[
https://issues.apache.org/jira/browse/CXF-7245?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15859562#comment-15859562
]
Alexis Caruana edited comment on CXF-7245 at 2/9/17 3:29 PM:
-------------------------------------------------------------
Please find complete stacktrace with jar used.
org.apache.ws.security.WSSecurityException: The signature or decryption was
invalid
at
org.apache.ws.security.processor.SignatureProcessor.verifyXMLSignature(SignatureProcessor.java:465)
~[_wl_cls_gen.jar:1.6.16]
at
org.apache.ws.security.processor.SignatureProcessor.handleToken(SignatureProcessor.java:229)
~[_wl_cls_gen.jar:1.6.16]
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:402)
~[wss4j-1.6.16.jar:1.6.16]
at
********.callback.SoapActionInInterceptor.handleMessage(SoapActionInInterceptor.java:253)
[_wl_cls_gen.jar:?]
at
*******.callback.SoapActionInInterceptor.handleMessage(SoapActionInInterceptor.java:44)
[_wl_cls_gen.jar:?]
at
org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:272)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiationObserver.java:121)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.http.AbstractHTTPDestination.invoke(AbstractHTTPDestination.java:241)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.servlet.ServletController.invokeDestination(ServletController.java:248)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.servlet.ServletController.invoke(ServletController.java:222)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.servlet.ServletController.invoke(ServletController.java:153)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.servlet.CXFNonSpringServlet.invoke(CXFNonSpringServlet.java:171)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.servlet.AbstractHTTPServlet.handleRequest(AbstractHTTPServlet.java:286)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.servlet.AbstractHTTPServlet.doPost(AbstractHTTPServlet.java:206)
[cxf-bundle-2.7.12.jar:2.7.12]
at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
[javax.servlet_1.0.0.0_2-5.jar:2.5]
at
org.apache.cxf.transport.servlet.AbstractHTTPServlet.service(AbstractHTTPServlet.java:262)
[cxf-bundle-2.7.12.jar:2.7.12]
at
weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
[weblogic.jar:10.3.6.0]
at
weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
[weblogic.jar:10.3.6.0]
at
weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:301)
[weblogic.jar:10.3.6.0]
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
[weblogic.jar:10.3.6.0]
was (Author: alejacky):
Please find complete stacktrace with jar used.
org.apache.ws.security.WSSecurityException: The signature or decryption was
invalid
at
org.apache.ws.security.processor.SignatureProcessor.verifyXMLSignature(SignatureProcessor.java:465)
~[_wl_cls_gen.jar:1.6.16]
at
org.apache.ws.security.processor.SignatureProcessor.handleToken(SignatureProcessor.java:229)
~[_wl_cls_gen.jar:1.6.16]
at
org.apache.ws.security.WSSecurityEngine.processSecurityHeader(WSSecurityEngine.java:402)
~[wss4j-1.6.16.jar:1.6.16]
at
********.SoapActionInInterceptor.handleMessage(SoapActionInInterceptor.java:253)
[_wl_cls_gen.jar:?]
at
*******.callback.SoapActionInInterceptor.handleMessage(SoapActionInInterceptor.java:44)
[_wl_cls_gen.jar:?]
at
org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:272)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiationObserver.java:121)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.http.AbstractHTTPDestination.invoke(AbstractHTTPDestination.java:241)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.servlet.ServletController.invokeDestination(ServletController.java:248)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.servlet.ServletController.invoke(ServletController.java:222)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.servlet.ServletController.invoke(ServletController.java:153)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.servlet.CXFNonSpringServlet.invoke(CXFNonSpringServlet.java:171)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.servlet.AbstractHTTPServlet.handleRequest(AbstractHTTPServlet.java:286)
[cxf-bundle-2.7.12.jar:2.7.12]
at
org.apache.cxf.transport.servlet.AbstractHTTPServlet.doPost(AbstractHTTPServlet.java:206)
[cxf-bundle-2.7.12.jar:2.7.12]
at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
[javax.servlet_1.0.0.0_2-5.jar:2.5]
at
org.apache.cxf.transport.servlet.AbstractHTTPServlet.service(AbstractHTTPServlet.java:262)
[cxf-bundle-2.7.12.jar:2.7.12]
at
weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
[weblogic.jar:10.3.6.0]
at
weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
[weblogic.jar:10.3.6.0]
at
weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:301)
[weblogic.jar:10.3.6.0]
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
[weblogic.jar:10.3.6.0]
> Weblogic 10.3.6 + CXF 2.7.12 : The signature or decryption was invalid
> ----------------------------------------------------------------------
>
> Key: CXF-7245
> URL: https://issues.apache.org/jira/browse/CXF-7245
> Project: CXF
> Issue Type: Bug
> Affects Versions: 2.7.12
> Reporter: Alexis Caruana
> Attachments: message_after_SAAJInterceptor_handlemessage.xml,
> message_before_SAAJInterceptor_handlemessage.xml, pom_xml_dependencies.xml,
> spring_configuration.xml
>
>
> Using CXF 2.7.12 on weblogic server 10.3.6, i'm facing issue :
> org.apache.ws.security.WSSecurityException: The signature or decryption was
> invalid
> One reference failed : reference with ID 2, the body reference
> 2017-02-06 12:01:30.835 [DEBUG] [[ACTIVE] ExecuteThread: '0' for queue:
> 'weblogic.kernel.Default (self-tuning)'] SignatureProcessor - reference :
> class org.apache.jcp.xml.dsig.internal.dom.DOMReference
> Reference #_2 check: false
> 2017-02-06 12:01:30.835 [DEBUG] [[ACTIVE] ExecuteThread: '0' for queue:
> 'weblogic.kernel.Default (self-tuning)'] SignatureProcessor - reference :
> class org.apache.jcp.xml.dsig.internal.dom.DOMReference
> Reference #_3 check: true
> 2017-02-06 12:01:30.835 [DEBUG] [[ACTIVE] ExecuteThread: '0' for queue:
> 'weblogic.kernel.Default (self-tuning)'] SignatureProcessor - reference :
> class org.apache.jcp.xml.dsig.internal.dom.DOMReference
> Reference #_4 check: true
> 2017-02-06 12:01:30.836 [DEBUG] [[ACTIVE] ExecuteThread: '0' for queue:
> 'weblogic.kernel.Default (self-tuning)'] SignatureProcessor - reference :
> class org.apache.jcp.xml.dsig.internal.dom.DOMReference
> Reference #_5 check: true
> 2017-02-06 12:01:30.836 [DEBUG] [[ACTIVE] ExecuteThread: '0' for queue:
> 'weblogic.kernel.Default (self-tuning)'] SignatureProcessor - reference :
> class org.apache.jcp.xml.dsig.internal.dom.DOMReference
> Reference #_6 check: true
> 2017-02-06 12:01:30.836 [DEBUG] [[ACTIVE] ExecuteThread: '0' for queue:
> 'weblogic.kernel.Default (self-tuning)'] SignatureProcessor - reference :
> class org.apache.jcp.xml.dsig.internal.dom.DOMReference
> Reference #uuid-5b84c5c2-a9de-48ad-a136-59b43f43bf9f-2288 check: true
> It works with metro implementation.
> Below logs :
> 2017-02-06 12:01:30.835 [DEBUG] [[ACTIVE] ExecuteThread: '0' for queue:
> 'weblogic.kernel.Default (self-tuning)'] SignatureProcessor - signatureOK
> false
> 2017-02-06 12:01:30.835 [DEBUG] [[ACTIVE] ExecuteThread: '0' for queue:
> 'weblogic.kernel.Default (self-tuning)'] SignatureProcessor - XML Signature
> verification has failed
> Verify XML Signature
> Signature Validation check: true
> 2017-02-06 12:01:30.835 [DEBUG] [[ACTIVE] ExecuteThread: '0' for queue:
> 'weblogic.kernel.Default (self-tuning)'] SignatureProcessor - reference :
> class org.apache.jcp.xml.dsig.internal.dom.DOMReference
> Reference #_2 check: false
> 2017-02-06 12:01:30.835 [DEBUG] [[ACTIVE] ExecuteThread: '0' for queue:
> 'weblogic.kernel.Default (self-tuning)'] SignatureProcessor - reference :
> class org.apache.jcp.xml.dsig.internal.dom.DOMReference
> Reference #_3 check: true
> 2017-02-06 12:01:30.835 [DEBUG] [[ACTIVE] ExecuteThread: '0' for queue:
> 'weblogic.kernel.Default (self-tuning)'] SignatureProcessor - reference :
> class org.apache.jcp.xml.dsig.internal.dom.DOMReference
> Reference #_4 check: true
> 2017-02-06 12:01:30.836 [DEBUG] [[ACTIVE] ExecuteThread: '0' for queue:
> 'weblogic.kernel.Default (self-tuning)'] SignatureProcessor - reference :
> class org.apache.jcp.xml.dsig.internal.dom.DOMReference
> Reference #_5 check: true
> 2017-02-06 12:01:30.836 [DEBUG] [[ACTIVE] ExecuteThread: '0' for queue:
> 'weblogic.kernel.Default (self-tuning)'] SignatureProcessor - reference :
> class org.apache.jcp.xml.dsig.internal.dom.DOMReference
> Reference #_6 check: true
> 2017-02-06 12:01:30.836 [DEBUG] [[ACTIVE] ExecuteThread: '0' for queue:
> 'weblogic.kernel.Default (self-tuning)'] SignatureProcessor - reference :
> class org.apache.jcp.xml.dsig.internal.dom.DOMReference
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
