How to sign a message with SoapUI

Question

Hello!Using a webservice with ws-security, I have a small java program, which signs by cxf messages send over the web service.Now I would like to test some messages by using SoapUI.Unfortunately, I am not able to configure SoapUI in order to sign the outgoing messages.At the Outgoing WS-Security configurations tab, I have added an item Signature with Keystore, alias, password... and at the Keystores tab I have added the corresponding jks file with the key.At the Auth tab of the request page, I have set the outgoing wss.Still, all messages send from SoapUI are not signed.Could anyone please let me know, how to configure SoapUI so, that it signs the outgoing messages?Maybe I need to add some parts items at the Outgoing WS-Security configurations tab.For more information, I list the corresponding policy file for signing below.Cheers,ATILIUSpolicy file:&lt;?xml version="1.0" encoding="UTF-8"?&gt;&lt;wsp:Policy    wsu:Id='Sig'    xmlns:wsu='http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd'    xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"    xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"    xsi:schemaLocation="      http://schemas.xmlsoap.org/ws/2005/07/securitypolicy      http://schemas.xmlsoap.org/ws/2005/07/s ... policy.xsd      http://schemas.xmlsoap.org/ws/2004/09/policy      http://schemas.xmlsoap.org/ws/2004/09/p ... policy.xsd  "&gt;    &lt;wsp:ExactlyOne&gt;        &lt;wsp:All&gt;            &lt;sp:AsymmetricBinding xmlns:sp='http://schemas.xmlsoap.org/ws/2005/07/securitypolicy'&gt;                &lt;wsp:Policy&gt;                    &lt;sp:InitiatorToken&gt;                        &lt;wsp:Policy&gt;                            &lt;sp:X509Token sp:IncludeToken='http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient'&gt;                                &lt;wsp:Policy&gt;                                    &lt;sp:WssX509V3Token10 /&gt;                                &lt;/wsp:Policy&gt;                            &lt;/sp:X509Token&gt;                        &lt;/wsp:Policy&gt;                    &lt;/sp:InitiatorToken&gt;                    &lt;sp:RecipientToken&gt;                        &lt;wsp:Policy&gt;                            &lt;sp:X509Token sp:IncludeToken='http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Always'&gt;                                &lt;wsp:Policy&gt;                                    &lt;sp:WssX509V3Token10 /&gt;                                &lt;/wsp:Policy&gt;                            &lt;/sp:X509Token&gt;                        &lt;/wsp:Policy&gt;                    &lt;/sp:RecipientToken&gt;                    &lt;sp:AlgorithmSuite&gt;                        &lt;wsp:Policy&gt;                            &lt;sp:Basic256 /&gt;                        &lt;/wsp:Policy&gt;                    &lt;/sp:AlgorithmSuite&gt;                    &lt;sp:Layout&gt;                        &lt;wsp:Policy&gt;                            &lt;sp:Strict /&gt;                        &lt;/wsp:Policy&gt;                    &lt;/sp:Layout&gt;                    &lt;sp:OnlySignEntireHeadersAndBody /&gt;                &lt;/wsp:Policy&gt;            &lt;/sp:AsymmetricBinding&gt;            &lt;sp:Wss10 xmlns:sp='http://schemas.xmlsoap.org/ws/2005/07/securitypolicy'&gt;                &lt;wsp:Policy&gt;                    &lt;sp:MustSupportRefEmbeddedToken /&gt;                &lt;/wsp:Policy&gt;            &lt;/sp:Wss10&gt;            &lt;sp:SignedParts xmlns:sp='http://schemas.xmlsoap.org/ws/2005/07/securitypolicy'&gt;                &lt;sp:Body /&gt;            &lt;/sp:SignedParts&gt;        &lt;/wsp:All&gt;    &lt;/wsp:ExactlyOne&gt;&lt;/wsp:Policy&gt;

marcusj · Answer

Hi,This would be a good start by looking at the link below.http://www.soapui.org/SOAP-and-WSDL/app ... urity.html

atilius · Answer

Hello Marcus!Thanks for the link, but I was on this page before allready and checked it.Still, SoapUI doesn't sign my messages.What is the minimum requirement to sign a message with SoapUI?

pgupta · Answer

Hi ATILIUS,I am trying to configure security in similar way in SOAP UI to get connected to Apache CXF services but I am getting below exception: These policy alternatives can not be satisfied: {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}X509Token: The received token does not match the token inclusion requirement{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Layout: Layout does not match the requirementsJust want to ask if you have encountered similar issue. If yes then what is the possible solution for it. I would highly appreciate if you can give me any pointers on how to configure X509 token in SOAP UI.Thanks, Puneet.

marcusj · Answer

Hi,SoapUI does not currently support the ws-security Layout policy,however, we have an internal feature request of SOAP-2357 for this.

georgianad · Answer

Hi MarcusJ,&nbsp;I am interested to know if this request has been completed : SOAP-2357.Our service is using strict layout and we cannot test it using SOAP UI.If I change the layout to lax layout, everything is working properly.&nbsp;Could you tell me if the latest SoapUI version supports the ws-security Layout policy?&nbsp;Thank you,&nbsp;Best regards,&nbsp;Geo

Forum Discussion

How to sign a message with SoapUI

5 Replies

Related Content

sign and encrypt the request value?

Signing attachment in SoapUI

Identifying Dynamic message window

mysterious message

getting rid of the SoapUI "created in" messages

Recent Discussions

SoapUI OSS apidocs are outdated in April 2024

log4j1.x vulnerability

How to upload a file via SOAP, as an attachment using python zeep

Soapui 5.7.1 dependency : thoughtworks:xstream:jar:1.4.20

How to configure Swagger in Paas to use it in Oracle APEX instance.