Forum Discussion

Anonymous's avatar
Anonymous
9 years ago

An error was discovered processing the <wsse:Security> header

This is my WS-Security configuration with SoapUI

1. Server Keystore - contains server's private key + server's public key + client's public key

    Client Keystore - contains client's private key + client's public key + server's public key

 

2.WS-Security Configuration – Keystore

Source: path to client keystore

Password - client keystore password

Default Alias - alias of client's private key

Alias Password - password of client's private key

 

and

 

Source: path to server keystore

Password - server keystore password

Default Alias - alias of server's private key

Alias Password - password of server's private key

 

3. Outgoing WS-Security Configuration -

 

* Username – username : client

                        password : client’s password

 

* Timestamp – Time To Live : 1000000

 

* Signature

     Keystore - client keystore

     Alias - alias of client's private key

     Password - password of client's private key

     Key Identifier Type - X.509

     Signature Algorithm - RSA-SHA1

 

* Encryption
  Keystore - server keystore
  Alias - alias of server's public key
  Password - Empty (no password required for public key)
  Key Identifier Type - X.509
  Symmetric Encoding Algorithm - Triple-DES-CBC
  Key Encryption Algorithm - RSA-OAEP-MGF1P

 

4. Ingoing WS-Security Configuration -

      Decrypt Keystore - client keystore
      Signature Keystore - server keystore
      Password - password of client's private key

 

5. Applying the ws-security

 

But the folowing exception is shown,

Caused by: org.apache.wss4j.common.ext.WSSecurityException: An error was discovered processing the <wsse:Security> header

at org.apache.wss4j.common.crypto.AlgorithmSuiteValidator.checkSymmetricEncryptionAlgorithm(AlgorithmSuiteValidator.java:149)

at org.apache.wss4j.dom.processor.EncryptedKeyProcessor.decryptDataRef(EncryptedKeyProcessor.java:550)

at org.apache.wss4j.dom.processor.EncryptedKeyProcessor.decryptDataRefs(EncryptedKeyProcessor.java:481)

at org.apache.wss4j.dom.processor.EncryptedKeyProcessor.handleToken(EncryptedKeyProcessor.java:199)

at org.apache.wss4j.dom.processor.EncryptedKeyProcessor.handleToken(EncryptedKeyProcessor.java:76)

at org.apache.wss4j.dom.engine.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:344)

 

Pls, check my ws-security configuration to SoapUI. Your advice will be deeply appreciated.

No Replies