Java webservice using WCF/Zermatt based STS
I'm trying to develop a Java webservice using GlassFish and metro. The webservice has to participate in federation with a SAML 1.1 token being issued from a WCF/Zermatt based STS developed with .Net 3.5 and the zermatt framework.
I'm receiving the following error when trying to acces the webservice from a WCF client.
"The message could not be processed. This is most likely because the action 'http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue' is incorrect or because the message contains an invalid or expired security context token or because there is a mismatch between bindings. The security context token would be invalid if the service aborted the channel due to inactivity. To prevent the service from aborting idle sessions prematurely increase the Receive timeout on the service endpoint's binding."
I have imported the webservice certificate and the STS certificate into the keystore, but am somewhat surprised to see that the "STS issued Token" and "STS with endorsing token" configuration does not alllow me to set the truststore but only the Keystore can be specified, surely the webservice need to know about it's own certificate as well as the issuing STS.
Looking at the error i'm getting i don't really think this is a certificate issue, has anyone seen this exception or tried a similar setup.