Hi, do you have the BouncyCastle JCE provider installed an listed in the classpath? The exception indicates that a encryption algorithm is missing. Pls note that the standard Sun JCE does not support every algorithm required by xml-signature and xml-encryption.
Regards, Werner PS: I havn't checked your keystore setup in detail, but to be able to encrypt the client also need the certificate of the server (it uses the public key of the server's cert to perform encryption). Werner > -----Ursprüngliche Nachricht----- > Von: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] > Gesendet: Montag, 20. Februar 2006 16:20 > An: [email protected] > Betreff: xml encryption problem with wss4j handler > > > Hi > I am trying to test the WS xml encrytion using Axis 1.2.1 and > wss4j 1.1. I > am getting this following exception and not sure where I have > done wrong. > I had imported the servers public key as a RFC format > certificate into the > client keystore [teststore2]. I have some confusion abt the > client cfg wsdd > and hence I have pasted the content also - not sure what > theencryptionuser prop should be - I have set it to the cert alias - > right/wrong?. > > AxisFault > faultCode: > {http://schemas.xmlsoap.org/soap/envelope/}Server.generalException > faultSubcode: > faultString: WSHandler: Encryption: error during message > processingorg.apache.ws.security.WSSecurityException: An unsupported > signature or encryption algorithm was used; nested exception is: > > org.apache.xml.security.encryption.XMLEncryptionException: Cannot > find any provider supporting DESede/CBC/ISO10126Padding > Original Exception was > java.security.NoSuchAlgorithmException: Cannot find > any provider supporting DESede/CBC/ISO10126Padding; nested > exception is: > org.apache.ws.security.WSSecurityException: WSHandler: > Encryption: > error during message > processingorg.apache.ws.security.WSSecurityException: > An unsupported signature or encryption algorithm was used; > nested exception > is: > > org.apache.xml.security.encryption.XMLEncryptionException: Cannot > find any provider supporting DESede/CBC/ISO10126Padding > Original Exception was > java.security.NoSuchAlgorithmException: Cannot find > any provider supporting DESede/CBC/ISO10126Padding > faultActor: > faultNode: > faultDetail: > {http://xml.apache.org/axis/}hostname:D2DFJ971 > > I have run the following commands to set the keystores on both sides. > > keytool -genkey -alias testalias1 -keystore teststore1 -dname > "cn=testalias1" -keypass testkp1 -storepass testsp1 > keytool -genkey -alias testalias2 -keystore teststore2 -dname > "cn=testalias2" -keypass testkp2 -storepass testsp2 > keytool -selfcert -alias testalias1 -keystore teststore1 > -keypass testkp1 > -storepass testsp1 > keytool -selfcert -alias testalias2 -keystore teststore2 > -keypass testkp2 > -storepass testsp2 > keytool -export -keystore teststore1 -alias testalias1 > -storepass testsp1 > -file testcert1 -rfc > keytool -import -alias testcert1 -file testcert1 -keystore teststore2 > -storepass testsp2 > > My teststore1 is on the server side and the teststore2 is on > the client > side. > > My clientconfig wsdd is as below: > > <deployment xmlns="http://xml.apache.org/axis/wsdd/"; > xmlns:java="http://xml.apache.org/axis/wsdd/providers/java";> > <transport name="http" > pivot="java:org.apache.axis.transport.http.HTTPSender"/> > <globalConfiguration > > <requestFlow > > <handler type="java:org.apache.ws.axis.security.WSDoAllSender" > > <parameter name="action" value="Encrypt"/> > <parameter name="encryptionUser" value="testcert1" /> > <parameter name="encryptionPropFile" > value="clientcrypto.properties" > /> > <parameter name="encryptionKeyIdentifier" > value="X509KeyIdentifier" /> > </handler> > </requestFlow> > </globalConfiguration> > </deployment> > > and my server config is > > <service name="MXINVOICEInterface" provider="java:MSG" > style="message" > use="literal"> > <requestFlow> > <handler type="java:org.apache.ws.axis.security.WSDoAllReceiver"> > <parameter name="action" value="Encrypt"/> > <parameter name="decryptionPropFile" > value="C:\merlin\tools\maximo\internal\mycrypto.properties" /> > </handler> > </requestFlow> > > <wsdlFile>C:\bea8\user_projects\domains\mydomain\wsdl\MXINVOIC > EInterface.wsdl</wsdlFile> > <parameter name="allowedMethods" value="processDocument"/> > <parameter name="className" > value="psdi.iface.webservices.MEADocumentService"/> > <parameter name="scope" value="Application"/> > <parameter name="sendXsiTypes" value="false"/> > <parameter name="sendMultiRefs" value="false"/> > </service> > > thanks > Anamitra > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
