Hi,
I am developing a Java web service client using Apache Axis 1.4. The
client will connect to a .Net version 1.1 + WSE 2 SP3 web service.
The .Net web service requires X.509 based authentication and
signature.
I have created the Java stubs for the web service using WSDL2Java.
The automatically generated code can successfully query the .Net web
service and results in a WSE policy error.
I am attempting to add the signature and authenication to the web
service request. I have modified the example client security code in
the Axis samples directory. The certificate that was provided was
created by Microsoft Certificate Authority. When the code attempts to
sign the SOAP envelope with the certificate, I receive the following
stack trace:
org.apache.xml.security.signature.XMLSignatureException: No installed
provider supports this key: sun.security.rsa.RSAPrivateCrtKeyImpl
Original Exception was
org.apache.xml.security.signature.XMLSignatureException: No installed
provider supports this key: sun.security.rsa.RSAPrivateCrtKeyImpl
Original Exception was java.security.InvalidKeyException: No installed
provider supports this key: sun.security.rsa.RSAPrivateCrtKeyImpl
at org.apache.xml.security.signature.XMLSignature.sign(Unknown Source)
at SignedSOAPEnvelope.init(SignedSOAPEnvelope.java:152)
at SignedSOAPEnvelope.<init>(SignedSOAPEnvelope.java:106)
at ShortLegalSearchWS.call(ShortLegalSearchWS.java:23)
at TitleDataTesterExe.main(TitleDataTesterExe.java:29)
org.apache.xml.security.signature.XMLSignatureException: No installed
provider supports this key: sun.security.rsa.RSAPrivateCrtKeyImpl
Original Exception was java.security.InvalidKeyException: No installed
provider supports this key: sun.security.rsa.RSAPrivateCrtKeyImpl
at
org.apache.xml.security.algorithms.implementations.SignatureDSA.engineInitSign(Unknown
Source)
at
org.apache.xml.security.algorithms.SignatureAlgorithm.initSign(Unknown
Source)
at org.apache.xml.security.signature.XMLSignature.sign(Unknown Source)
at SignedSOAPEnvelope.init(SignedSOAPEnvelope.java:152)
at SignedSOAPEnvelope.<init>(SignedSOAPEnvelope.java:106)
at ShortLegalSearchWS.call(ShortLegalSearchWS.java:23)
at TitleDataTesterExe.main(TitleDataTesterExe.java:29)
java.security.InvalidKeyException: No installed provider supports this
key: sun.security.rsa.RSAPrivateCrtKeyImpl
at java.security.Signature$Delegate.chooseProvider(Signature.java:1059)
at java.security.Signature$Delegate.engineInitSign(Signature.java:1100)
at java.security.Signature.initSign(Signature.java:485)
at
org.apache.xml.security.algorithms.implementations.SignatureDSA.engineInitSign(Unknown
Source)
at
org.apache.xml.security.algorithms.SignatureAlgorithm.initSign(Unknown
Source)
at org.apache.xml.security.signature.XMLSignature.sign(Unknown Source)
at SignedSOAPEnvelope.init(SignedSOAPEnvelope.java:152)
at SignedSOAPEnvelope.<init>(SignedSOAPEnvelope.java:106)
at ShortLegalSearchWS.call(ShortLegalSearchWS.java:23)
at TitleDataTesterExe.main(TitleDataTesterExe.java:29)
java.lang.RuntimeException:
org.apache.xml.security.signature.XMLSignatureException: No installed
provider supports this key: sun.security.rsa.RSAPrivateCrtKeyImpl
Original Exception was
org.apache.xml.security.signature.XMLSignatureException: No installed
provider supports this key: sun.security.rsa.RSAPrivateCrtKeyImpl
Original Exception was java.security.InvalidKeyException: No installed
provider supports this key: sun.security.rsa.RSAPrivateCrtKeyImpl
at SignedSOAPEnvelope.init(SignedSOAPEnvelope.java:170)
at SignedSOAPEnvelope.<init>(SignedSOAPEnvelope.java:106)
at ShortLegalSearchWS.call(ShortLegalSearchWS.java:23)
at TitleDataTesterExe.main(TitleDataTesterExe.java:29)
I suspect the default Java security providers do not support RSA signatures.
Could anyone suggest online resources that discuss Java client based
signatures and authentication using X.509 for web services or
interoperating between Java and .Net? My searches have not provided
significant information.
Thanks,
Michael
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
