WSDL when using the ant to update my classes: taskdef name=wsdl2code classname=org.apache.axis2.tool.ant.AntCodegenTask classpathref=axis2.class.path / If i use the ui codegen I get the following: URISyntaxException: illegal character exception in path at index 18: file://c:/pathtowsdl/ -- View this message in context: http://www.nabble.com/Axis2-1.3-CodeGen-problems-with-xsd%3Aimport-tp15925873p15930225.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: WS-Security, SSL or both
pzfreo wrote: There is another alternative, which is to use WS-Trust and WS-SecureConversation. This makes life more efficient if you have more than one message exchange (which I'm guessing you will if this is a B2B sort of situation). are you referring to async web services? due to time restrictions I will be implementing a simple polling setup..so each message requires a separate method call.. does this mean the token exchange has to take place for each call? I'm considering using one-way SSL for encryption and SecureConv for digital signatures..my logic behind this, is that having SSL on a reverse proxy would take part of the encryption load off the Axis server.. With this setup, 2 signatures will be transferred between the server and client - will this have a big impact on the message size? I have setup WSAS and am quite happy with it.. having 2 minor problems: - Eclipse freezes when I start WSAS using the plugin - code generated using the axis2 codegen is giving me errors when using the WSAS folder as the axis home..eg abstract method defined in the WSAS axis2 library, isn't generated by the codegen. I worked around this by selecting use axis2 codegen classes.. do you think this will give me problems later on? -- View this message in context: http://www.nabble.com/WS-Security%2C-SSL-or-both-tp15549089p15653326.html Sent from the Axis - User mailing list archive at Nabble.com.
Re: WS-Security, SSL or both
The clients are large organisations that will be submitting and pulling financial transaction. so a username and password is not enough pzfreo wrote: 1) Is it possible to access two-way SSL authentication information from a web service? (assuming SSL is setup on the axis server - no reverse proxy) You can always access the Tomcat/Servlet/HTTP context, so if the SSL client cert information is available from the servlet context (which it is) you can get at it in your Axis2 service. Does this work when using axis without tomcat? pzfreo wrote: There is another alternative, which is to use WS-Trust and WS-SecureConversation. This makes life more efficient if you have more than one message exchange (which I'm guessing you will if this is a B2B sort of situation). Basically, the client uses UserName token or the X509 cert to set up the session. Then the server issues a token. The token acts as an ephemeral key which can be used for traditional symmetric encryption and signature. So now the conversation can proceed much more efficiently. WS-SecureConversation sounds interesting.. does it work with anonymous clients (behind a firewall)? Do you have any links to good implementation guides for SecureConv? I ran a quick search and all the results seem to point to the spec pzfreo wrote: Basically this is the model I described with WS-Trust and SecureConv. Effectively this models the session startup that SSL does in XML. The upside is the efficiency. The downside is that you need more stuff. So for example, you can interoperate with .NET, but some older stacks don't do WS-SecConv and Trust. interop is important for this impl..but it seems that it is supported by the Sun and ibm stacks.. please correct me if I am wrong. -- View this message in context: http://www.nabble.com/WS-Security%2C-SSL-or-both-tp15549089p15562519.html Sent from the Axis - User mailing list archive at Nabble.com.
WS-Security, SSL or both
I am new to web service security and need to secure B2B web services over the web with a hub-and-spoke setup... so clients will be consuming services provided by 1 server The messages will be fairly large - arrays with about 500 elements with 2 13k attachments for each. so performance/msg size is a big issue.. I've been reading articles comparing WS-Security and SSL.. and it seems to basically boil down to: SSL: simple, point-to-point, can be optimized using acceleration h/w WS-Security: flexible, end-to-end The web method implementations must be aware of the client identity... so authentication information must be available to the web method.. 1) Is it possible to access two-way SSL authentication information from a web service? (assuming SSL is setup on the axis server - no reverse proxy) 2) if not.. would it make sense to have one-way SSL for encryption and XML-Signature for authentication? how would that perform? Would XML-Signature increase the message size drastically? Any alternatives? 3) I also read that PK encryption is too intensive for message encryption.. and is normally used to to exchange a session key - does the performance problem apply to digital signatures? is the session key exchange part of the Ws-Security spec or do I have to develop a web method that generates the session key? Thanks, Mike -- View this message in context: http://www.nabble.com/WS-Security%2C-SSL-or-both-tp15549089p15549089.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
