4 Replies Latest reply on Jun 23, 2006 11:07 AM by Justin Bertram

    signing SOAP requests

    Justin Bertram Newbie

      I have successfully deployed an EJB (JSR-109) based Web Service using WSTools and JBoss 4.0.4 GA that requires WS-Security signatures.

      I wrote a DII client that can invoke this web service without WS-Security signatures. Of course, now I need to be able to sign my requests. How can I programmatically sign my requests from within my DII client?

        • 1. Re: signing SOAP requests
          Enrique Sisack Newbie

          hi,
          have you tested your deployed WS with WS client included?. We also tried and the test examples succesfully deployed but we never had success comunicating ws client with WS. the following error appears

          java.rmi.RemoteException: Call invocation failed with code [InternalError] because of: An internal WS-Security error occurred. See log for details; nested exception is:
          javax.xml.rpc.soap.SOAPFaultException: An internal WS-Security error occurred. See log for details
          ...

          thanks in advance.

          • 2. Re: signing SOAP requests
            Justin Bertram Newbie

            I was able to successfully deploy and run the JUnit test on the WS-Security example provided in the JBossWS "User Guide Samples."

            I have also been able to successfully code and deploy an EJB based Web Service that requires WS-Security signatures.

            However, I haven't been able to write a DII client to invoke that Web Service because it (obviously) requires a signed SOAP request and I don't know how to sign my requests.

            Does that answer your question?

            • 3. Re: signing SOAP requests
              Thomas Diesler Master

              The client needs to use the ws-security handler from that is used in standard-jbossws-client-config.xml

               <client-config>
               <config-name>Standard Secure Client</config-name>
               <post-handler-chain>
               <handler-chain-name>PostHandlerChain</handler-chain-name>
               <handler>
               <j2ee:handler-name>WSSecurityHandlerOutbound</j2ee:handler-name>
               <j2ee:handler-class>org.jboss.ws.wsse.WSSecurityHandlerOutbound</j2ee:handler-class>
               </handler>
               </post-handler-chain>
               </client-config>
              



              • 4. Re: signing SOAP requests
                Justin Bertram Newbie

                How can I make my client use that handler?