Examples of org.apache.ws.security.WSSecurityEngine.processSecurityHeader()

Class org.apache.ws.security.WSSecurityEngine

Examples of org.apache.ws.security.WSSecurityEngine.processSecurityHeader()

org.apache.ws.security.WSSecurityEngine.processSecurityHeader()
Process the security header given the soap envelope as W3C document.
This is the main entry point to verify or decrypt a SOAP enevelope. First check if a wsse:Security is availabe with the defined actor. @param doc the SOAP envelope as {@link Document} @param actor the engine works on behalf of this actor. Referto the SOAP specification about actor or role @param cb a callback hander to the caller to resolve passwords duringencryption and {@link UsernameToken} handling @param crypto the object that implements the access to the keystore and thehandling of certificates. @return a result vector @throws WSSecurityException @see WSSecurityEngine#processSecurityHeader(Element securityHeader,CallbackHandler cb,Crypto sigCrypto,Crypto decCrypto)

            LOG.debug(outputString);
        }
        
        WSSecurityEngine newEngine = new WSSecurityEngine();
        try {
            newEngine.processSecurityHeader(doc, null, callbackHandler, null);
            fail("Expected failure as it is not BSP compliant");
        } catch (WSSecurityException ex) {
            // expected
        }
        WSSConfig config = WSSConfig.getNewInstance();

View Full Code Here

            // expected
        }
        WSSConfig config = WSSConfig.getNewInstance();
        config.setWsiBSPCompliant(false);
        newEngine.setWssConfig(config);
        newEngine.processSecurityHeader(doc, null, callbackHandler, null);
    }
    
    /**
     * A test for sending multiple passwords in the UsernameToken
     */

View Full Code Here

            LOG.debug(outputString);
        }
        
        WSSecurityEngine newEngine = new WSSecurityEngine();
        try {
            newEngine.processSecurityHeader(doc, null, callbackHandler, null);
            fail("Expected failure as it is not BSP compliant");
        } catch (WSSecurityException ex) {
            // expected
        }
        WSSConfig config = WSSConfig.getNewInstance();

View Full Code Here

            // expected
        }
        WSSConfig config = WSSConfig.getNewInstance();
        config.setWsiBSPCompliant(false);
        newEngine.setWssConfig(config);
        newEngine.processSecurityHeader(doc, null, callbackHandler, null);
    }
    
    /**
     * A test for sending a nonce with a bad encoding type in the UsernameToken
     */

View Full Code Here

            LOG.debug(outputString);
        }
        
        WSSecurityEngine newEngine = new WSSecurityEngine();
        try {
            newEngine.processSecurityHeader(doc, null, callbackHandler, null);
            fail("Expected failure as it is not BSP compliant");
        } catch (WSSecurityException ex) {
            // expected
        }
        WSSConfig config = WSSConfig.getNewInstance();

View Full Code Here

            // expected
        }
        WSSConfig config = WSSConfig.getNewInstance();
        config.setWsiBSPCompliant(false);
        newEngine.setWssConfig(config);
        newEngine.processSecurityHeader(doc, null, callbackHandler, null);
    }
    
    private List<WSSecurityEngineResult> verify(Document doc) throws Exception {
        return verify(doc, false);
    }

View Full Code Here

    private List<WSSecurityEngineResult> verify(Document doc, boolean allowUsernameTokenDerivedKeys) throws Exception {
        WSSecurityEngine secEngine = new WSSecurityEngine();
        WSSConfig config = WSSConfig.getNewInstance();
        config.setAllowUsernameTokenNoPassword(allowUsernameTokenDerivedKeys);
        secEngine.setWssConfig(config);
        return secEngine.processSecurityHeader(doc, null, callbackHandler, null);
    }
    
    /**
     * A CallbackHandler for some (mostly insecure) scenarios.
     */

View Full Code Here

      //Here we have to create the CB handler to get the tokens from the 
      //token storage
      if(doDebug){
        log.debug("Processing security header using SymetricBinding");
      }
      results = engine.processSecurityHeader(rmd.getDocument(), 
          actorValue, 
          tokenCallbackHandler,
          signatureCrypto, 
                  RampartUtil.getEncryptionCrypto(rpd.getRampartConfig(), 
                          msgCtx.getAxisService().getClassLoader()));

View Full Code Here

                          msgCtx.getAxisService().getClassLoader()));
    } else {
      if(doDebug){
        log.debug("Processing security header in normal path");
      }
      results = engine.processSecurityHeader(rmd.getDocument(),
          actorValue, 
          tokenCallbackHandler,
          signatureCrypto, 
              RampartUtil.getEncryptionCrypto(rpd.getRampartConfig(), 
                  msgCtx.getAxisService().getClassLoader()));

View Full Code Here

            if (doTimeLog) {
                t1 = System.currentTimeMillis();
            }
            Element elem = WSSecurityUtil.getSecurityHeader(doc.getSOAPPart(), actor);


            List<WSSecurityEngineResult> wsResult = engine.processSecurityHeader(
                elem, reqData
            );


            if (doTimeLog) {
                t2 = System.currentTimeMillis();

View Full Code Here

0 1 2 3 4 5 6 7 8 9

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.