Skip to main content

WSITPVD0035: Error in Verifying Security in Inbound Message. WssSoapFaultException: Invalid Security Header

Please note these java.net forums are being decommissioned and use the new and improved forums at https://community.oracle.com/community/java.
1 reply [Last post]
delaitt
Offline
Joined: 2004-03-04

hello

I'm using GF 3.1.2 and get the following error on the GF log:

This is a web service. I'm using a properly signed cert and have all the relevant chain cert, etc.

any idea how to troubleshoot or what could be causing this ?

thanks

[#|2012-03-23T09:06:15.871+0000|SEVERE|glassfish3.1.2|com.sun.xml.wss.provider.wsit|_ThreadID=519;_ThreadName=Thread-2;|WSITPVD0035: Error in Verifying Security in Inbound Message. com.sun.xml.wss.impl.WssSoapFaultException: Invalid Security Header at com.sun.xml.ws.security.opt.impl.util.SOAPUtil.newSOAPFaultException(SOAPUtil.java:159) at com.sun.xml.wss.impl.misc.WSITProviderSecurityEnvironment.validateCreationTime(WSITProviderSecurityEnvironment.java:2646) at com.sun.xml.wss.impl.misc.WSITProviderSecurityEnvironment.validateTimestamp(WSITProviderSecurityEnvironment.java:2496) at com.sun.xml.ws.security.opt.impl.incoming.TimestampHeader.validate(TimestampHeader.java:109) at com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.handleSecurityHeader(SecurityRecipient.java:350) at com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.cacheHeaders(SecurityRecipient.java:291) at com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.validateMessage(SecurityRecipient.java:241) at com.sun.xml.wss.provider.wsit.WSITServerAuthContext.verifyInboundMessage(WSITServerAuthContext.java:588) at com.sun.xml.wss.provider.wsit.WSITServerAuthContext.validateRequest(WSITServerAuthContext.java:361) at com.sun.xml.wss.provider.wsit.WSITServerAuthContext.validateRequest(WSITServerAuthContext.java:264) at com.sun.enterprise.security.webservices.CommonServerSecurityPipe.processRequest(CommonServerSecurityPipe.java:173) at com.sun.enterprise.security.webservices.CommonServerSecurityPipe.process(CommonServerSecurityPipe.java:144) at com.sun.xml.ws.api.pipe.helper.PipeAdapter.processRequest(PipeAdapter.java:119) at com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:961) at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:910) at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:873) at com.sun.xml.ws.api.pipe.Fiber.runSync(Fiber.java:775) at com.sun.xml.ws.server.WSEndpointImpl$2.process(WSEndpointImpl.java:386) at com.sun.xml.ws.transport.http.HttpAdapter$HttpToolkit.handle(HttpAdapter.java:640) at com.sun.xml.ws.transport.http.HttpAdapter.handle(HttpAdapter.java:263) at com.sun.xml.ws.transport.http.servlet.ServletAdapter.handle(ServletAdapter.java:163) at org.glassfish.webservices.JAXWSServlet.doPost(JAXWSServlet.java:145) at javax.servlet.http.HttpServlet.service(HttpServlet.java:688) at javax.servlet.http.HttpServlet.service(HttpServlet.java:770) at org.apache.catalina.core.StandardWrapper.service(StandardWrapper.java:1542) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:281) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175) at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:655) at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:595) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:161) at org.apache.catalina.connector.CoyoteAdapter.doService(CoyoteAdapter.java:331) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:231) at com.sun.enterprise.v3.services.impl.ContainerMapper$AdapterCallable.call(ContainerMapper.java:317) at com.sun.enterprise.v3.services.impl.ContainerMapper.service(ContainerMapper.java:195) at com.sun.grizzly.http.ProcessorTask.invokeAdapter(ProcessorTask.java:849) at com.sun.grizzly.http.ProcessorTask.doProcess(ProcessorTask.java:746) at com.sun.grizzly.http.ProcessorTask.process(ProcessorTask.java:1045) at com.sun.grizzly.http.DefaultProtocolFilter.execute(DefaultProtocolFilter.java:228) at com.sun.grizzly.DefaultProtocolChain.executeProtocolFilter(DefaultProtocolChain.java:137) at com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:104) at com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:90) at com.sun.grizzly.http.HttpProtocolChain.execute(HttpProtocolChain.java:79) at com.sun.grizzly.ProtocolChainContextTask.doCall(ProtocolChainContextTask.java:54)

Reply viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.
Kumar Jayanti Guest
Offline
Joined: 2011-04-02

>From the stack trace it appears the Validation of Timestamp in the message failed. Specifically the creation time validation has failed. Can you send more of the server.log above and below this exception for a log message indicating what the exact error is.

On 23-Mar-2012, at 2:47 PM, forums@java.net wrote:

> hello
>
> I'm using GF 3.1.2 and get the following error on the GF log:
>
> This is a web service. I'm using a properly signed cert and have all the
> relevant chain cert, etc.
>
> any idea how to troubleshoot or what could be causing this ?
>
> thanks
>
> [#|2012-03-23T09:06:15.871+0000|SEVERE|glassfish3.1.2|com.sun.xml.wss.provider.wsit|_ThreadID=519;_ThreadName=Thread-2;|WSITPVD0035:
> Error in Verifying Security in Inbound Message.
> com.sun.xml.wss.impl.WssSoapFaultException: Invalid Security Header at
> com.sun.xml.ws.security.opt.impl.util.SOAPUtil.newSOAPFaultException(SOAPUtil.java:159)
> at
> com.sun.xml.wss.impl.misc.WSITProviderSecurityEnvironment.validateCreationTime(WSITProviderSecurityEnvironment.java:2646)
> at
> com.sun.xml.wss.impl.misc.WSITProviderSecurityEnvironment.validateTimestamp(WSITProviderSecurityEnvironment.java:2496)
> at
> com.sun.xml.ws.security.opt.impl.incoming.TimestampHeader.validate(TimestampHeader.java:109)
> at
> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.handleSecurityHeader(SecurityRecipient.java:350)
> at
> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.cacheHeaders(SecurityRecipient.java:291)
> at
> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.validateMessage(SecurityRecipient.java:241)
> at
> com.sun.xml.wss.provider.wsit.WSITServerAuthContext.verifyInboundMessage(WSITServerAuthContext.java:588)
> at
> com.sun.xml.wss.provider.wsit.WSITServerAuthContext.validateRequest(WSITServerAuthContext.java:361)
> at
> com.sun.xml.wss.provider.wsit.WSITServerAuthContext.validateRequest(WSITServerAuthContext.java:264)
> at
> com.sun.enterprise.security.webservices.CommonServerSecurityPipe.processRequest(CommonServerSecurityPipe.java:173)
> at
> com.sun.enterprise.security.webservices.CommonServerSecurityPipe.process(CommonServerSecurityPipe.java:144)
> at
> com.sun.xml.ws.api.pipe.helper.PipeAdapter.processRequest(PipeAdapter.java:119)
> at com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:961) at
> com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:910) at
> com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:873) at
> com.sun.xml.ws.api.pipe.Fiber.runSync(Fiber.java:775) at
> com.sun.xml.ws.server.WSEndpointImpl$2.process(WSEndpointImpl.java:386) at
> com.sun.xml.ws.transport.http.HttpAdapter$HttpToolkit.handle(HttpAdapter.java:640)
> at com.sun.xml.ws.transport.http.HttpAdapter.handle(HttpAdapter.java:263) at
> com.sun.xml.ws.transport.http.servlet.ServletAdapter.handle(ServletAdapter.java:163)
> at org.glassfish.webservices.JAXWSServlet.doPost(JAXWSServlet.java:145) at
> javax.servlet.http.HttpServlet.service(HttpServlet.java:688) at
> javax.servlet.http.HttpServlet.service(HttpServlet.java:770) at
> org.apache.catalina.core.StandardWrapper.service(StandardWrapper.java:1542)
> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:281)
> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175)
> at
> org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:655)
> at
> org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:595)
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:161)
> at
> org.apache.catalina.connector.CoyoteAdapter.doService(CoyoteAdapter.java:331)
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:231)
> at
> com.sun.enterprise.v3.services.impl.ContainerMapper$AdapterCallable.call(ContainerMapper.java:317)
> at
> com.sun.enterprise.v3.services.impl.ContainerMapper.service(ContainerMapper.java:195)
> at com.sun.grizzly.http.ProcessorTask.invokeAdapter(ProcessorTask.java:849)
> at com.sun.grizzly.http.ProcessorTask.doProcess(ProcessorTask.java:746) at
> com.sun.grizzly.http.ProcessorTask.process(ProcessorTask.java:1045) at
> com.sun.grizzly.http.DefaultProtocolFilter.execute(DefaultProtocolFilter.java:228)
> at
> com.sun.grizzly.DefaultProtocolChain.executeProtocolFilter(DefaultProtocolChain.java:137)
> at
> com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:104)
> at com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:90)
> at com.sun.grizzly.http.HttpProtocolChain.execute(HttpProtocolChain.java:79)
> at
> com.sun.grizzly.ProtocolChainContextTask.doCall(ProtocolChainContextTask.java:54)
>
>
> --
>
> [Message sent by forum member 'delaitt']
>
> View Post: http://forums.java.net/node/884493
>
>