Skip to main content

[RSP/BSP] Metro->WCF with security: Metro client throws PolicyViolationException when get the EchoResponse

1 reply [Last post]
Anonymous

Hi

We continue test Metro->WCF with security and metro client throws
PolicyViolationException when get the the EchoResponse.

*The exception stack trace is:*

* [java] Jan 26, 2010 6:51:59 PM
>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier
>> processPrimaryPolicy*
>> * [java] SEVERE: WSS0206: Security in the incoming message does not
>> conform to the SecurityPolicy configured at the Recipient.*
>> * [java] Jan 26, 2010 6:51:59 PM
>> com.sun.xml.wss.jaxws.impl.SecurityClientTube processClientResponsePacket
>> *
>> * [java] SEVERE: WSSTUBE0025: Error in Verifying Security in the
>> Inbound Message.*
>> * [java] com.sun.xml.wss.impl.PolicyViolationException:
>> com.sun.xml.wss.XWSSecurityException: Encryption Policy verification error:
>> Looking for an Encryption*
>> * Element in Security header, but found
>> com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>> * [java] at
>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.verifyPolicy(MessagePolicyVerifier.java:129)
>> *
>> * [java] at
>> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.createMessage(SecurityRecipient.java:977)
>> *
>> * [java] at
>> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.validateMessage(SecurityRecipient.java:230)
>> *
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.verifyInboundMessage(SecurityTubeBase.java:475)
>> *
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processClientResponsePacket(SecurityClientTube.java:421)
>> *
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processResponse(SecurityClientTube.java:354)
>> *
>> * [java] at com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:639)
>> *
>> * [java] at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:588)*
>> * [java] at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:573)*
>> * [java] at com.sun.xml.ws.api.pipe.Fiber.run(Fiber.java:422)*
>> * [java] at
>> java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
>> *
>> * [java] at
>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
>> *
>> * [java] at java.lang.Thread.run(Thread.java:619)*
>> * [java] Caused by: com.sun.xml.wss.XWSSecurityException: Encryption
>> Policy verification error: Looking for an Encryption Element in Security
>> header, but fo*
>> *und com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>> * [java] at
>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.processPrimaryPolicy(MessagePolicyVerifier.java:341)
>> *
>> * [java] at
>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.verifyPolicy(MessagePolicyVerifier.java:124)
>> *
>> * [java] ... 12 more*
>> * [java] Jan 26, 2010 6:51:59 PM
>> [com.sun.xml.ws.rx.mc.runtime.WsMcResponseHandler] onCompletion*
>> * [java] WARNING: WSMC0121: Sending WS-MakeConnection request failed.
>> Resuming all suspended fibers with a communication exception.*
>> * [java] javax.xml.ws.WebServiceException: WSSTUBE0025: Error in
>> Verifying Security in the Inbound Message.*
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processClientResponsePacket(SecurityClientTube.java:426)
>> *
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processResponse(SecurityClientTube.java:354)
>> *
>> * [java] at com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:639)
>> *
>> * [java] at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:588)*
>> * [java] at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:573)*
>> * [java] at com.sun.xml.ws.api.pipe.Fiber.run(Fiber.java:422)*
>> * [java] at
>> java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
>> *
>> * [java] at
>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
>> *
>> * [java] at java.lang.Thread.run(Thread.java:619)*
>> * [java] Caused by: javax.xml.ws.soap.SOAPFaultException:
>> com.sun.xml.wss.XWSSecurityException: Encryption Policy verification error:
>> Looking for an Encrypti*
>> *on Element in Security header, but found
>> com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.getSOAPFaultException(SecurityTubeBase.java:687)
>> *
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.getSOAPFaultException(SecurityTubeBase.java:705)
>> *
>> * [java] ... 9 more*
>> * [java] Caused by: com.sun.xml.wss.impl.WssSoapFaultException:
>> com.sun.xml.wss.XWSSecurityException: Encryption Policy verification error:
>> Looking for an En*
>> *cryption Element in Security header, but found
>> com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>> * [java] at
>> com.sun.xml.wss.impl.SecurableSoapMessage.newSOAPFaultException(SecurableSoapMessage.java:336)
>> *
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.getSOAPFaultException(SecurityTubeBase.java:701)
>> *
>> * [java] ... 9 more*
>> * [java] Caused by: com.sun.xml.wss.impl.PolicyViolationException:
>> com.sun.xml.wss.XWSSecurityException: Encryption Policy verification error:
>> Looking for an*
>> * Encryption Element in Security header, but found
>> com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>> * [java] at
>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.verifyPolicy(MessagePolicyVerifier.java:129)
>> *
>> * [java] at
>> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.createMessage(SecurityRecipient.java:977)
>> *
>> * [java] at
>> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.validateMessage(SecurityRecipient.java:230)
>> *
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.verifyInboundMessage(SecurityTubeBase.java:475)
>> *
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processClientResponsePacket(SecurityClientTube.java:421)
>> *
>> * [java] ... 8 more*
>> * [java] Caused by: com.sun.xml.wss.XWSSecurityException: Encryption
>> Policy verification error: Looking for an Encryption Element in Security
>> header, but fo*
>> *und com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>> * [java] at
>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.processPrimaryPolicy(MessagePolicyVerifier.java:341)
>> *
>> * [java] at
>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.verifyPolicy(MessagePolicyVerifier.java:124)
>> *
>> * [java] ... 12 more*
>> * [java] javax.xml.ws.WebServiceException: WSSTUBE0025: Error in
>> Verifying Security in the Inbound Message.*
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processClientResponsePacket(SecurityClientTube.java:426)
>> *
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processResponse(SecurityClientTube.java:354)
>> *
>> * [java] at com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:639)
>> *
>> * [java] at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:588)*
>> * [java] at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:573)*
>> * [java] at com.sun.xml.ws.api.pipe.Fiber.run(Fiber.java:422)*
>> * [java] at
>> java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
>> *
>> * [java] at
>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
>> *
>> * [java] at java.lang.Thread.run(Thread.java:619)*
>> * [java] Caused by: javax.xml.ws.soap.SOAPFaultException:
>> com.sun.xml.wss.XWSSecurityException: Encryption Policy verification error:
>> Looking for an Encrypti*
>> *on Element in Security header, but found
>> com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.getSOAPFaultException(SecurityTubeBase.java:687)
>> *
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.getSOAPFaultException(SecurityTubeBase.java:705)
>> *
>> * [java] ... 9 more*
>> * [java] Caused by: com.sun.xml.wss.impl.WssSoapFaultException:
>> com.sun.xml.wss.XWSSecurityException: Encryption Policy verification error:
>> Looking for an En*
>> *cryption Element in Security header, but found
>> com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>> * [java] at
>> com.sun.xml.wss.impl.SecurableSoapMessage.newSOAPFaultException(SecurableSoapMessage.java:336)
>> *
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.getSOAPFaultException(SecurityTubeBase.java:701)
>> *
>> * [java] ... 9 more*
>> * [java] Caused by: com.sun.xml.wss.impl.PolicyViolationException:
>> com.sun.xml.wss.XWSSecurityException: Encryption Policy verification error:
>> Looking for an*
>> * Encryption Element in Security header, but found
>> com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>> * [java] at
>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.verifyPolicy(MessagePolicyVerifier.java:129)
>> *
>> * [java] at
>> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.createMessage(SecurityRecipient.java:977)
>> *
>> * [java] at
>> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.validateMessage(SecurityRecipient.java:230)
>> *
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.verifyInboundMessage(SecurityTubeBase.java:475)
>> *
>> * [java] at
>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processClientResponsePacket(SecurityClientTube.java:421)
>> *
>> * [java] ... 8 more*
>> * [java] Caused by: com.sun.xml.wss.XWSSecurityException: Encryption
>> Policy verification error: Looking for an Encryption Element in Security
>> header, but fo*
>> *und com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>> * [java] at
>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.processPrimaryPolicy(MessagePolicyVerifier.java:341)
>> *
>> * [java] at
>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.verifyPolicy(MessagePolicyVerifier.java:124)
>> *
>> * [java] ... 12 more*
>>
>
*The EchoResponse soap message is:*

> *> xmlns:r="http://docs.oasis-open.org/ws-rx/wsrm/200702" xmlns:a="
>> http://www.w3.org/2005/08/addressing"
>> xmlns:u="
>> http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utili...
>> ">
>>
>>
>> urn:uuid:2eae48b8-8a72-4051-8dad-378676e5ab98
>>
>>
>> > http://schemas.microsoft.com/ws/2006/05/rm">8
>>
>>
>>
>> uuid:ae7f06ec-9d7d-42ea-b7bc-0d1f14ba6d4a
>>
>>
>>
>> uuid:ae7f06ec-9d7d-42ea-b7bc-0d1f14ba6d4a
>>
>> 1
>>
>>
>> http://example.com/rsp/EchoResponse
>>
>> > xmlns="
>> http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics
>> ">c9ef90ef-7bdf-4519-84a1-5ff820c12a99
>> > u:Id="_5">uuid:71db6e7a-7747-4f62-be45-df5afec40ceb
>>
>> http://docs.oasis-open.org/ws-rx/wsmc/200702/anonymous?id=bee3d301-7666-...
>>
>> > xmlns:wsmc="http://docs.oasis-open.org/ws-rx/wsmc/200702" />
>> > xmlns:o="
>> http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secex...
>> ">
>> > u:Id="uuid-62df6fd5-3e02-4225-9562-432987992779-22">
>> 2010-01-26T10:52:48.428Z
>> 2010-01-26T10:57:48.428Z
>>

>> > u:Id="uuid-62df6fd5-3e02-4225-9562-432987992779-18"
>> xmlns:sc="
>> http://docs.oasis-open.org/ws-sx/ws-secureconversation/200512">
>>
>> > URI="urn:uuid:2bce2e8c-503a-473d-aee0-2b744b9c65b0"
>> ValueType="
>> http://docs.oasis-open.org/ws-sx/ws-secureconversation/200512/sct" />
>>
>> 0
>> 16
>> PXL6tRHXfpLRw5LQBmKGlg==
>>
>>
>>
>> > http://www.w3.org/2001/10/xml-exc-c14n#" />
>> > http://www.w3.org/2000/09/xmldsig#hmac-sha1" />
>>
>>
>> > http://www.w3.org/2001/10/xml-exc-c14n#" />
>>
>> > http://www.w3.org/2000/09/xmldsig#sha1" />
>>
>> jOBnTIy0KUeTXX8QEhlnbJZABPE=
>>
>>
>>
>> > http://www.w3.org/2001/10/xml-exc-c14n#" />
>>
>> > http://www.w3.org/2000/09/xmldsig#sha1" />
>>
>> uZjz765n6nmZu4TocYFG8sgYVnA=
>>
>>
>>
>> > http://www.w3.org/2001/10/xml-exc-c14n#" />
>>
>> > http://www.w3.org/2000/09/xmldsig#sha1" />
>>
>> 2AHdKKlmj90SminyDDG3zqC+l6Q=
>>
>>
>>
>> > http://www.w3.org/2001/10/xml-exc-c14n#" />
>>
>> > http://www.w3.org/2000/09/xmldsig#sha1" />
>>
>> iFcm2Cx5YpHg1yuh3fne2oPQ1FE=
>>
>>
>>
>> > http://www.w3.org/2001/10/xml-exc-c14n#" />
>>
>> > http://www.w3.org/2000/09/xmldsig#sha1" />
>>
>> dlJXNAgjAoTD8D+sFcCFoklpqnY=
>>
>>
>>
>> > http://www.w3.org/2001/10/xml-exc-c14n#" />
>>
>> > http://www.w3.org/2000/09/xmldsig#sha1" />
>>
>> Hvl2izr0wQRnfS51bQuAZABgD5Y=
>>
>>
>>
>> > http://www.w3.org/2001/10/xml-exc-c14n#" />
>>
>> > http://www.w3.org/2000/09/xmldsig#sha1" />
>>
>> /tz1UINGHcmRBaKWabzocml4mtM=
>>
>>
>>
>> > http://www.w3.org/2001/10/xml-exc-c14n#" />
>>
>> > http://www.w3.org/2000/09/xmldsig#sha1" />
>>
>> DbzSL8QcucCjvZy3UYomnxhEqAo=
>>
>> > URI="#uuid-62df6fd5-3e02-4225-9562-432987992779-22">
>>
>> > http://www.w3.org/2001/10/xml-exc-c14n#" />
>>
>> > http://www.w3.org/2000/09/xmldsig#sha1" />
>>
>> DuX6IUcGDEk9R7YpwDyzVx4VtS8=
>>
>>
>>
>> uQ+tIVzXj2Bb9z2AfxG8h4/IGzc=
>>
>>
>> > ValueType="
>> http://docs.oasis-open.org/ws-sx/ws-secureconversation/200512/dk"
>>
>> URI="#uuid-62df6fd5-3e02-4225-9562-432987992779-18" />
>>
>>
>>
>>
>>
>>
>>
>> Received the following: ID=10, text=test
>>
>>
>>
>> *
>
>
*The client policy is:*

*
>>
>>
>> > location="cacerts.jks"
>> storepass="changeit" peeralias="bob"/>
>> > location="keystore.jks"
>> storepass="changeit" alias="alice" keypass="sampleapp"/>
>>
>>
>>
>> *
>
>
[att1.html]

Reply viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.
Jinshan Yang

Hi Mark,
It turns out it seems the bug of MS end point(CustomBind_IEcho4):
1. The security policy for CustomBind_IEcho4 said the body will be encrypted
but actaully the echoResponse returned from MS endpoint was not
encrypted(Please check the previous mail for the echoResponse message).






Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
















2. If comments out the encryption part policy in the Metro clients' local
policy configuration fiel, the echo call returns successfully without any
exception.
Mark, could you please help to check from MS side?

BR,
Jinshan

On Tue, Jan 26, 2010 at 7:27 PM, Anchuan Qian wrote:

> Hi
>
> We continue test Metro->WCF with security and metro client throws
> PolicyViolationException when get the the EchoResponse.
>
> *The exception stack trace is:*
>
> * [java] Jan 26, 2010 6:51:59 PM
>>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier
>>> processPrimaryPolicy*
>>> * [java] SEVERE: WSS0206: Security in the incoming message does not
>>> conform to the SecurityPolicy configured at the Recipient.*
>>> * [java] Jan 26, 2010 6:51:59 PM
>>> com.sun.xml.wss.jaxws.impl.SecurityClientTube processClientResponsePacket
>>> *
>>> * [java] SEVERE: WSSTUBE0025: Error in Verifying Security in the
>>> Inbound Message.*
>>> * [java] com.sun.xml.wss.impl.PolicyViolationException:
>>> com.sun.xml.wss.XWSSecurityException: Encryption Policy verification error:
>>> Looking for an Encryption*
>>> * Element in Security header, but found
>>> com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>>> * [java] at
>>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.verifyPolicy(MessagePolicyVerifier.java:129)
>>> *
>>> * [java] at
>>> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.createMessage(SecurityRecipient.java:977)
>>> *
>>> * [java] at
>>> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.validateMessage(SecurityRecipient.java:230)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.verifyInboundMessage(SecurityTubeBase.java:475)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processClientResponsePacket(SecurityClientTube.java:421)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processResponse(SecurityClientTube.java:354)
>>> *
>>> * [java] at
>>> com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:639)*
>>> * [java] at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:588)
>>> *
>>> * [java] at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:573)*
>>> * [java] at com.sun.xml.ws.api.pipe.Fiber.run(Fiber.java:422)*
>>> * [java] at
>>> java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
>>> *
>>> * [java] at
>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
>>> *
>>> * [java] at java.lang.Thread.run(Thread.java:619)*
>>> * [java] Caused by: com.sun.xml.wss.XWSSecurityException: Encryption
>>> Policy verification error: Looking for an Encryption Element in Security
>>> header, but fo*
>>> *und com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>>> * [java] at
>>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.processPrimaryPolicy(MessagePolicyVerifier.java:341)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.verifyPolicy(MessagePolicyVerifier.java:124)
>>> *
>>> * [java] ... 12 more*
>>> * [java] Jan 26, 2010 6:51:59 PM
>>> [com.sun.xml.ws.rx.mc.runtime.WsMcResponseHandler] onCompletion*
>>> * [java] WARNING: WSMC0121: Sending WS-MakeConnection request
>>> failed. Resuming all suspended fibers with a communication exception.*
>>> * [java] javax.xml.ws.WebServiceException: WSSTUBE0025: Error in
>>> Verifying Security in the Inbound Message.*
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processClientResponsePacket(SecurityClientTube.java:426)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processResponse(SecurityClientTube.java:354)
>>> *
>>> * [java] at
>>> com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:639)*
>>> * [java] at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:588)
>>> *
>>> * [java] at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:573)*
>>> * [java] at com.sun.xml.ws.api.pipe.Fiber.run(Fiber.java:422)*
>>> * [java] at
>>> java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
>>> *
>>> * [java] at
>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
>>> *
>>> * [java] at java.lang.Thread.run(Thread.java:619)*
>>> * [java] Caused by: javax.xml.ws.soap.SOAPFaultException:
>>> com.sun.xml.wss.XWSSecurityException: Encryption Policy verification error:
>>> Looking for an Encrypti*
>>> *on Element in Security header, but found
>>> com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.getSOAPFaultException(SecurityTubeBase.java:687)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.getSOAPFaultException(SecurityTubeBase.java:705)
>>> *
>>> * [java] ... 9 more*
>>> * [java] Caused by: com.sun.xml.wss.impl.WssSoapFaultException:
>>> com.sun.xml.wss.XWSSecurityException: Encryption Policy verification error:
>>> Looking for an En*
>>> *cryption Element in Security header, but found
>>> com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>>> * [java] at
>>> com.sun.xml.wss.impl.SecurableSoapMessage.newSOAPFaultException(SecurableSoapMessage.java:336)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.getSOAPFaultException(SecurityTubeBase.java:701)
>>> *
>>> * [java] ... 9 more*
>>> * [java] Caused by: com.sun.xml.wss.impl.PolicyViolationException:
>>> com.sun.xml.wss.XWSSecurityException: Encryption Policy verification error:
>>> Looking for an*
>>> * Encryption Element in Security header, but found
>>> com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>>> * [java] at
>>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.verifyPolicy(MessagePolicyVerifier.java:129)
>>> *
>>> * [java] at
>>> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.createMessage(SecurityRecipient.java:977)
>>> *
>>> * [java] at
>>> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.validateMessage(SecurityRecipient.java:230)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.verifyInboundMessage(SecurityTubeBase.java:475)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processClientResponsePacket(SecurityClientTube.java:421)
>>> *
>>> * [java] ... 8 more*
>>> * [java] Caused by: com.sun.xml.wss.XWSSecurityException: Encryption
>>> Policy verification error: Looking for an Encryption Element in Security
>>> header, but fo*
>>> *und com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>>> * [java] at
>>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.processPrimaryPolicy(MessagePolicyVerifier.java:341)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.verifyPolicy(MessagePolicyVerifier.java:124)
>>> *
>>> * [java] ... 12 more*
>>> * [java] javax.xml.ws.WebServiceException: WSSTUBE0025: Error in
>>> Verifying Security in the Inbound Message.*
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processClientResponsePacket(SecurityClientTube.java:426)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processResponse(SecurityClientTube.java:354)
>>> *
>>> * [java] at
>>> com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:639)*
>>> * [java] at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:588)
>>> *
>>> * [java] at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:573)*
>>> * [java] at com.sun.xml.ws.api.pipe.Fiber.run(Fiber.java:422)*
>>> * [java] at
>>> java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
>>> *
>>> * [java] at
>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
>>> *
>>> * [java] at java.lang.Thread.run(Thread.java:619)*
>>> * [java] Caused by: javax.xml.ws.soap.SOAPFaultException:
>>> com.sun.xml.wss.XWSSecurityException: Encryption Policy verification error:
>>> Looking for an Encrypti*
>>> *on Element in Security header, but found
>>> com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.getSOAPFaultException(SecurityTubeBase.java:687)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.getSOAPFaultException(SecurityTubeBase.java:705)
>>> *
>>> * [java] ... 9 more*
>>> * [java] Caused by: com.sun.xml.wss.impl.WssSoapFaultException:
>>> com.sun.xml.wss.XWSSecurityException: Encryption Policy verification error:
>>> Looking for an En*
>>> *cryption Element in Security header, but found
>>> com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>>> * [java] at
>>> com.sun.xml.wss.impl.SecurableSoapMessage.newSOAPFaultException(SecurableSoapMessage.java:336)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.getSOAPFaultException(SecurityTubeBase.java:701)
>>> *
>>> * [java] ... 9 more*
>>> * [java] Caused by: com.sun.xml.wss.impl.PolicyViolationException:
>>> com.sun.xml.wss.XWSSecurityException: Encryption Policy verification error:
>>> Looking for an*
>>> * Encryption Element in Security header, but found
>>> com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>>> * [java] at
>>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.verifyPolicy(MessagePolicyVerifier.java:129)
>>> *
>>> * [java] at
>>> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.createMessage(SecurityRecipient.java:977)
>>> *
>>> * [java] at
>>> com.sun.xml.ws.security.opt.impl.incoming.SecurityRecipient.validateMessage(SecurityRecipient.java:230)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityTubeBase.verifyInboundMessage(SecurityTubeBase.java:475)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.jaxws.impl.SecurityClientTube.processClientResponsePacket(SecurityClientTube.java:421)
>>> *
>>> * [java] ... 8 more*
>>> * [java] Caused by: com.sun.xml.wss.XWSSecurityException: Encryption
>>> Policy verification error: Looking for an Encryption Element in Security
>>> header, but fo*
>>> *und com.sun.xml.wss.impl.policy.mls.SignaturePolicy@e6899.*
>>> * [java] at
>>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.processPrimaryPolicy(MessagePolicyVerifier.java:341)
>>> *
>>> * [java] at
>>> com.sun.xml.wss.impl.policy.verifier.MessagePolicyVerifier.verifyPolicy(MessagePolicyVerifier.java:124)
>>> *
>>> * [java] ... 12 more*
>>>
>>
> *The EchoResponse soap message is:*
>
>> * >>> xmlns:r="http://docs.oasis-open.org/ws-rx/wsrm/200702" xmlns:a="
>>> http://www.w3.org/2005/08/addressing"
>>> xmlns:u="
>>> http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utili...
>>> ">
>>>
>>>
>>> urn:uuid:2eae48b8-8a72-4051-8dad-378676e5ab98
>>>

>>>
>>> 8
>>>

>>>

>>>
>>> uuid:ae7f06ec-9d7d-42ea-b7bc-0d1f14ba6d4a
>>>

>>>

>>>
>>> uuid:ae7f06ec-9d7d-42ea-b7bc-0d1f14ba6d4a
>>>

>>> 1
>>>

>>>
>>> http://example.com/rsp/EchoResponse
>>>

>>> >>> xmlns="
>>> http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics
>>> ">c9ef90ef-7bdf-4519-84a1-5ff820c12a99

>>> >>> u:Id="_5">uuid:71db6e7a-7747-4f62-be45-df5afec40ceb
>>>
>>> http://docs.oasis-open.org/ws-rx/wsmc/200702/anonymous?id=bee3d301-7666-...
>>>

>>> >>> xmlns:wsmc="http://docs.oasis-open.org/ws-rx/wsmc/200702" />
>>> >>> xmlns:o="
>>> http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secex...
>>> ">
>>> >>> u:Id="uuid-62df6fd5-3e02-4225-9562-432987992779-22">
>>> 2010-01-26T10:52:48.428Z
>>> 2010-01-26T10:57:48.428Z
>>>
>>> >>> u:Id="uuid-62df6fd5-3e02-4225-9562-432987992779-18"
>>> xmlns:sc="
>>> http://docs.oasis-open.org/ws-sx/ws-secureconversation/200512">
>>>
>>> >>> URI="urn:uuid:2bce2e8c-503a-473d-aee0-2b744b9c65b0"
>>> ValueType="
>>> http://docs.oasis-open.org/ws-sx/ws-secureconversation/200512/sct" />
>>>

>>> 0
>>> 16
>>> PXL6tRHXfpLRw5LQBmKGlg==
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>

>>>
>>>
>>> jOBnTIy0KUeTXX8QEhlnbJZABPE=
>>>

>>>
>>>
>>>
>>>

>>>
>>>
>>> uZjz765n6nmZu4TocYFG8sgYVnA=
>>>

>>>
>>>
>>>
>>>

>>>
>>>
>>> 2AHdKKlmj90SminyDDG3zqC+l6Q=
>>>

>>>
>>>
>>>
>>>

>>>
>>>
>>> iFcm2Cx5YpHg1yuh3fne2oPQ1FE=
>>>

>>>
>>>
>>>
>>>

>>>
>>>
>>> dlJXNAgjAoTD8D+sFcCFoklpqnY=
>>>

>>>
>>>
>>>
>>>

>>>
>>>
>>> Hvl2izr0wQRnfS51bQuAZABgD5Y=
>>>

>>>
>>>
>>>
>>>

>>>
>>>
>>> /tz1UINGHcmRBaKWabzocml4mtM=
>>>

>>>
>>>
>>>
>>>

>>>
>>>
>>> DbzSL8QcucCjvZy3UYomnxhEqAo=
>>>

>>> >>> URI="#uuid-62df6fd5-3e02-4225-9562-432987992779-22">
>>>
>>>
>>>

>>>
>>>
>>> DuX6IUcGDEk9R7YpwDyzVx4VtS8=
>>>
>>>

>>>
>>> uQ+tIVzXj2Bb9z2AfxG8h4/IGzc=
>>>
>>>
>>> >>> ValueType="
>>> http://docs.oasis-open.org/ws-sx/ws-secureconversation/200512/dk"
>>>
>>> URI="#uuid-62df6fd5-3e02-4225-9562-432987992779-18" />
>>>

>>>

>>>

>>>

>>>

>>>
>>>
>>> Received the following: ID=10, text=test
>>>

>>>

>>>

>>> *
>>
>>
> *The client policy is:*
>
> *
>>>
>>>
>>> >>> location="cacerts.jks"
>>> storepass="changeit" peeralias="bob"/>
>>> >>> location="keystore.jks"
>>> storepass="changeit" alias="alice" keypass="sampleapp"/>
>>>

>>>

>>>

>>> *
>>
>>
>

--
Regards!
Jinshan Yang

Tel: +86 010-64076695
Fax: +86 010-64072011
Email: jsyang@thoughtworks.com
Yahoo Messager: ejsyang@yahoo.com
Address: Room1105,11th Floor GuoHua Plaza, No.3 Dongzhimen South Street,
Dongcheng District, Beijing, China 100007
www.thoughtworks.com
[att1.html]