tag:blogger.com,1999:blog-7391783704166348052.post8968453359448794673..comments2024-03-15T22:26:58.542-07:00Comments on Open Source Security: Apache CXF STS documentation - part VIColm O hEigeartaighhttp://www.blogger.com/profile/10711987281965801793noreply@blogger.comBlogger7125tag:blogger.com,1999:blog-7391783704166348052.post-35421376518054779312013-11-04T07:27:07.866-08:002013-11-04T07:27:07.866-08:00I've been pointed to the last comment by Colm;...I've been pointed to the last comment by Colm; if the stacktrace is from JBoss AS 7, I basically suggest upgrading to a newer version / to WildFly, basically because at the time Apache CXF 2.4.x was used in the JBoss integration with CXF, the SAML and WS-Trust functionalities were not tested / working.<br /><br />Btw, I believe this is related to the JBoss forum thread I just comment on at https://community.jboss.org/message/844345#844345Alessio Soldanohttps://www.blogger.com/profile/15231208472339526847noreply@blogger.comtag:blogger.com,1999:blog-7391783704166348052.post-75268006315500814712013-11-01T14:38:15.292-07:002013-11-01T14:38:15.292-07:00Colm:
I have a similar issue (as above). I am us...Colm:<br /><br />I have a similar issue (as above). I am using PicketLinkSTS to issue a token for a secure service (that is using MEX tag). The problem appears to be inside the Secure Service, at the point the token is issued and returned from the STS. I stepped through the classes and they match up with your explanation above. However I am not sure why I'd get the following exception<br /><br />Caused by: org.apache.ws.security.WSSecurityException: General security error (Unable to load class org.apache.ws.security.validate.SamlAssertionValidator)<br /> at org.apache.ws.security.WSSConfig.getValidator(WSSConfig.java:765) [wss4j-1.6.5.jar:1.6.5]<br /> at org.apache.ws.security.handler.RequestData.getValidator(RequestData.java:451) [wss4j-1.6.5.jar:1.6.5]<br /> at org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor$CXFRequestData.getValidator(WSS4JInInterceptor.java:692) [cxf-rt-ws-security-2.4.6.jar:2.4.6]<br /> at org.apache.ws.security.processor.SAMLTokenProcessor.handleToken(SAMLTokenProcessor.java:51) [wss4j-1.6.5.jar:1.6.5]<br /> at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:397) [wss4j-1.6.5.jar:1.6.5]<br /> at org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.handleMessage(WSS4JInInterceptor.java:249) [cxf-rt-ws-security-2.4.6.jar:2.4.6]<br /> ... 28 more<br />Caused by: java.lang.NoClassDefFoundError: org/opensaml/xml/validation/ValidationException<br /> at java.lang.Class.getDeclaredConstructors0(Native Method) [rt.jar:1.7.0_21]<br /> at java.lang.Class.privateGetDeclaredConstructors(Class.java:2413) [rt.jar:1.7.0_21]<br /> at java.lang.Class.getConstructor0(Class.java:2723) [rt.jar:1.7.0_21]<br /> at java.lang.Class.newInstance0(Class.java:345) [rt.jar:1.7.0_21]<br /> at java.lang.Class.newInstance(Class.java:327) [rt.jar:1.7.0_21]<br /> at org.apache.ws.security.WSSConfig.getValidator(WSSConfig.java:760) [wss4j-1.6.5.jar:1.6.5]<br /><br /><br /><br />Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-7391783704166348052.post-69251207152074019872012-02-20T08:12:30.429-08:002012-02-20T08:12:30.429-08:00Hi,
I suggest posting a more in-depth explanation...Hi,<br /><br />I suggest posting a more in-depth explanation of your use-case to the CXF users mailing list.<br /><br />Colm.Colm O hEigeartaighhttps://www.blogger.com/profile/10711987281965801793noreply@blogger.comtag:blogger.com,1999:blog-7391783704166348052.post-75469940549877161412012-02-07T20:44:25.184-08:002012-02-07T20:44:25.184-08:00Hi,
I am sending a username token and then validat...Hi,<br />I am sending a username token and then validating the username token. On validation of user name token STS provides me SAML token. everything is working fine but i am not able to see SAML token in my response from STS . However i am able to see username token. I want to see SAML token. Please help.Rakshit Jainhttps://www.blogger.com/profile/14695146210350114818noreply@blogger.comtag:blogger.com,1999:blog-7391783704166348052.post-12922678786754962822011-11-15T09:37:41.410-08:002011-11-15T09:37:41.410-08:00Thanks. I replied to the cxf-dev forum post.Thanks. I replied to the cxf-dev forum post.Danhttps://www.blogger.com/profile/09520090542388126977noreply@blogger.comtag:blogger.com,1999:blog-7391783704166348052.post-52557966875448935942011-11-15T01:23:44.795-08:002011-11-15T01:23:44.795-08:00Hi Dan,
I already answered your question on dev@c...Hi Dan,<br /><br />I already answered your question on dev@cxf here:<br /><br />http://cxf.547215.n5.nabble.com/Re-General-security-error-Provided-SAML-token-does-not-contain-a-suitable-key-td4990489.html<br /><br />Colm.Colm O hEigeartaighhttps://www.blogger.com/profile/10711987281965801793noreply@blogger.comtag:blogger.com,1999:blog-7391783704166348052.post-65941986947528324262011-11-14T13:52:50.243-08:002011-11-14T13:52:50.243-08:00I am getting the following error while trying to h...I am getting the following error while trying to have CXF consume a SAML token. What could be the cause of this error? <br /><br />Caused by: org.apache.ws.security.WSSecurityException: General security error (Provided SAML token does not contain a suitable key) <br /> at org.apache.ws.security.validate.SamlAssertionValidator.validate(SamlAssertionValidator.java:61) <br /> at org.apache.ws.security.processor.SAMLTokenProcessor.handleSAMLToken(SAMLTokenProcessor.java:118) <br /> at org.apache.ws.security.processor.SAMLTokenProcessor.handleToken(SAMLTokenProcessor.java:53) <br /> at org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:396) <br /> at org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor.handleMessage(WSS4JInInterceptor.java:249) <br /> <br />By the way, I am using CXF 2.5.0 for the server while the client is .NET.Danhttps://www.blogger.com/profile/09520090542388126977noreply@blogger.com