[prev in list] [next in list] [prev in thread] [next in thread]
List: jboss-user
Subject: [jboss-user] [JBoss Web Services] - Problems using WS-Security
From: "mauro.brasil" <do-not-reply () jboss ! com>
Date: 2011-02-28 20:01:55
Message-ID: 2-590162-3-82093-1298923291637.jivesbs.jivemailuser () http://community ! jboss ! org
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
mauro.brasil [http://community.jboss.org/people/mauro.brasil] created the discussion
"Problems using WS-Security encryption..."
To view the discussion, visit: http://community.jboss.org/message/590162#590162
--------------------------------------------------------------
Hello there!
We have an application environment here working with JBossWS and WS-Security enabled \
on server side and Axis2c (with rampartc for security) on client side. For start, we \
developed all the solution using just UserNameToken security and all was fine.
We decided to enable wsse encryption in order to improve communication security and, \
since then, I'm stucked on the same problem.
The server throwns an exception on the moment it receives the first message, like \
below:
Caused by: java.security.cert.CertificateParsingException: signed overrun, bytes = 67
at sun.security.x509.X509CertImpl.parse(Unknown Source)
at sun.security.x509.X509CertImpl.<init>(Unknown Source)
at sun.security.provider.X509Factory.engineGenerateCertificate(Unknown Source)
at java.security.cert.CertificateFactory.generateCertificate(Unknown Source)
at sun.security.provider.JavaKeyStore.engineLoad(Unknown Source)
at sun.security.provider.JavaKeyStore$JKS.engineLoad(Unknown Source)
at java.security.KeyStore.load(Unknown Source)
at org.jboss.ws.extensions.security.SecurityStore.loadStore(SecurityStore.java:158)
After two days of constant searching trying/validating almost everything I've found \
about this issue, I decided to post a message here so someone can maybe give me just \
a hint to were to start digging.
I followed the chapter 9 of "JBoss In Action" to create the \
keystores/truststores/certificates and to configure my environment \
("jboss-wsse-server.xml", because other files were already defined to WS-Security) \
without any success. I've found sugestions about missing parameters on keytool \
usage, orientation regarding some sort of update of java encryption (adding JCE and \
BouncyCastle provider implementation), but nothing seems to work or make sense.
If someone have any idea of solution I'll be very thankfull.
Best regards,
Mauro.
--------------------------------------------------------------
Reply to this message by going to Community
[http://community.jboss.org/message/590162#590162]
Start a new discussion in JBoss Web Services at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2044]
[Attachment #5 (text/html)]
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<body link="#355491" alink="#4262a1" vlink="#355491" style="background: #e2e2e2; \
margin: 0; padding: 20px;">
<div>
<table cellpadding="0" bgcolor="#FFFFFF" border="0" cellspacing="0" style="border: \
1px solid #dadada; margin-bottom: 30px; width: 100%; -moz-border-radius: 6px; \
-webkit-border-radius: 6px;"> <tbody>
<tr>
<td>
<table border="0" cellpadding="0" cellspacing="0" bgcolor="#FFFFFF" \
style="border: solid 2px #ccc; background: #dadada; width: 100%; -moz-border-radius: \
6px; -webkit-border-radius: 6px;"> <tbody>
<tr>
<td bgcolor="#000000" valign="middle" height="58px" style="border-bottom: 1px \
solid #ccc; padding: 20px; -moz-border-radius-topleft: 3px; \
-moz-border-radius-topright: 3px; -webkit-border-top-right-radius: 5px; \
-webkit-border-top-left-radius: 5px;">
<h1 style="color: #333333; font: bold 22px Arial, Helvetica, sans-serif; \
margin: 0; display: block !important;">
<!-- To have a header image/logo replace the name below with your img tag \
-->
<!-- Email clients will render the images when the message is read so any \
image -->
<!-- must be made available on a public server, so that all recipients can \
load the image. -->
<a href="http://community.jboss.org/index.jspa" style="text-decoration: \
none; color: #E1E1E1">JBoss Community</a></h1> </td>
</tr>
<tr>
<td bgcolor="#FFFFFF" style="font: normal 12px Arial, Helvetica, sans-serif; \
color:#333333; padding: 20px; -moz-border-radius-bottomleft: 4px; \
-moz-border-radius-bottomright: 4px; -webkit-border-bottom-right-radius: 5px; \
-webkit-border-bottom-left-radius: 5px;"><h3 style="margin: 10px 0 5px; font-size: \
17px; font-weight: normal;"> Problems using WS-Security encryption...
</h3>
<span style="margin-bottom: 10px;">
created by <a href="http://community.jboss.org/people/mauro.brasil">mauro.brasil</a> \
in <i>JBoss Web Services</i> - <a \
href="http://community.jboss.org/message/590162#590162">View the full discussion</a> \
</span> <hr style="margin: 20px 0; border: none; background-color: #dadada; height: \
1px;">
<div class="jive-rendered-content"><p>Hello there!</p><p style="min-height: 8pt; \
height: 8pt; padding: 0px;"> </p><p>We have an application environment here \
working with JBossWS and WS-Security enabled on server side and Axis2c (with rampartc \
for security) on client side.</p><p>For start, we developed all the solution using \
just UserNameToken security and all was fine.</p><p style="min-height: 8pt; height: \
8pt; padding: 0px;"> </p><p>We decided to enable wsse encryption in order to \
improve communication security and, since then, I'm stucked on the same \
problem.</p><p style="min-height: 8pt; height: 8pt; padding: 0px;"> </p><p>The \
server throwns an exception on the moment it receives the first message, like \
below:</p><p style="min-height: 8pt; height: 8pt; padding: 0px;"> </p><p>Caused \
by: java.security.cert.CertificateParsingException: signed overrun, bytes = \
67</p><p>    at sun.security.x509.X509CertImpl.parse(Unknown \
Source)</p><p>    at \
sun.security.x509.X509CertImpl.<init>(Unknown Source)</p><p>    \
at sun.security.provider.X509Factory.engineGenerateCertificate(Unknown \
Source)</p><p>    at \
java.security.cert.CertificateFactory.generateCertificate(Unknown \
Source)</p><p>    at \
sun.security.provider.JavaKeyStore.engineLoad(Unknown \
Source)</p><p>    at \
sun.security.provider.JavaKeyStore$JKS.engineLoad(Unknown \
Source)</p><p>    at java.security.KeyStore.load(Unknown \
Source)</p><p>    at \
org.jboss.ws.extensions.security.SecurityStore.loadStore(SecurityStore.java:158)</p><p \
style="min-height: 8pt; height: 8pt; padding: 0px;"> </p><p>After two days of \
constant searching trying/validating almost everything I've found about this issue, I \
decided to post a message here so someone can maybe give me just a hint to were to \
start digging.</p><p style="min-height: 8pt; height: 8pt; padding: \
0px;"> </p><p>I followed the chapter 9 of "JBoss In Action" to create the \
keystores/truststores/certificates and to configure my environment \
("jboss-wsse-server.xml", because other files were already defined to WS-Security) \
without any success. </p><p>I've found sugestions about missing parameters on keytool \
usage, orientation regarding some sort of update of java encryption (adding JCE and \
BouncyCastle provider implementation), but nothing seems to work or make sense.</p><p \
style="min-height: 8pt; height: 8pt; padding: 0px;"> </p><p>If someone have any \
idea of solution I'll be very thankfull.</p><p style="min-height: 8pt; height: 8pt; \
padding: 0px;"> </p><p>Best regards,</p><p>Mauro.</p></div>
<div style="background-color: #f4f4f4; padding: 10px; margin-top: 20px;">
<p style="margin: 0;">Reply to this message by <a \
href="http://community.jboss.org/message/590162#590162">going to Community</a></p> \
<p style="margin: 0;">Start a new discussion in JBoss Web Services at <a \
href="http://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2044">Community</a></p>
</div></td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
</div>
</body>
</html>
_______________________________________________
jboss-user mailing list
jboss-user@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/jboss-user
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic