4 Replies Latest reply on Jun 23, 2006 11:07 AM by acxjbertr

    signing SOAP requests

    acxjbertr
    acxjbertr Jun 8, 2006 10:50 AM

      I have successfully deployed an EJB (JSR-109) based Web Service using WSTools and JBoss 4.0.4 GA that requires WS-Security signatures.

      I wrote a DII client that can invoke this web service without WS-Security signatures. Of course, now I need to be able to sign my requests. How can I programmatically sign my requests from within my DII client?

      • 2620 Views
      • Tags:
        • 1. Re: signing SOAP requests
          elsisack
          elsisack Jun 8, 2006 11:48 AM (in response to acxjbertr)

          hi,
          have you tested your deployed WS with WS client included?. We also tried and the test examples succesfully deployed but we never had success comunicating ws client with WS. the following error appears

          java.rmi.RemoteException: Call invocation failed with code [InternalError] because of: An internal WS-Security error occurred. See log for details; nested exception is:
          javax.xml.rpc.soap.SOAPFaultException: An internal WS-Security error occurred. See log for details
          ...

          thanks in advance.

            • Actions
          • 2. Re: signing SOAP requests
            acxjbertr
            acxjbertr Jun 8, 2006 2:44 PM (in response to acxjbertr)

            I was able to successfully deploy and run the JUnit test on the WS-Security example provided in the JBossWS "User Guide Samples."

            I have also been able to successfully code and deploy an EJB based Web Service that requires WS-Security signatures.

            However, I haven't been able to write a DII client to invoke that Web Service because it (obviously) requires a signed SOAP request and I don't know how to sign my requests.

            Does that answer your question?

              • Actions
            • 3. Re: signing SOAP requests
              thomas.diesler
              thomas.diesler Jun 12, 2006 12:51 AM (in response to acxjbertr)

              The client needs to use the ws-security handler from that is used in standard-jbossws-client-config.xml

               <client-config>
 <config-name>Standard Secure Client</config-name>
 <post-handler-chain>
 <handler-chain-name>PostHandlerChain</handler-chain-name>
 <handler>
 <j2ee:handler-name>WSSecurityHandlerOutbound</j2ee:handler-name>
 <j2ee:handler-class>org.jboss.ws.wsse.WSSecurityHandlerOutbound</j2ee:handler-class>
 </handler>
 </post-handler-chain>
 </client-config>



                • Actions
              • 4. Re: signing SOAP requests
                acxjbertr
                acxjbertr Jun 23, 2006 11:07 AM (in response to acxjbertr)

                How can I make my client use that handler?

                  • Actions