Skip to main content

JAVA Client for WCF web service STS secured

1 reply [Last post]
Anonymous

Guys, i am very new to this whole web service security and interoperability
stuff so pardon for asking silly questions. I need to write a client in java
to access a third party web service that is most likely implemented in WCF
and is STS secured.
All I have is wsdl for the STS and web service itself and user name/
password.
I Was told to pass an attribute (name = some value) as part of claim as
well.

I have been trying to use the various instructions given using net beans IDE
and my best effort is struck at an error message from server that reads ‘An
error occurred when verifying security for the message.’.

I have created the client for both wsdl using NetBeans 7.2.1 and running in
Glassfish 3.1.2

I followed the steps to create web service client and edit ‘web service
attributes’ instructions.

I really don’t digest when I am setting up key store and trust store, how
would the STS server is going to reconcile with these certificates and
aliases, where is the bridge between these two?

Also this STS wsdl has a X509 certificate tag and, is this the key factor
here, how do I bring that certificate in my keystore (if i have to) and
somehow use it in the process.

Thanks

Reply viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.
Glen Mazza

My Metro STS tutorial may be of help for you:
http://www.jroller.com/gmazza/entry/metro_sts_tutorial , see also my
other security articles here:
http://www.jroller.com/gmazza/entry/blog_article_index .

Glen

On 03/07/2013 04:36 PM, rosadom wrote:
> Guys, i am very new to this whole web service security and interoperability
> stuff so pardon for asking silly questions. I need to write a client in java
> to access a third party web service that is most likely implemented in WCF
> and is STS secured.
> All I have is wsdl for the STS and web service itself and user name/
> password.
> I Was told to pass an attribute (name = some value) as part of claim as
> well.
>
> I have been trying to use the various instructions given using net beans IDE
> and my best effort is struck at an error message from server that reads ‘An
> error occurred when verifying security for the message.’.
>
> I have created the client for both wsdl using NetBeans 7.2.1 and running in
> Glassfish 3.1.2
>
> I followed the steps to create web service client and edit ‘web service
> attributes’ instructions.
>
> I really don’t digest when I am setting up key store and trust store, how
> would the STS server is going to reconcile with these certificates and
> aliases, where is the bridge between these two?
>
> Also this STS wsdl has a X509 certificate tag and, is this the key factor
> here, how do I bring that certificate in my keystore (if i have to) and
> somehow use it in the process.
>
> Thanks
>
>
>
>