Examples of org.apache.ws.security.WSSecurityEngine

org.apache.ws.security.WSSecurityEngine
WS-Security Engine.
@author Davanum Srinivas (dims@yahoo.com). @author Werner Dittmann (Werner.Dittmann@t-online.de).

        if (msg.containsKey(SECURITY_PROCESSED)) {
            return;
        }
        msg.put(SECURITY_PROCESSED, Boolean.TRUE);
        WSSConfig config = (WSSConfig)msg.getContextualProperty(WSSConfig.class.getName()); 
        WSSecurityEngine engine;
        if (config != null) {
            engine = new WSSecurityEngine();
            engine.setWssConfig(config);
        } else {
            engine = getSecurityEngine();
        }
        
        SOAPMessage doc = getSOAPMessage(msg);
        
        boolean doDebug = LOG.isLoggable(Level.FINE);
        boolean doTimeLog = TIME_LOG.isLoggable(Level.FINE);


        SoapVersion version = msg.getVersion();
        if (doDebug) {
            LOG.fine("WSS4JInInterceptor: enter handleMessage()");
        }


        long t0 = 0;
        long t1 = 0;
        long t2 = 0;
        long t3 = 0;


        if (doTimeLog) {
            t0 = System.currentTimeMillis();
        }


        RequestData reqData = new RequestData();
        /*
         * The overall try, just to have a finally at the end to perform some
         * housekeeping.
         */
        try {
            reqData.setMsgContext(msg);
            computeAction(msg, reqData);
            Vector actions = new Vector();
            String action = getAction(msg, version);


            int doAction = WSSecurityUtil.decodeAction(action, actions);


            String actor = (String)getOption(WSHandlerConstants.ACTOR);


            CallbackHandler cbHandler = getCallback(reqData, doAction);


            /*
             * Get and check the Signature specific parameters first because
             * they may be used for encryption too.
             */
            doReceiverAction(doAction, reqData);
            
            Vector wsResult = null;
            if (doTimeLog) {
                t1 = System.currentTimeMillis();
            }


            wsResult = engine.processSecurityHeader(
                doc.getSOAPPart(), 
                actor, 
                cbHandler, 
                reqData.getSigCrypto(), 
                reqData.getDecCrypto()

View Full Code Here

                config.setProcessor(key, (Processor)val);
            } else if (val == null) {
                config.setProcessor(key, (String)val);
            }
        }
        final WSSecurityEngine ret = new WSSecurityEngine();
        ret.setWssConfig(config);
        return ret;
    }

View Full Code Here

     * @param crypto
     * @throws WSSecurityException
     */
    public void doDecryption(String callback, Crypto crypto)
            throws WSSecurityException {
        WSSecurityEngine secEngine = new WSSecurityEngine();
        CallbackHandler cbHandler;


        // Element
        NodeList ndList =
                this.element.getElementsByTagNameNS("http://www.w3.org/2001/04/xmlenc#",
                        "EncryptedKey");
        if (ndList.getLength() < 1) {
            throw new WSSecurityException(WSSecurityException.SECURITY_TOKEN_UNAVAILABLE,
                    "RequestedProofToken is empty");
        }


        // CbHandler :: taken from WSSecurityEngine class
        if (callback != null) {
            Class cbClass = null;
            try {
                cbClass = Loader.loadClass(callback);
            } catch (ClassNotFoundException e) {
                throw new WSSecurityException(WSSecurityException.FAILED_ENC_DEC,
                        "RequestedProofToken: cannot load password callback class: "
                        + callback);
            }
            try {
                cbHandler = (CallbackHandler) cbClass.newInstance();
            } catch (java.lang.Exception e) {
                throw new WSSecurityException(WSSecurityException.FAILED_ENC_DEC,
                        "RequestedProofToken: cannot create instance of password callback: "
                        + callback +":: ErrMsg "+e.getMessage());
            }
            secEngine.handleEncryptedKey((Element) ndList.item(0),
                    cbHandler,
                    crypto);


            this.sharedSecret = secEngine.getDecryptedBytes();
            log.debug(" RequestedProofToken, decryption ,Shared secret is :: " + new String(this.sharedSecret));
        } else {
            log.debug("RequestedProofToken :: CallbackHandler is null");
            throw new WSSecurityException(WSSecurityException.FAILURE, "CallbackHandler is null");
        }

View Full Code Here

                e1);
        }






    WSSecurityEngine eng = new WSSecurityEngine();
        boolean content = this.isContent(encBodyData);//Whether content encryption or element encryption


        if (content) {
            encBodyData = (Element) encBodyData.getParentNode();
        }else{

View Full Code Here


      }else{
        throw new ConversationException("Cannot find passwordcallback");
      }


            WSSecurityEngine eng = new WSSecurityEngine();
            eng.handleEncryptedKey(eleEnc, cbHandler, crypto);
            byte[] key = eng.getDecryptedBytes();


            return key;


      }catch (WSSecurityException e1) {
      // TODO Auto-generated catch block

View Full Code Here

    }




    Vector results = null;


    WSSecurityEngine engine = new WSSecurityEngine();


    ValidatorData data = new ValidatorData(rmd);


    SOAPHeader header = rmd.getMsgContext().getEnvelope().getHeader();
    if(header == null) {
        throw new RampartException("missingSOAPHeader");
    }
    
                ArrayList headerBlocks = header.getHeaderBlocksWithNSURI(WSConstants.WSSE_NS);
    SOAPHeaderBlock secHeader = null;
    //Issue is axiom - a returned collection must not be null
    if(headerBlocks != null) {
        Iterator headerBlocksIterator = headerBlocks.iterator();
        while (headerBlocksIterator.hasNext()) {
          SOAPHeaderBlock elem = (SOAPHeaderBlock) headerBlocksIterator.next();
          if(elem.getLocalName().equals(WSConstants.WSSE_LN)) {
            secHeader = elem;
            break;
          }
        }
    }
    
    if(secHeader == null) {
        throw new RampartException("missingSecurityHeader");
    }
    
    long t0=0, t1=0, t2=0, t3=0;
    if(dotDebug){
      t0 = System.currentTimeMillis();
    }


    String actorValue = secHeader.getAttributeValue(new QName(rmd
        .getSoapConstants().getEnvelopeURI(), "actor"));


    Crypto signatureCrypto = RampartUtil.getSignatureCrypto(rpd.getRampartConfig(), 
            msgCtx.getAxisService().getClassLoader());
        TokenCallbackHandler tokenCallbackHandler = new TokenCallbackHandler(rmd.getTokenStorage(), RampartUtil.getPasswordCB(rmd));
        if(rpd.isSymmetricBinding()) {
      //Here we have to create the CB handler to get the tokens from the 
      //token storage
      log.debug("Processing security header using SymetricBinding");
      results = engine.processSecurityHeader(rmd.getDocument(),
          actorValue, 
          tokenCallbackHandler,
          signatureCrypto, 
                  RampartUtil.getEncryptionCrypto(rpd.getRampartConfig(), 
                          msgCtx.getAxisService().getClassLoader()));


            // Remove encryption tokens if this is the initiator and if initiator is receiving a message


            if (rmd.isInitiator() && (msgCtx.getFLOW() == MessageContext.IN_FLOW ||
                    msgCtx.getFLOW() == MessageContext.IN_FAULT_FLOW)) {
                tokenCallbackHandler.removeEncryptedToken();
            }


    } else {
      log.debug("Processing security header in normal path");
      results = engine.processSecurityHeader(rmd.getDocument(),
          actorValue, 
          tokenCallbackHandler,
          signatureCrypto, 
              RampartUtil.getEncryptionCrypto(rpd.getRampartConfig(), 
                  msgCtx.getAxisService().getClassLoader()));

View Full Code Here

                config.setProcessor(key, (Processor)val);
            } else if (val == null) {
                config.setProcessor(key, (String)val);
            }
        }
        final WSSecurityEngine ret = new WSSecurityEngine();
        ret.setWssConfig(config);
        return ret;
    }

View Full Code Here

                org.apache.ws.security.util.XMLUtils.PrettyDocumentToString(signedDoc);
            LOG.debug(outputString);
        }
        
        // Turn off BSP spec compliance
        WSSecurityEngine newEngine = new WSSecurityEngine();
        WSSConfig config = WSSConfig.getNewInstance();
        config.setWsiBSPCompliant(false);
        newEngine.setWssConfig(config);
        newEngine.processSecurityHeader(doc, null, null, crypto);
        
        // Now turn on BSP spec compliance
        config.setWsiBSPCompliant(true);
        newEngine.setWssConfig(config);
        try {
            newEngine.processSecurityHeader(doc, null, null, crypto);
            fail("Failure expected on a bad c14n algorithm");
        } catch (WSSecurityException ex) {
            assertTrue(ex.getMessage().contains("bad canonicalization algorithm"));
        }
    }

View Full Code Here

                org.apache.ws.security.util.XMLUtils.PrettyDocumentToString(signedDoc);
            LOG.debug(outputString);
        }
        
        // Turn off BSP spec compliance
        WSSecurityEngine newEngine = new WSSecurityEngine();
        WSSConfig config = WSSConfig.getNewInstance();
        config.setWsiBSPCompliant(false);
        newEngine.setWssConfig(config);
        List<WSSecurityEngineResult> results = newEngine.processSecurityHeader(doc, null, null, crypto);
        
        WSSecurityEngineResult actionResult =
                WSSecurityUtil.fetchActionResult(results, WSConstants.SIGN);
        assertNotNull(actionResult.get(WSSecurityEngineResult.TAG_X509_CERTIFICATE));
        assertNotNull(actionResult.get(WSSecurityEngineResult.TAG_X509_REFERENCE_TYPE));
        REFERENCE_TYPE referenceType = 
            (REFERENCE_TYPE)actionResult.get(WSSecurityEngineResult.TAG_X509_REFERENCE_TYPE);
        assertTrue(referenceType == REFERENCE_TYPE.KEY_IDENTIFIER);
        
        // Now turn on BSP spec compliance
        config.setWsiBSPCompliant(true);
        newEngine.setWssConfig(config);
        try {
            newEngine.processSecurityHeader(doc, null, null, crypto);
            fail("Failure expected on a bad ValueType attribute");
        } catch (WSSecurityException ex) {
            // expected
        }
    }

View Full Code Here

            String outputString = 
                org.apache.ws.security.util.XMLUtils.PrettyDocumentToString(signedDoc);
            LOG.debug(outputString);
        }
        LOG.info("After Signing IS....");
        WSSecurityEngine newEngine = new WSSecurityEngine();
        newEngine.processSecurityHeader(doc, null, null, passwordCrypto);
    }

View Full Code Here

0 1 2 3 4 5 6 7 8 9

TOP

Related Classes of org.apache.ws.security.WSSecurityEngine

br.net.woodstock.rockframework.web.ws.wss4j.WSS4JHelper

br.net.woodstock.rockframework.ws.wss4j.WSS4JHelper

com.eviware.soapui.impl.wsdl.support.wss.entries.SignatureEntryTest

com.eviware.soapui.impl.wsdl.support.wss.IncomingWss

org.apache.cxf.sts.request.RequestParserUnitTest

org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor

org.apache.rampart.RampartEngine

org.apache.ws.sandbox.security.conversation.ConversationEngine

org.apache.ws.sandbox.security.trust.message.token.RequestedProofToken

org.apache.ws.security.components.crypto.CertificateStoreTest

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.