0 Replies Latest reply on Sep 25, 2009 4:27 PM by Jorge Rossetto

    Exception with X509 certificates on jbossws-native-3.1.1.GA

    Jorge Rossetto Newbie

      Hi!

      I'm having trouble to use WS-Security with X509 certificates. I've followed the instructions of the wiki ( http://www.jboss.org/community/wiki/JBossWS-NativeUserGuide#WSSecurity ). But when I invoke my service (using SoapUI, correctly configured with a X509 signed and encrypted SOAP request) I am getting the following exception:

      ERROR [WSSecurityDispatcher] Internal error occured handling inbound message:
      org.jboss.ws.extensions.security.exception.WSSecurityException: Currently only SubjectKeyIdentifiers are supported, was passed: http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3


      Plus, my jboss-wsse-server.xml is like this:

      <jboss-ws-security xmlns="http://www.jboss.com/ws-security/config"
       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
       xsi:schemaLocation="http://www.jboss.com/ws-security/config jboss-wsse-server.xsd">
      
       <key-store-file>WEB-INF/wsse.keystore</key-store-file>
       <key-store-password>jbossws</key-store-password>
       <trust-store-file>WEB-INF/wsse.truststore</trust-store-file>
       <trust-store-password>jbossws</trust-store-password>
      
       <config>
       <encrypt type="x509v3" alias="wsse" />
       <sign type="x509v3" alias="wsse" />
       <requires>
       <encryption />
       <signature />
       </requires>
       <timestamp ttl="300" />
       </config>
      </jboss-ws-security>


      I'm using Sun JDK 1.5.0.15, JBoss AS 4.2.3 and jbossws-native-3.1.1.GA.

      I'm not very familiar with the security stuff, so please, if anybody could help it will be great!

      Thanks in advance!