Hi, I am a new user for this tool and I have some problem to understand how to setup a security configuration for SoapUI 2.5- I create a project with my WSDL file- Dubble click on the project file and start to modify the "Sequrity configuration" tab* Add my KeyStore* Add a new WS-Sequrity Configurations called "testout" (Signature: Keystore, password, X509-Certificate, #rsa-sha1, #wothComments, Use Single Certificate, added all parts)I then open my soap request (getAspects) and select "Aut" in the button of the window. In Aut window I select testout for Outgoing WSS, all other field are blank.When I press the run button (green) i always get the same replay and that is: "Security Requirements not met - No Security header in message"So, can someone please give me some tips of what I am missing?I have attached the WSDL file I use.

Hej Fredrik,looks like you did the right thing.. can you check the error log for any errors and the raw request view to see what soapUI actually sent over the wire?regards,/Oleeviware.com

Thank you. When I added a TimeStamp I got my first question to work. This questions returns a SAML assertion that shall be used in next request. Do anyone has an example how to use SAML? I have now copied my SAML assertion to the "Outgoing WS-Security Configuration" but SopUI fails when it trys to generate the request:Mon Jan 26 13:46:11 CET 2009:ERROR:java.lang.NumberFormatException: For input string: ""

Thanks Fredrik, I'll check into this.. it may be due to the SAML version you are using (2.0?), but I'll get back to you on that!regards,/Oleeviware.com

Hi, I am using version 2.0. Is that a problem? I haved tried to copy my SAML assertion to the SAML field but it complains:Tue Jan 27 10:21:09 CET 2009:ERROR:java.lang.NumberFormatException: For input string: "" java.lang.NumberFormatException: For input string: "" at java.lang.NumberFormatException.forInputString(Unknown Source) at java.lang.Integer.parseInt(Unknown Source) at java.lang.Integer.parseInt(Unknown Source) at org.opensaml.SAMLAssertion.fromDOM(Unknown Source) at org.opensaml.SAMLAssertion.(Unknown Source) at com.eviware.soapui.impl.wsdl.support.wss.entries.AddSAMLEntry.process(AddSAMLEntry.java:91) at com.eviware.soapui.impl.wsdl.support.wss.OutgoingWss.processOutgoing(OutgoingWss.java:156)

I did a new test with a very simple SAML assertion that I found when I was Google (do not know if it is 100% valid). However, I get the same error: Wed Jan 28 11:41:42 CET 2009:ERROR:java.lang.NumberFormatException: For input string: "" java.lang.NumberFormatException: For input string: "" at java.lang.NumberFormatException.forInputString(Unknown Source) at java.lang.Integer.parseInt(Unknown Source) at java.lang.Integer.parseInt(Unknown Source) at org.opensaml.SAMLAssertion.fromDOM(Unknown Source) at org.opensaml.SAMLAssertion.(Unknown Source) at com.eviware.soapui.impl.wsdl.support.wss.entries.AddSAMLEntry.process(AddSAMLEntry.java:91)So, is it a problem with SAML 2.0?

WSDL security | SmartBear Community

omatzura
Super Contributor
17 years ago
Hej Fredrik,

looks like you did the right thing.. can you check the error log for any errors and the raw request view to see what soapUI actually sent over the wire?

regards,

/Ole
eviware.com
Fredrik_Granstr
Occasional Contributor
17 years ago
Thank you. When I added a TimeStamp I got my first question to work. This questions returns a SAML assertion that shall be used in next request. Do anyone has an example how to use SAML? I have now copied my SAML assertion to the "Outgoing WS-Security Configuration" but SopUI fails when it trys to generate the request:

Mon Jan 26 13:46:11 CET 2009:ERROR:java.lang.NumberFormatException: For input string: ""
omatzura
Super Contributor
17 years ago
Thanks Fredrik, I'll check into this.. it may be due to the SAML version you are using (2.0?), but I'll get back to you on that!

regards,

/Ole
eviware.com
Fredrik_Granstr
Occasional Contributor
17 years ago
Hi,
I am using version 2.0. Is that a problem? I haved tried to copy my SAML assertion to the SAML field but it complains:

Tue Jan 27 10:21:09 CET 2009:ERROR:java.lang.NumberFormatException: For input string: ""
java.lang.NumberFormatException: For input string: ""
at java.lang.NumberFormatException.forInputString(Unknown Source)
at java.lang.Integer.parseInt(Unknown Source)
at java.lang.Integer.parseInt(Unknown Source)
at org.opensaml.SAMLAssertion.fromDOM(Unknown Source)
at org.opensaml.SAMLAssertion.(Unknown Source)
at com.eviware.soapui.impl.wsdl.support.wss.entries.AddSAMLEntry.process(AddSAMLEntry.java:91)
at com.eviware.soapui.impl.wsdl.support.wss.OutgoingWss.processOutgoing(OutgoingWss.java:156)
Fredrik_Granstr
Occasional Contributor
17 years ago
I did a new test with a very simple SAML assertion that I found when I was Google (do not know if it is 100% valid). However, I get the same error:

Wed Jan 28 11:41:42 CET 2009:ERROR:java.lang.NumberFormatException: For input string: ""
java.lang.NumberFormatException: For input string: ""
at java.lang.NumberFormatException.forInputString(Unknown Source)
at java.lang.Integer.parseInt(Unknown Source)
at java.lang.Integer.parseInt(Unknown Source)
at org.opensaml.SAMLAssertion.fromDOM(Unknown Source)
at org.opensaml.SAMLAssertion.(Unknown Source)
at com.eviware.soapui.impl.wsdl.support.wss.entries.AddSAMLEntry.process(AddSAMLEntry.java:91)

So, is it a problem with SAML 2.0?
omatzura
Super Contributor
17 years ago
Hi,

yes, it seems so. soapUI uses opensaml-1.1.jar which doesn't support SAML 2.0.. I'll upgrade to wss4j-1.5.5 for the next nightly build which might at least not throw this error..

sorry for the inconvenience.

regards!

/Ole
eviware.com
Fredrik_Granstr
Occasional Contributor
17 years ago
Great, I will test it first ting tomrrow then.
Fredrik_Granstr
Occasional Contributor
17 years ago
will you send a reply when you have addad a correction to the daily build?
omatzura
Super Contributor
17 years ago
Hi!

the latest nightly build has been updated to use wss4j 1.5.5, but it still does not support SAML 2.0. Maybe the error messages have been improved though.. please try it out and let us know.

regards!

/ole
eviware.com
Fredrik_Granstr
Occasional Contributor
17 years ago
Hi,
The error message is still the same.

Regards,

Fredrik

Fri Jan 30 10:58:02 CET 2009:ERROR:java.lang.NumberFormatException: For input string: ""
java.lang.NumberFormatException: For input string: ""
at java.lang.NumberFormatException.forInputString(Unknown Source)
at java.lang.Integer.parseInt(Unknown Source)
at java.lang.Integer.parseInt(Unknown Source)
at org.opensaml.SAMLAssertion.fromDOM(Unknown Source)
at org.opensaml.SAMLAssertion.(Unknown Source)

Forum Discussion

WSDL security

Recent Discussions

SOAPUI 5.8.0 breaking charset of project file

Can SoapUI help me determine WSDL errors?

Missing endpoint for request

Related Content

[Solved] SSL Handshake exception calling a secure webservice

log4j security vulnerability

Unable to load https wsdl