List of processSecurityHeader() Examples

Examples of processSecurityHeader()

org.apache.ws.security.WSSecurityEngine.processSecurityHeader()
Process the security header given the soap envelope as W3C document.
This is the main entry point to verify or decrypt a SOAP enevelope. First check if a wsse:Security is availabe with the defined actor. @param doc the SOAP envelope as {@link Document} @param actor the engine works on behalf of this actor. Referto the SOAP specification about actor or role @param cb a callback hander to the caller to resolve passwords duringencryption and {@link UsernameToken} handling @param crypto the object that implements the access to the keystore and thehandling of certificates. @return a result vector @throws WSSecurityException @see WSSecurityEngine#processSecurityHeader(Element securityHeader,CallbackHandler cb,Crypto sigCrypto,Crypto decCrypto)
org.apache.wss4j.dom.WSSecurityEngine.processSecurityHeader()
Process the security header given the soap envelope as W3C document.
This is the main entry point to verify or decrypt a SOAP envelope. First check if a wsse:Security is available with the defined actor. @param doc the SOAP envelope as {@link Document} @param actor the engine works on behalf of this actor. Referto the SOAP specification about actor or role @param cb a callback hander to the caller to resolve passwords duringencryption and UsernameToken handling @param crypto the object that implements the access to the keystore and thehandling of certificates. @return a result list @throws WSSecurityException @see WSSecurityEngine#processSecurityHeader(Element securityHeader,CallbackHandler cb,Crypto sigVerCrypto,Crypto decCrypto)

Examples of org.apache.ws.security.WSSecurityEngine.processSecurityHeader()

        // This should not
        try {
            WSSConfig config = WSSConfig.getNewInstance();
            config.setUtFutureTTL(0);
            secEngine.setWssConfig(config);
            secEngine.processSecurityHeader(doc, null, callbackHandler, null);
            fail("The UsernameToken validation should have failed");
        } catch (WSSecurityException ex) {
            assertTrue(ex.getErrorCode() == WSSecurityException.MESSAGE_EXPIRED); 
        }  
    }

View Full Code Here

Examples of org.apache.ws.security.WSSecurityEngine.processSecurityHeader()

            LOG.debug(outputString);
        }
        
        try {
            WSSecurityEngine secEngine = new WSSecurityEngine();
            secEngine.processSecurityHeader(doc, null, callbackHandler, null);
            fail("The UsernameToken validation should have failed");
        } catch (WSSecurityException ex) {
            assertTrue(ex.getErrorCode() == WSSecurityException.MESSAGE_EXPIRED); 
        }  
    }

View Full Code Here

Examples of org.apache.ws.security.WSSecurityEngine.processSecurityHeader()

            LOG.debug(outputString);
        }
        
        WSSecurityEngine newEngine = new WSSecurityEngine();
        try {
            newEngine.processSecurityHeader(doc, null, callbackHandler, null);
            fail("Expected failure as it is not BSP compliant");
        } catch (WSSecurityException ex) {
            // expected
        }
        WSSConfig config = WSSConfig.getNewInstance();

View Full Code Here

Examples of org.apache.ws.security.WSSecurityEngine.processSecurityHeader()

            // expected
        }
        WSSConfig config = WSSConfig.getNewInstance();
        config.setWsiBSPCompliant(false);
        newEngine.setWssConfig(config);
        newEngine.processSecurityHeader(doc, null, callbackHandler, null);
    }
    
    /**
     * Test that adds a UserNameToken with no user (or password) to a WS-Security envelope
     * See WSS-185 - https://issues.apache.org/jira/browse/WSS-185

View Full Code Here

Examples of org.apache.ws.security.WSSecurityEngine.processSecurityHeader()

            String outputString = 
                org.apache.ws.security.util.XMLUtils.PrettyDocumentToString(signedDoc);
            LOG.debug(outputString);
        }
        WSSecurityEngine secEngine = new WSSecurityEngine();
        secEngine.processSecurityHeader(doc, null, this, null);
    }
    
    /**
     * Test that processes a UserNameToken with an empty password
     */

View Full Code Here

Examples of org.apache.ws.security.WSSecurityEngine.processSecurityHeader()

                org.apache.ws.security.util.XMLUtils.PrettyDocumentToString(doc);
            LOG.debug(outputString);
        }
        
        WSSecurityEngine secEngine = new WSSecurityEngine();
        secEngine.processSecurityHeader(doc, null, this, null);
    }
    
    /**
     * Test with a non-standard token type. This will fail as the default is to reject custom
     * token types.

View Full Code Here

Examples of org.apache.ws.security.WSSecurityEngine.processSecurityHeader()

                org.apache.ws.security.util.XMLUtils.PrettyDocumentToString(signedDoc);
            LOG.debug(outputString);
        }
        try {
            WSSecurityEngine secEngine = new WSSecurityEngine();
            secEngine.processSecurityHeader(signedDoc, null, this, null);
            fail("Custom token types are not permitted");
        } catch (WSSecurityException ex) {
            assertTrue(ex.getErrorCode() == WSSecurityException.FAILED_AUTHENTICATION);
            // expected
        }

View Full Code Here

Examples of org.apache.ws.security.WSSecurityEngine.processSecurityHeader()

        //
        WSSConfig cfg = WSSConfig.getNewInstance();
        cfg.setHandleCustomPasswordTypes(true);
        WSSecurityEngine secEngine = new WSSecurityEngine();
        secEngine.setWssConfig(cfg);
        secEngine.processSecurityHeader(doc, null, callbackHandler, null);
    }
    
    
    /**
     * A test for WSS-66 - the nonce string is null

View Full Code Here

Examples of org.apache.ws.security.WSSecurityEngine.processSecurityHeader()

            LOG.debug(outputString);
        }
        
        WSSecurityEngine newEngine = new WSSecurityEngine();
        try {
            newEngine.processSecurityHeader(doc, null, callbackHandler, null);
            fail("Expected failure as it is not BSP compliant");
        } catch (WSSecurityException ex) {
            // expected
        }
        WSSConfig config = WSSConfig.getNewInstance();

View Full Code Here

Examples of org.apache.ws.security.WSSecurityEngine.processSecurityHeader()

            // expected
        }
        WSSConfig config = WSSConfig.getNewInstance();
        config.setWsiBSPCompliant(false);
        newEngine.setWssConfig(config);
        newEngine.processSecurityHeader(doc, null, callbackHandler, null);
    }
    
    /**
     * A test for sending multiple Created elements in the UsernameToken
     */

View Full Code Here

0 1 2 3 4 5

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.