Stack Overflow
Stack Overflow

Questions tagged [ws-security]

WS-Security is an extension to SOAP for applying security to web-services through XML Signature and XML Encryption.

WS-Security is an extension to SOAP for applying security to web-services through XML Signature and XML Encryption.

939 questions
0
votes
1 answer

In ws-security under UsernameToken, is not a valid assertion?

We are implementing the web services using Apache Axis2 and integrating with WS-Security (using Apache Rampart module) too. We are trying to define the Ws-Security policy that does NOT force the consumer to send the password in Usernametoken…
aRvi
  • 107
  • 1
  • 2
  • 13
0
votes
1 answer

How to set SOAP header on PHP to authenticate a web service?

I need to set the SOAP header into this format:
maikelsabido
  • 1,253
  • 4
  • 18
  • 37
0
votes
1 answer

Mule SOAP generic config reference for implementing security

Just tried with implementing WS Security in SOAP using UsernameToken in mule. It worked fine. Now since i am using SOAP component at various locations in my mule project, i want to know if there is any way to define WS security parameter globally…
Vah1d
  • 13
  • 5
0
votes
0 answers

How to Consume a secured web service with WS-Security via SOAP [PHP]?

I'm trying to connect to a secured web service (HTTPS - TLS v3) but I'm getting this error: Uncaught SoapFault exception: [WSDL] SOAP-ERROR: Parsing WSDL: Couldn't load from …
maikelsabido
  • 1,253
  • 4
  • 18
  • 37
0
votes
1 answer

Setting a SOAP Test Request's WSS-Password Type with Groovy

In SoapUI 4.5.2, I can generally get & set test-request properties with Groovy in a test-case setup script (e.g. someTestRequestStep.getPropertyValue("Password") and someTestRequestStep.setPropertyValue("Password", "S0mePassw0rd"))...except for the…
J0e3gan
  • 8,740
  • 10
  • 53
  • 80
0
votes
1 answer

Grails + CXF + secureServiceFactory

When I try run this script to secure my web services on Grails / CXF client I get "Cannot invoke method getInInterceptors() on null object" on secureServiceFactory Does secureServiceFactory need to be set somewhere else? Any ideas: Code : class…
user2672286
  • 41
  • 3
0
votes
2 answers

Is it impossible to have both transport level security and message level security in rampart? Why?

I'm using rampart to secure communication from a webservice client. Following the specification i defined an asymmetric binding assertion to provide message level security, but I also want to have the communication with webservice over SSL, thus I…
kemot
  • 26
  • 4
0
votes
1 answer

wso2 getting org.apache.rampart.RampartException: Unsupported SignedSupportingToken

We are trying to do a poc in wso2 esb to invoke our BE service which is ws-security enabled. We have setup a pass thru proxy in wso2 and configured the endpoint according to www.soasecurity.org. However, we keep getting the below error when trying…
user2708884
  • 1
0
votes
1 answer

WCF Client for Axis2/Rampart Webservice using WS security without client certificate

I´m just facing some problems setting up a WCF(.NET 4.0) webservice to call an Axis2 Rampart webservice. I´m new to WCF and i didn´t find a tutorial wich completly fits this special scenario. Here are the facts: The webservice i have to call is an…
Jan M.
  • 3
  • 4
0
votes
0 answers

Invoking Secure .asmx webservice from Java

I have a webservice whose url is something like this: http://pc212323/AdminService/HelloWorldService.asmx?wsdl Now when i hit this service from soapUI it asks for Username, Password in a saperate popup window. This is done before soapUI loads the…
Roy
  • 1,231
  • 1
  • 24
  • 61
0
votes
1 answer

Apache rampart is not loading security policy

I am working on a web-service created with embedded axis2 servlet and rampart (both version 1.4). I created correct directory structure and placed all required modules and libs. When using it without any security policy everything works fine.…
Anna Stępień
  • 41
  • 6
0
votes
1 answer

Using WL.Server.signSoapMessage API

I need to sign different part of a SOAP envelope. Can this be done by calling the WL.Server.signSoapMessage api multiple times with different values for the second parameter, namely the tag id. I notice that when I call this api the second time for…
user2291904
  • 1
  • 2
0
votes
1 answer

What are those "garbage" 16 bytes at the beginning of an unencrypted EncryptedData tag from an encrypted ws-security SOAP message? (WCF)

I'm inspecting a WCF request message in order to implement part of the WS-Security standard to have iPhone <-> WCF intercommunication (I'm using certificate security over basicHttpBinding). After reading the standard xmlenc-core I could decrypt both…
TehJabbit
  • 239
  • 1
  • 2
  • 8
0
votes
1 answer

WCF client for consuming ASMX service with WS-Security

I have a ASMX web service (SOAP 1.1) that requires to sign all SOAP requests with certificate (private key) using WS-Security. When the ASMX service receives the request, it will authenticate it using the public key of the certificate. After the…
Sash
  • 493
  • 2
  • 10
  • 19
0
votes
1 answer

How to get RequestSecurityToken.AppliesTo from a custom SecurityTokenHandler

I'm implementing a custom UserNameSecurityTokenHandler which validates a request token based on 3 things: username, password, and the AppliesTo value of a RequestSecurityToken. While the username and password values are available for me to use, I…
Thuan
  • 1,618
  • 1
  • 10
  • 21
1 2 3
62 63