Re: Security requirements are not satisfied because the security header is not present in the incoming message.
essing/role/anonymous http://www.test.com/api/testing/ws/internal";> http://www.test.com/api/testing/testinforequest";> SANBUS GE 80135 My client-config.wsdd - http://xml.apache.org/axis/wsdd/"; xmlns:java="http://xml.apache.org/axis/wsdd/providers/java";> By seeing the security header, we can say that it is username-token-profile-1.0. How to solve this. Please help me. Regards Santosh José Ferreiro wrote: > > Hello, > > First you have to determine which Token profile you need to use[1]: > Is it: > - Username Token Profile > -X.509 Token Profile > - SAML Token profile > - Kerberos Token Profile > > most probably I will be Username Token Profile or X.509 Token Profile > > You will have two ways to do add the security header to your soap > message: > > Either you use Axis2 and rampart module to generate a client (stubs, etc, > etc). > You don't need to add a security header. The module will do the work for > you. > Obviously you have to add the right configuration files. > You may download Axis2 and Rampart and there should be some examples in > the > package. > > > Or you user Axis 1.3 with WSS4J. > Same thing as above the security header of your SOAP message will be added > by WSS4J according to > the deployement files (extension is wsdd, which measn web service > deployement descriptor) > You may find examples in the package WSS4J. > > Also this link [2] in the URL source code in the book you may download > some > examples. > They show you the configuration of a such project with WSS4J. > Please note that the author is using *X.509 Token profile*. > > As you need to interoperate with donet. I will suggest you to read this > article from Anne Thomas Manes [3]. > Dot net requires the "wrapped" style. > > Hope this helps. > > Jose FERREIRO > > > [1] - > http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=wss#overview > [2] - http://www.agileskills2.org/DWSAA/v10pub/index.html > [3] - > http://atmanes.blogspot.com/2005/03/wrapped-documentliteral-convention.html > > > On 6/18/08, sh_santosh <[EMAIL PROTECTED]> wrote: >> >> >> Hi Jose, >> >> Thanks for your reply, >> >> Problem with my Java Client Code is that I have a Limitation that either >> I >> can add Security headers to my org.apache.axis.client.Call class object >> or >> in the Stub class object. >> >> Can you guide me about, how I can use WSS4J classes and method with my >> Call >> or Stub's Class Object.so that i can set the security headers. >> >> Can you provide me some sample Java code or example ,from where I can get >> the idea that how should go further ,because right now I am totally >> stucked >> because of this. >> >> Thanks, >> Ritesh. >> >> >> >> José Ferreiro wrote: >> > >> > Hello Ritesh, >> > >> > If you are using Axis 1.x (i.e Axis 1.1, 1.2, 1.3 or 1.4) [1] then you >> > should use >> > the library Apache WSS4J [2] and not "Rampart" >> > >> > "Rampart" is a module based on Apache WSS4J that provides the >> WS-Security >> > features for Axis2 [3][4]. >> > >> > Hope this helps: >> > >> > José Ferreiro >> > >> > [1] - http://ws.apache.org/axis/ >> > [2] - http://ws.apache.org/wss4j/ >> > [3] - >> http://ws.apache.org/axis2/modules/rampart/1_0/security-module.html >> > [4] - http://ws.apache.org/axis2/ >> > >> > >> > On Wed, Jun 18, 2008 at 11:12 AM, sh_santosh <[EMAIL PROTECTED]> >> > wrote: >> > >> >> >> >> Hi Keith, >> >> >> >> I am using Axis1.3 version not Axis2. >> >> So,is Rampart will work with Axis1.3 or it will work with only with >> Axis2 >> >> and higher versions. >> >> >> >> Thanks, >> >> Ritesh. >> >> >> >> sh_santosh wrote: >> >> > >> >> > Dear All, >> >> > >> >> > I have a Java Client generated by using Axis1.3.By use of my Java >> >> Client >> >> I >> >> > want to access a Web Service Implemented in .NET using WSE3.0 >> &
Re: Security requirements are not satisfied because the security header is not present in the incoming message.
Hi Nandana, Sorry for replying late , In my security header the password is a plain text as like what you have mentioned in your security header format pasted below. And I have a limitation that I cannot use the Axis2 with Rampart as I have to migrate all of my web services to Axis2 from Axis 1.3 ,which requires tons of testings for the whole project(as it is very big one). Can you give some idea or code that how can i generate soap security headers by using Axis1.3 and WSS4J. Thanks in Advance. Ritesh. sh_santosh wrote: > > Dear All, > > I have a Java Client generated by using Axis1.3.By use of my Java Client I > want to access a Web Service Implemented in .NET using WSE3.0 Standards. > > When I tried to submit my Request using a method available in my Client > Class ,I am getting Exception that "Security requirements are not > satisfied because the security header is not present in the incoming > message". > > Then I have added the SOAP Security Headers(which are not available in my > Java Client Code) in my Stub Object by using SOAPHeaderElement Class's > Object and Tried to submit the Request ,but still I got the Same > Exception. > > Note : - That the Java Client Code Pass an Object as Request having > required Parameters and Gets the User Defined Object in Response. > > I have to generate a Structure Like below inside my SOAPHeader Tag : > > > http://www.test/info > urn:uuid:ca6e465b-484a-4bb5-964f-eb513938bb84 > > http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous > > http://localhost:8080/bookingapi/bookingapi.asmx > > > 2008-02-28T15:33:56Z > 2008-02-28T15:38:56Z > > xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"; > wsu:Id="SecurityToken-9e141575-2400-4c6d-ab86-1d5af61727b2"> > [EMAIL PROTECTED] > Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText";>SomePassword > 5SImW1gykzSPdeiWzcCdaQ== > 2008-02-28T15:33:56Z > > > > > > > Any Help at Java Code Level or any Guidance/Example will be highly > appreciated. > > Thanks, > Ritesh. > > -- View this message in context: http://www.nabble.com/Security-requirements-are-not-satisfied-because-the-security-header-is-not-present-in-the-incoming-message.-tp17960865p18087173.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Security requirements are not satisfied because the security header is not present in the incoming message.
Hi Jose, Thanks for your detailed reply, As I am very new to Web services,It will take bit time to check out the links(that I have already Started) mentioned by you.Will Come back to you soon once I finished the R&D on the suggestions mentioned by you. Thanks, Ritesh. José Ferreiro wrote: > > Hello, > > First you have to determine which Token profile you need to use[1]: > Is it: > - Username Token Profile > -X.509 Token Profile > - SAML Token profile > - Kerberos Token Profile > > most probably I will be Username Token Profile or X.509 Token Profile > > You will have two ways to do add the security header to your soap > message: > > Either you use Axis2 and rampart module to generate a client (stubs, etc, > etc). > You don't need to add a security header. The module will do the work for > you. > Obviously you have to add the right configuration files. > You may download Axis2 and Rampart and there should be some examples in > the > package. > > > Or you user Axis 1.3 with WSS4J. > Same thing as above the security header of your SOAP message will be added > by WSS4J according to > the deployement files (extension is wsdd, which measn web service > deployement descriptor) > You may find examples in the package WSS4J. > > Also this link [2] in the URL source code in the book you may download > some > examples. > They show you the configuration of a such project with WSS4J. > Please note that the author is using *X.509 Token profile*. > > As you need to interoperate with donet. I will suggest you to read this > article from Anne Thomas Manes [3]. > Dot net requires the "wrapped" style. > > Hope this helps. > > Jose FERREIRO > > > [1] - > http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=wss#overview > [2] - http://www.agileskills2.org/DWSAA/v10pub/index.html > [3] - > http://atmanes.blogspot.com/2005/03/wrapped-documentliteral-convention.html > > > On 6/18/08, sh_santosh <[EMAIL PROTECTED]> wrote: >> >> >> Hi Jose, >> >> Thanks for your reply, >> >> Problem with my Java Client Code is that I have a Limitation that either >> I >> can add Security headers to my org.apache.axis.client.Call class object >> or >> in the Stub class object. >> >> Can you guide me about, how I can use WSS4J classes and method with my >> Call >> or Stub's Class Object.so that i can set the security headers. >> >> Can you provide me some sample Java code or example ,from where I can get >> the idea that how should go further ,because right now I am totally >> stucked >> because of this. >> >> Thanks, >> Ritesh. >> >> >> >> José Ferreiro wrote: >> > >> > Hello Ritesh, >> > >> > If you are using Axis 1.x (i.e Axis 1.1, 1.2, 1.3 or 1.4) [1] then you >> > should use >> > the library Apache WSS4J [2] and not "Rampart" >> > >> > "Rampart" is a module based on Apache WSS4J that provides the >> WS-Security >> > features for Axis2 [3][4]. >> > >> > Hope this helps: >> > >> > José Ferreiro >> > >> > [1] - http://ws.apache.org/axis/ >> > [2] - http://ws.apache.org/wss4j/ >> > [3] - >> http://ws.apache.org/axis2/modules/rampart/1_0/security-module.html >> > [4] - http://ws.apache.org/axis2/ >> > >> > >> > On Wed, Jun 18, 2008 at 11:12 AM, sh_santosh <[EMAIL PROTECTED]> >> > wrote: >> > >> >> >> >> Hi Keith, >> >> >> >> I am using Axis1.3 version not Axis2. >> >> So,is Rampart will work with Axis1.3 or it will work with only with >> Axis2 >> >> and higher versions. >> >> >> >> Thanks, >> >> Ritesh. >> >> >> >> sh_santosh wrote: >> >> > >> >> > Dear All, >> >> > >> >> > I have a Java Client generated by using Axis1.3.By use of my Java >> >> Client >> >> I >> >> > want to access a Web Service Implemented in .NET using WSE3.0 >> >> Standards. >> >> > >> >> > When I tried to submit my Request using a method available in my >> Client >> >> > Class ,I am getting Exception that "Security requirements are not >> >> > satisfied because the security header is not present in the incoming >> >> > message". >> >> > >> >> > Then I have added the SOAP Security Headers(which ar
Re: Security requirements are not satisfied because the security header is not present in the incoming message.
Hello, First you have to determine which Token profile you need to use[1]: Is it: - Username Token Profile -X.509 Token Profile - SAML Token profile - Kerberos Token Profile most probably I will be Username Token Profile or X.509 Token Profile You will have two ways to do add the security header to your soap message: Either you use Axis2 and rampart module to generate a client (stubs, etc, etc). You don't need to add a security header. The module will do the work for you. Obviously you have to add the right configuration files. You may download Axis2 and Rampart and there should be some examples in the package. Or you user Axis 1.3 with WSS4J. Same thing as above the security header of your SOAP message will be added by WSS4J according to the deployement files (extension is wsdd, which measn web service deployement descriptor) You may find examples in the package WSS4J. Also this link [2] in the URL source code in the book you may download some examples. They show you the configuration of a such project with WSS4J. Please note that the author is using *X.509 Token profile*. As you need to interoperate with donet. I will suggest you to read this article from Anne Thomas Manes [3]. Dot net requires the "wrapped" style. Hope this helps. Jose FERREIRO [1] - http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=wss#overview [2] - http://www.agileskills2.org/DWSAA/v10pub/index.html [3] - http://atmanes.blogspot.com/2005/03/wrapped-documentliteral-convention.html On 6/18/08, sh_santosh <[EMAIL PROTECTED]> wrote: > > > Hi Jose, > > Thanks for your reply, > > Problem with my Java Client Code is that I have a Limitation that either I > can add Security headers to my org.apache.axis.client.Call class object or > in the Stub class object. > > Can you guide me about, how I can use WSS4J classes and method with my Call > or Stub's Class Object.so that i can set the security headers. > > Can you provide me some sample Java code or example ,from where I can get > the idea that how should go further ,because right now I am totally stucked > because of this. > > Thanks, > Ritesh. > > > > José Ferreiro wrote: > > > > Hello Ritesh, > > > > If you are using Axis 1.x (i.e Axis 1.1, 1.2, 1.3 or 1.4) [1] then you > > should use > > the library Apache WSS4J [2] and not "Rampart" > > > > "Rampart" is a module based on Apache WSS4J that provides the WS-Security > > features for Axis2 [3][4]. > > > > Hope this helps: > > > > José Ferreiro > > > > [1] - http://ws.apache.org/axis/ > > [2] - http://ws.apache.org/wss4j/ > > [3] - > http://ws.apache.org/axis2/modules/rampart/1_0/security-module.html > > [4] - http://ws.apache.org/axis2/ > > > > > > On Wed, Jun 18, 2008 at 11:12 AM, sh_santosh <[EMAIL PROTECTED]> > > wrote: > > > >> > >> Hi Keith, > >> > >> I am using Axis1.3 version not Axis2. > >> So,is Rampart will work with Axis1.3 or it will work with only with > Axis2 > >> and higher versions. > >> > >> Thanks, > >> Ritesh. > >> > >> sh_santosh wrote: > >> > > >> > Dear All, > >> > > >> > I have a Java Client generated by using Axis1.3.By use of my Java > >> Client > >> I > >> > want to access a Web Service Implemented in .NET using WSE3.0 > >> Standards. > >> > > >> > When I tried to submit my Request using a method available in my > Client > >> > Class ,I am getting Exception that "Security requirements are not > >> > satisfied because the security header is not present in the incoming > >> > message". > >> > > >> > Then I have added the SOAP Security Headers(which are not available in > >> my > >> > Java Client Code) in my Stub Object by using SOAPHeaderElement > Class's > >> > Object and Tried to submit the Request ,but still I got the Same > >> > Exception. > >> > > >> > Note : - That the Java Client Code Pass an Object as Request having > >> > required Parameters and Gets the User Defined Object in Response. > >> > > >> > I have to generate a Structure Like below inside my SOAPHeader Tag : > >> > > >> > > >> > http://www.test/info > >> > > >> > urn:uuid:ca6e465b-484a-4bb5-964f-eb513938bb84 > >> > > >> > > >> http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous > >> > >> > > >> > http://localhost:8080/bookingapi/b
Re: Security requirements are not satisfied because the security header is not present in the incoming message.
Hi Jose, Thanks for your reply, Problem with my Java Client Code is that I have a Limitation that either I can add Security headers to my org.apache.axis.client.Call class object or in the Stub class object. Can you guide me about, how I can use WSS4J classes and method with my Call or Stub's Class Object.so that i can set the security headers. Can you provide me some sample Java code or example ,from where I can get the idea that how should go further ,because right now I am totally stucked because of this. Thanks, Ritesh. José Ferreiro wrote: > > Hello Ritesh, > > If you are using Axis 1.x (i.e Axis 1.1, 1.2, 1.3 or 1.4) [1] then you > should use > the library Apache WSS4J [2] and not "Rampart" > > "Rampart" is a module based on Apache WSS4J that provides the WS-Security > features for Axis2 [3][4]. > > Hope this helps: > > José Ferreiro > > [1] - http://ws.apache.org/axis/ > [2] - http://ws.apache.org/wss4j/ > [3] - http://ws.apache.org/axis2/modules/rampart/1_0/security-module.html > [4] - http://ws.apache.org/axis2/ > > > On Wed, Jun 18, 2008 at 11:12 AM, sh_santosh <[EMAIL PROTECTED]> > wrote: > >> >> Hi Keith, >> >> I am using Axis1.3 version not Axis2. >> So,is Rampart will work with Axis1.3 or it will work with only with Axis2 >> and higher versions. >> >> Thanks, >> Ritesh. >> >> sh_santosh wrote: >> > >> > Dear All, >> > >> > I have a Java Client generated by using Axis1.3.By use of my Java >> Client >> I >> > want to access a Web Service Implemented in .NET using WSE3.0 >> Standards. >> > >> > When I tried to submit my Request using a method available in my Client >> > Class ,I am getting Exception that "Security requirements are not >> > satisfied because the security header is not present in the incoming >> > message". >> > >> > Then I have added the SOAP Security Headers(which are not available in >> my >> > Java Client Code) in my Stub Object by using SOAPHeaderElement Class's >> > Object and Tried to submit the Request ,but still I got the Same >> > Exception. >> > >> > Note : - That the Java Client Code Pass an Object as Request having >> > required Parameters and Gets the User Defined Object in Response. >> > >> > I have to generate a Structure Like below inside my SOAPHeader Tag : >> > >> > >> > http://www.test/info >> > >> urn:uuid:ca6e465b-484a-4bb5-964f-eb513938bb84 >> > >> > >> http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous >> >> > >> > http://localhost:8080/bookingapi/bookingapi.asmx >> > >> > >> > 2008-02-28T15:33:56Z >> > 2008-02-28T15:38:56Z >> > >> > > > xmlns:wsu=" >> http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd >> " >> > wsu:Id="SecurityToken-9e141575-2400-4c6d-ab86-1d5af61727b2"> >> > [EMAIL PROTECTED] >> > > > Type=" >> http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText >> ">SomePassword >> > 5SImW1gykzSPdeiWzcCdaQ== >> > 2008-02-28T15:33:56Z >> > >> > >> > >> > >> > >> > >> > Any Help at Java Code Level or any Guidance/Example will be highly >> > appreciated. >> > >> > Thanks, >> > Ritesh. >> > >> > >> >> -- >> View this message in context: >> http://www.nabble.com/Security-requirements-are-not-satisfied-because-the-security-header-is-not-present-in-the-incoming-message.-tp17960865p17976896.html >> Sent from the Axis - User mailing list archive at Nabble.com. >> >> >> - >> To unsubscribe, e-mail: [EMAIL PROTECTED] >> For additional commands, e-mail: [EMAIL PROTECTED] >> >> > > -- View this message in context: http://www.nabble.com/Security-requirements-are-not-satisfied-because-the-security-header-is-not-present-in-the-incoming-message.-tp17960865p17980220.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Security requirements are not satisfied because the security header is not present in the incoming message.
Hello Ritesh, If you are using Axis 1.x (i.e Axis 1.1, 1.2, 1.3 or 1.4) [1] then you should use the library Apache WSS4J [2] and not "Rampart" "Rampart" is a module based on Apache WSS4J that provides the WS-Security features for Axis2 [3][4]. Hope this helps: José Ferreiro [1] - http://ws.apache.org/axis/ [2] - http://ws.apache.org/wss4j/ [3] - http://ws.apache.org/axis2/modules/rampart/1_0/security-module.html [4] - http://ws.apache.org/axis2/ On Wed, Jun 18, 2008 at 11:12 AM, sh_santosh <[EMAIL PROTECTED]> wrote: > > Hi Keith, > > I am using Axis1.3 version not Axis2. > So,is Rampart will work with Axis1.3 or it will work with only with Axis2 > and higher versions. > > Thanks, > Ritesh. > > sh_santosh wrote: > > > > Dear All, > > > > I have a Java Client generated by using Axis1.3.By use of my Java Client > I > > want to access a Web Service Implemented in .NET using WSE3.0 Standards. > > > > When I tried to submit my Request using a method available in my Client > > Class ,I am getting Exception that "Security requirements are not > > satisfied because the security header is not present in the incoming > > message". > > > > Then I have added the SOAP Security Headers(which are not available in my > > Java Client Code) in my Stub Object by using SOAPHeaderElement Class's > > Object and Tried to submit the Request ,but still I got the Same > > Exception. > > > > Note : - That the Java Client Code Pass an Object as Request having > > required Parameters and Gets the User Defined Object in Response. > > > > I have to generate a Structure Like below inside my SOAPHeader Tag : > > > > > > http://www.test/info > > > urn:uuid:ca6e465b-484a-4bb5-964f-eb513938bb84 > > > > > http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous > > > > > http://localhost:8080/bookingapi/bookingapi.asmx > > > > > > 2008-02-28T15:33:56Z > > 2008-02-28T15:38:56Z > > > > > xmlns:wsu=" > http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd > " > > wsu:Id="SecurityToken-9e141575-2400-4c6d-ab86-1d5af61727b2"> > > [EMAIL PROTECTED] > > > Type=" > http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText > ">SomePassword > > 5SImW1gykzSPdeiWzcCdaQ== > > 2008-02-28T15:33:56Z > > > > > > > > > > > > > > Any Help at Java Code Level or any Guidance/Example will be highly > > appreciated. > > > > Thanks, > > Ritesh. > > > > > > -- > View this message in context: > http://www.nabble.com/Security-requirements-are-not-satisfied-because-the-security-header-is-not-present-in-the-incoming-message.-tp17960865p17976896.html > Sent from the Axis - User mailing list archive at Nabble.com. > > > - > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > >
Re: Security requirements are not satisfied because the security header is not present in the incoming message.
Hi Keith, I am using Axis1.3 version not Axis2. So,is Rampart will work with Axis1.3 or it will work with only with Axis2 and higher versions. Thanks, Ritesh. sh_santosh wrote: > > Dear All, > > I have a Java Client generated by using Axis1.3.By use of my Java Client I > want to access a Web Service Implemented in .NET using WSE3.0 Standards. > > When I tried to submit my Request using a method available in my Client > Class ,I am getting Exception that "Security requirements are not > satisfied because the security header is not present in the incoming > message". > > Then I have added the SOAP Security Headers(which are not available in my > Java Client Code) in my Stub Object by using SOAPHeaderElement Class's > Object and Tried to submit the Request ,but still I got the Same > Exception. > > Note : - That the Java Client Code Pass an Object as Request having > required Parameters and Gets the User Defined Object in Response. > > I have to generate a Structure Like below inside my SOAPHeader Tag : > > > http://www.test/info > urn:uuid:ca6e465b-484a-4bb5-964f-eb513938bb84 > > http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous > > http://localhost:8080/bookingapi/bookingapi.asmx > > > 2008-02-28T15:33:56Z > 2008-02-28T15:38:56Z > > xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"; > wsu:Id="SecurityToken-9e141575-2400-4c6d-ab86-1d5af61727b2"> > [EMAIL PROTECTED] > Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText";>SomePassword > 5SImW1gykzSPdeiWzcCdaQ== > 2008-02-28T15:33:56Z > > > > > > > Any Help at Java Code Level or any Guidance/Example will be highly > appreciated. > > Thanks, > Ritesh. > > -- View this message in context: http://www.nabble.com/Security-requirements-are-not-satisfied-because-the-security-header-is-not-present-in-the-incoming-message.-tp17960865p17976896.html Sent from the Axis - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
