Hi,
It seems that service responds with SOAP Fault containing security error.
Service claims that no password callback handler is registered.
Could you double check that password callback is provided and registered on
service side as written in tutorial?
...
<jaxws:properties>
<entry key="ws-security.callback-handler"
value-ref="myPasswordCallback"/>
</jaxws:properties>
...
public class ServerPasswordCallback implements CallbackHandler {
...
Regards,
Andrei.
> -----Original Message-----
> From: tulika [mailto:[email protected]]
> Sent: Dienstag, 9. Juli 2013 08:32
> To: [email protected]
> Subject: UserName token security on CXF : General security error
> (WSSecurityEngine: No password callback supplied)
>
> Hi All,
>
> I have followed following link to create a username token security on CXF.
> link : http://www.jroller.com/gmazza/entry/cxf_usernametoken_profile
>
> I followed all the steps, but I am getting following error on running client.
> I
> have created proper callbacks on both web server client and server as well
> (plz see my cxf.xml below).
>
> I using cxf-2.6.8.
>
> Please help!!!
>
> --------------------------------
> Error:
> ------------------------------
> NFO: Creating Service
> {http://www.example.org/contract/DoubleIt}DoubleItService from WSDL:
> https://localhost:8443/CXFWebService/services/DoubleItPort?wsdl
> Using URL: https://localhost:8443/CXFWebService/services/DoubleItPort
> Invoking doubleIt...
> Jul 9, 2013 12:20:53 PM
> org.apache.cxf.ws.security.policy.builders.HttpsTokenBuilder build
> WARNING: sp:HttpsToken/wsp:Policy should have a value!
> Jul 9, 2013 12:20:54 PM org.apache.cxf.ws.addressing.soap.MAPCodec
> restoreExchange
> WARNING: Response message does not contain WS-Addressing properties.
> Not correlating response.
> Jul 9, 2013 12:20:54 PM org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor
> handleMessage
> WARNING: Request does not contain Security header, but it's a fault.
> Jul 9, 2013 12:20:54 PM org.apache.cxf.ws.addressing.ContextUtils
> retrieveMAPs
> WARNING: WS-Addressing - failed to retrieve Message Addressing
> Properties from context Exception in thread "main"
> javax.xml.ws.soap.SOAPFaultException: General security error
> (WSSecurityEngine: No password callback supplied)
> at
> org.apache.cxf.jaxws.JaxWsClientProxy.invoke(JaxWsClientProxy.java:156)
> at $Proxy27.doubleIt(Unknown Source)
> at
> org.example.contract.doubleit.DoubleItPortType_DoubleItPort_Client.main(
> DoubleItPortType_DoubleItPort_Client.java:89)
> Caused by: org.apache.cxf.binding.soap.SoapFault: General security error
> (WSSecurityEngine: No password callback supplied)
> at
> org.apache.cxf.binding.soap.interceptor.Soap11FaultInInterceptor.unmarsha
> lFault(Soap11FaultInInterceptor.java:84)
> at
> org.apache.cxf.binding.soap.interceptor.Soap11FaultInInterceptor.handleM
> essage(Soap11FaultInInterceptor.java:51)
> at
> org.apache.cxf.binding.soap.interceptor.Soap11FaultInInterceptor.handleM
> essage(Soap11FaultInInterceptor.java:40)
> at
> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptor
> Chain.java:262)
> at
> org.apache.cxf.interceptor.AbstractFaultChainInitiatorObserver.onMessage(
> AbstractFaultChainInitiatorObserver.java:113)
> at
> org.apache.cxf.binding.soap.interceptor.CheckFaultInterceptor.handleMess
> age(CheckFaultInterceptor.java:69)
> at
> org.apache.cxf.binding.soap.interceptor.CheckFaultInterceptor.handleMess
> age(CheckFaultInterceptor.java:34)
> at
> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptor
> Chain.java:262)
> at
> org.apache.cxf.endpoint.ClientImpl.onMessage(ClientImpl.java:800)
> at
> org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleR
> esponseInternal(HTTPConduit.java:1704)
> at
> org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleR
> esponse(HTTPConduit.java:1537)
> at
> org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.close(H
> TTPConduit.java:1445)
> at
> org.apache.cxf.transport.AbstractConduit.close(AbstractConduit.java:56)
> at
> org.apache.cxf.transport.http.HTTPConduit.close(HTTPConduit.java:660)
> at
> org.apache.cxf.interceptor.MessageSenderInterceptor$MessageSenderEndi
> ngInterceptor.handleMessage(MessageSenderInterceptor.java:62)
> at
> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptor
> Chain.java:262)
> at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:530)
> at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:463)
> at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:366)
> at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:319)
> at
> org.apache.cxf.frontend.ClientProxy.invokeSync(ClientProxy.java:96)
> at
> org.apache.cxf.jaxws.JaxWsClientProxy.invoke(JaxWsClientProxy.java:134)
> ... 2 more
>
> ----------------------------------------------------------------------------------------------
> -
> CXF.xml at client :
> ----------------------------------------------------------------------------------------------
> --
> <beans xmlns="http://www.springframework.org/schema/beans";
> xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
> xmlns:jaxws="http://cxf.apache.org/jaxws";
> xsi:schemaLocation="
> http://www.springframework.org/schema/beans
> http://www.springframework.org/schema/beans/spring-beans.xsd
> http://cxf.apache.org/jaxws
> http://cxf.apache.org/schemas/jaxws.xsd";>
>
> <jaxws:client
> name="{http://www.example.org/contract/DoubleIt}DoubleItPort";
> createdFromAPI="true">
>
> <jaxws:properties>
> <entry key="ws-security.username" value="bob"/>
>
> <entry key="ws-security.callback-handler"
> value-ref="myPasswordCallback"/>
> </jaxws:properties>
> </jaxws:client>
>
> <bean id="myPasswordCallback"
> class="org.example.contract.doubleit.ClientPasswordCallback"/>
>
> </beans>
> ----------------------------------------------------------------------------------------------
> ---
>
> cxf-servlet.xml on server :
> ---------------------------------------------------------------
> <beans xmlns="http://www.springframework.org/schema/beans";
> xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
> xmlns:jaxws="http://cxf.apache.org/jaxws";
> xsi:schemaLocation="
> http://www.springframework.org/schema/beans
> http://www.springframework.org/schema/beans/spring-beans.xsd
> http://cxf.apache.org/jaxws
> http://cxf.apache.org/schemas/jaxws.xsd";>
>
> <jaxws:endpoint
> id="doubleit"
> implementor="org.example.contract.doubleit.DoubleItPortTypeImpl"
> address="/doubleit"
>
> wsdlLocation="/root/workspace/CXF/CXFWebService/WebContent/wsdl/Do
> ubleIt.wsdl">
>
>
> <jaxws:properties>
> <entry key="ws-security.callback-handler"
> value-ref="myPasswordCallback"/>
> </jaxws:properties>
> </jaxws:endpoint>
>
> <bean id="myPasswordCallback"
> class="org.example.contract.doubleit.ServerPasswordCallback" /> </beans>
>
>
>
>
>
>
>
> --
> View this message in context: http://cxf.547215.n5.nabble.com/UserName-
> token-security-on-CXF-General-security-error-WSSecurityEngine-No-
> password-callback-supplied-tp5730451.html
> Sent from the cxf-user mailing list archive at Nabble.com.
