rampart

using axis2 ramaprt module with own security framework

落花浮王杯 提交于 2019-12-22 05:55:31
问题 I have webservice (server-side) implemented using axis2 in my project. We want to enable WS-security in the existing web services. We are evaluating if apache ramapart module fits our need. Here is our requirement: Basically we have in-house security framework which provides encryption,signature and token generation capabilites. Our in-house security framework basically requires a set of configurations in form of XML and it expose various APIs to do various security operations. Now with above

PBFT算法流程

£可爱£侵袭症+ 提交于 2019-12-13 18:03:22
【推荐】2019 Java 开发者跳槽指南.pdf(吐血整理) >>> 本文为万向区块链技术中心研究组撰写,介绍了PBFT算法的正常流程。 1. 系统模型 本部分介绍PBFT算法运行的系统模型。 1.1 网络 PBFT工作在异步的分布式系统中,系统中各个节点彼此通过网络连接。 系统运行时,消息的传递允许出现下列情形: 不能正确发送 延迟 重复 乱序 1.2 Byzantine failure model 系统允许错误节点也就是拜占庭节点表现出任意行为,但是需要附加一个限定条件: 节点失效彼此应相互独立,从而大部分或全部节点不会同时失效。 在有恶意攻击存在的情况下,可以采取类似于下列措施来保证这个限制的成立: 各节点运行的服务程序和操作系统的版本尽可能多样化 各节点的管理员帐号和密码不同 1.3 消息加密属性 1.3.1 使用加密技术的目的 防止身份欺骗、重播攻击 监测错误消息 1.3.2 具体使用的加密技术 公钥签名: 用于验证消息发送者身份,PBFT中,实际上只用于view-change和new-view消息,以及出现错误的情况。其他消息都采用下面将会提到的MAC(消息认证码)进行认证。这是算法设计中提出的一种优化措施,用于提升算法性能。 MAC :即消息认证码,用于算法正常操作流程中的消息认证 消息摘要 :用于检测错误消息 1.4 敌手特性 算法限定敌手(adversary

Client giving error when invoking a secured web service

核能气质少年 提交于 2019-12-13 12:23:00
问题 I have written a client that invokes webservice. My client is: String publisherEPR = "https://abc:8280/services/ProviderPublication"; protected void publicationOpenSession(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { System.out.println("Inside publicationOpenSession"); date = new Date(); namespace = "http://www.openoandm.org/xml/ISBM/"; fac = OMAbstractFactory.getOMFactory(); OMNamespace ns = fac.createOMNamespace(namespace, "ns1");

Axis2/Rampart Client Self-Signed Certificates

穿精又带淫゛_ 提交于 2019-12-13 03:38:23
问题 I'm trying to access a web service using a secure client. I generated two files: nb19200.pkcs12 server.jks I pasted the server keystore in tomcat and uploaded the pkcs12 to my browser, everything works well. Now, in my client application, I tried the following: First, export the server certificate, I used the following command: keytool -exportcert -alias servercert -file servercert.cer -keystore server.jks -storepass * * And then import it onto a keystore with nothing in there: keytool

Axis2/Rampart and WCF

风格不统一 提交于 2019-12-13 02:59:30
问题 I'm trying to setup a client using Axis2/Rampart to create a WS-Security call to a WCF .net service hosted by my client. My client is receiving the error: 'The message received over Transport security has unsigned 'To' header.' Does anyone have any ideas what could be the problem? 回答1: Needed to specify e.g. <signatureParts>{Element}{http://schemas.xmlsoap.org/soap/envelope/}To</signatureParts> 来源: https://stackoverflow.com/questions/5095380/axis2-rampart-and-wcf

Axis2/rampart cryptography problem with signaturePropFile

泄露秘密 提交于 2019-12-12 03:41:11
问题 I have problem with WebService client that has to use WS-Security. My client is written with axis2 . It works when I do not enable cryptography (of course with my server emulator). I enabled cryptography by adding to axis.xml : <!--Signature and Encryption : Using the request's certificate--> <module ref="rampart" /> <parameter name="OutflowSecurity"> <action> <items>Signature</items> <user>mn</user> <passwordCallbackClass>PWCallback</passwordCallbackClass> <signaturePropFile>client

Axis2 with Rampart: Undefined 'Security policy namespace cannot be null.' resource property

旧城冷巷雨未停 提交于 2019-12-11 20:14:54
问题 I am creating a web service following the example of "Developing Web Services with Apache Axis2" I am using axis 1.6.2 with rampart 1.6.2 When I execute the client I get the next exception: Exception in thread "main" java.lang.RuntimeException: Undefined 'Security policy namespace cannot be null.' resource property at org.apache.rampart.RampartException.getMessage(RampartException.java:81) at org.apache.rampart.RampartException.<init>(RampartException.java:41) at org.apache.rampart

axis2+rampart: Must Understand check failed for header Security

前提是你 提交于 2019-12-10 11:05:00
问题 I have problem with axis2+rampart WS-Security response in case of server internal error. When server returns "200 OK" all seems ok. Response is checked by rampart if it has proper timestamp, signature and decrypts function response XML. But when server returns "500 Internal Server Error" axis2/rapart throws exception: ERROR Thread-11 org.apache.axis2.engine.AxisEngine - Must Understand check failed for header I thought there is something wrong with answer and tested it with soapUI. There

ERROR engine.AxisEngine: An unsupported signature or encryption algorithm was used (unsupported key transport encryption algorithm: No such algorithm

a 夏天 提交于 2019-12-08 13:39:05
问题 I am getting the below exception when I am calling the SecureStockQuoteProxy service with a proxy service. Here I have exposed this secured service as a REST API (which is unsecured). When I am calling the REST API, ESB throws the below error. [2013-11-24 12:41:46,386] ERROR - AxisEngine InvalidSecurity org.apache.axis2.AxisFault: InvalidSecurity at org.apache.rampart.handler.PostDispatchVerificationHandler.invoke(PostDispatchVerificationHandler.java:164) at org.apache.axis2.engine.Phase

In Apache Axis2/Rampart, while generating wsdl and validating policy, is Ws-security Policy 1.2 assertion <sp:NoPassword/> not handled completely?

◇◆丶佛笑我妖孽 提交于 2019-12-08 00:33:22
问题 We are implementing WS-Security Policy on our web services with the following framework/module/specification. Apache Axis2 1.6.2 Apache Rampart 1.6.2 WS-Security Policy 1.2(namespace:http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702) We are facing the following issues while creating/consuming the service. Axis2 wsdl generation logic ignores <sp:NoPassword/> assertion. After debugging,I realized that it is because of the logic in org.apache.ws.secpolicy.model.UsernameToken (rampart
订阅 rampart