So after a bit of playing around, as i'd seen your comment about whitespaces in other posts, i've got it working.
So what i did: -Create a new request in SoapUI -Click Auth tab at bottom of request screen -Add new auth - Basic -Select 'Outgoing WS-S' with a valid option At this point, i still get the invalid exception. I then removed the whitespaces at the end, i.e.: <soapenv:Envelope xmlns:hel="http://helloworld.garethahealy.com" xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/"> <soapenv:Header><wsse:Security soapenv:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"><wsse:UsernameToken wsu:Id="UsernameToken-175BD6F71725864A01141520724606034"><wsse:Username>clientx509v1</wsse:Username><wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">storepassword</wsse:Password></wsse:UsernameToken><wsu:Timestamp wsu:Id="TS-175BD6F71725864A01141520724606033"><wsu:Created>2014-11-05T17:07:26.060Z</wsu:Created><wsu:Expires>2014-11-05T17:24:06.060Z</wsu:Expires></wsu:Timestamp><ds:Signature Id="SIG-175BD6F71725864A01141520724605532" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"><ec:InclusiveNamespaces PrefixList="hel soapenv" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:CanonicalizationMethod><ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/><ds:Reference URI="#id-175BD6F71725864A01141520724605431"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"><ec:InclusiveNamespaces PrefixList="hel" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transform></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0q6mB5bOxArPfLv8rnk3sQmnrIY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>DxVV7o52d0CkHQdDDwSQtSGNT/A/MUUdF56oWscYTzrOleVrqPL/npSf6z330BO2WGFQTrzGAl9Q RRwIblO+8/QJoAlBmQrVR+c4mu1I03bw9N+VZ/4jEJtyH3UkloNjZK6iWVGf1+D/YsSSfV75z/Ke /SVhHzZNrG5FrfK2Zkk=</ds:SignatureValue><ds:KeyInfo Id="KI-175BD6F71725864A01141520724605429"><wsse:SecurityTokenReference wsu:Id="STR-175BD6F71725864A01141520724605430"><ds:X509Data><ds:X509IssuerSerial><ds:X509IssuerName>CN=Mayank Mishra,OU=Dev,O=Apache,L=INDORE,ST=MP,C=IN</ds:X509IssuerName><ds:X509SerialNumber>1245002984</ds:X509SerialNumber></ds:X509IssuerSerial></ds:X509Data></wsse:SecurityTokenReference></ds:KeyInfo></ds:Signature></wsse:Security></soapenv:Header> <soapenv:Body wsu:Id="id-175BD6F71725864A01141520724605431" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> <hel:helloWorldRequest> <hello>hello</hello> </hel:helloWorldRequest></soapenv:Body></soapenv:Envelope> And it works. -- View this message in context: http://cxf.547215.n5.nabble.com/WS-Security-Signature-not-working-via-SoapUI-tp5750745p5750751.html Sent from the cxf-user mailing list archive at Nabble.com.
