Open glassfishrobot opened 17 years ago
Reported by shyam_rao@java.net
shyam_rao@java.net said: adding keyword as91-na
In this case, only one saml token is getting added in security header. Though sample is working. I have added the same SamlToken assersion two times under the same SignedSupportingToken assertion. <sp:SamlToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
kumarjayanti@java.net said: Made a Partial Fix which will remove the current NPE.
kumarjayanti@java.net said: Milestone 1.2
mmatula@java.net said: Setting target milestone to force a new evaluation as this issue was targeted for one of the past releases.
This issue was imported from java.net JIRA WSIT-633
when i add 2 SAML tokens in the security header :
I see NPE on server, while creating a response. This is because, saml token(holder-of-key) will be used for encryption on server, so key from the saml token(holder-of-key) will be extracted. But in this particular case, saml token(sender-vouch) is getting processed instead of Holder-of-key. Hence, results to NPE.
STACK TRACE :
SEC2003: Container-auth: wss: Error securing response java.lang.NullPointerException at com.sun.xml.wss.impl.misc.PublicKeyCertSelector.match(PublicKeyCertSelector.java:34) at sun.security.provider.certpath.CollectionCertStore.engineGetCertificates(CollectionCertStore.java:113) at java.security.cert.CertStore.getCertificates(CertStore.java:125) at com.sun.xml.wss.impl.misc.WSITProviderSecurityEnvironment.getCertificate(WSITProviderSecurityEnvironment.java:1593) at com.sun.xml.ws.security.opt.impl.keyinfo.SamlTokenBuilder.process(SamlTokenBuilder.java:117) at com.sun.xml.ws.security.opt.impl.enc.TokenProcessor.process(TokenProcessor.java:210) at com.sun.xml.ws.security.opt.impl.enc.EncryptionProcessor.process(EncryptionProcessor.java:150) at com.sun.xml.wss.impl.filter.EncryptionFilter.encrypt(EncryptionFilter.java:367) at com.sun.xml.wss.impl.filter.EncryptionFilter.process(EncryptionFilter.java:328) at com.sun.xml.wss.impl.HarnessUtil.processWSSPolicy(HarnessUtil.java:81) at com.sun.xml.wss.impl.HarnessUtil.processDeep(HarnessUtil.java:249) at com.sun.xml.wss.impl.SecurityAnnotator.processMessagePolicy(SecurityAnnotator.java:172) at com.sun.xml.wss.impl.SecurityAnnotator.secureMessage(SecurityAnnotator.java:133) at com.sun.xml.wss.provider.wsit.WSITAuthContextBase.secureOutboundMessage(WSITAuthContextBase.java:1431) at com.sun.xml.wss.provider.wsit.WSITServerAuthContext.secureResponse(WSITServerAuthContext.java:396) at com.sun.xml.wss.provider.wsit.WSITServerAuthContext.secureResponse(WSITServerAuthContext.java:215) at com.sun.enterprise.webservice.CommonServerSecurityPipe.processResponse(CommonServerSecurityPipe.java:289) at com.sun.enterprise.webservice.CommonServerSecurityPipe.processRequest(CommonServerSecurityPipe.java:265) at com.sun.enterprise.webservice.CommonServerSecurityPipe.process(CommonServerSecurityPipe.java:129) at com.sun.xml.ws.api.pipe.helper.PipeAdapter.processRequest(PipeAdapter.java:115)
Environment
Operating System: All Platform: All
Affected Versions
[current]