Hi ,
Please try using any of the following values for the "signatureKeyIdentifier":
DirectReference
IssuerSerial
X509KeyIdentifier
SKIKeyIdentifier
Thumbprint
These are different ways of referencing the signature key.
The value of the "user" is the alias of the private key used for
signature and wss4j will extract and set the required key reference
info appropriately. Therefore you DON'T have to specify the value.
Thanks,
Ruchith
On 7/17/06, Shyam Shukla <[EMAIL PROTECTED]> wrote:
Hi All,
I am working with axis2 1.0 and wss4j 1.5 to implement WS-Security feature
supported by this architecture.
I am using rampart module to sign the soap messages.
Now when I invoke a web service I get the following error message:
<< Start of Error Message>>
org.apache.axis2.AxisFault: WSHandler: Signature: unknown key
identification; ne
sted exception is:
org.apache.ws.security.WSSecurityException:
WSHandler: Signature: unknow
n key identification
at
org.apache.axis2.security.WSDoAllSender.processMessage(WSDoAllSender.
java:255)
at
org.apache.axis2.security.handler.WSDoAllHandler.invoke(WSDoAllHandle
r.java:82)
at
org.apache.axis2.engine.Phase.invoke(Phase.java:381)
at
org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:473)
at
org.apache.axis2.engine.AxisEngine.send(AxisEngine.java:572)
at
org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisO
peration.java:328)
at
org.apache.axis2.description.OutInAxisOperationClient.execute(OutInAx
isOperation.java:279)
at
org.apache.axis2.client.ServiceClient.sendReceive(ServiceClient.java:
457)
at
org.apache.axis2.client.ServiceClient.sendReceive(ServiceClient.java:
399)
at
sample.security.ClientWebSecurityToken.main(ClientWebSecurityToken.ja
va:60)
Caused by: org.apache.ws.security.WSSecurityException:
WSHandler: Signature: unk
nown key identification
at
org.apache.ws.security.handler.WSHandler.decodeSignatureParameter(WSH
andler.java:397)
at
org.apache.ws.security.handler.WSHandler.doSenderAction(WSHandler.jav
a:124)
at
org.apache.axis2.security.WSDoAllSender.processMessage(WSDoAllSender.
java:181)
... 9 more
<< End of Error Message >>
From error it looks like I am not giving correct "signatureKeyIdentifier" in
axis2.xml. As per the document, I came to know that value of
"signatureKeyIdentifier" should be IssuerSerial number so I assigned CA's
serial number to this tag but it did no work?
Can anyone figure it out where I am going wrong?
Best Regards,
Shyam Shukla
DISCLAIMER ========== This e-mail may contain privileged and confidential
information which is the property of Persistent Systems Pvt. Ltd. It is
intended only for the use of the individual or entity to which it is
addressed. If you are not the intended recipient, you are not authorized to
read, retain, copy, print, distribute or use this message. If you have
received this communication in error, please notify the sender and delete
all copies of this message. Persistent Systems Pvt. Ltd. does not accept any
liability for virus infected mails.
--
www.ruchith.org
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
