User Close

Search

THE DEVELOPER PORTAL FOR SOA

UsernameToken Password Digest Doesn't work for WSO2 ESB proxy services

yakovo's picture

Submitted by yakovo on June 14, 2009 - 23:49

Hi, If using basic username token authentication scenario provided by the WSO2 ESB v 2.0.2 (username token with a plain password over https) for a proxy service, everything works fine. Now I want my client to send a password digest over http. In this case the ESB throws general security exception, so obviously it needs a callback handler to process digest validation. For doing that, I disable the basic scenario applied and attach the policy to my proxy service instead. Now, each client call fails on read time out error. Increasing client's timeout config didn't help. The same scenario worked just fine without WSO2 ESB (just axis2+rampart on tomcat). A jar with my password callback handler I put in ${wso2.esb.home}/lib/extensions folder, so there's no problem in class loading. The policy attached to a proxy service is attached to this topic. Has anyone ever succeeded to run usernametoken with password digest security scenario on WSO2 ESB v 2.0.2?

Attachment	Size
policy.xml	871 bytes

supun's picture

Can you please provide your

Submitted by supun on June 17, 2009 - 01:41.

Can you please provide your synapse.xml file and log file. That way we can identify the problem easily. Thanks, Supun..

Login or register to post comments

yakovo's picture

Hi, I've succeeded with the

Submitted by yakovo on June 17, 2009 - 10:43.

Hi, I've succeeded with the digest scenario after packaging my callback handler as an OSGi bundle and putting it into plugins folder of the esb installation. It works now:) Regards.

Login or register to post comments

supun's picture

Good to hear you got it to

Submitted by supun on June 17, 2009 - 20:18.

Good to hear you got it to work. Thanks, Supun..

Login or register to post comments

library project main code

Featured

In your cloud environment, if a user is consuming too much of your resources, either you have to control the user's behavior or scale up your resources to cater the situation and charge the user for consuming resources. If you decide to control the user, then, throttling is the answer for you...

WSO2 StratosLive is the public Platform as a Service (PaaS) from WSO2. With its lean, complete and 100% open source model, StratosLive holds key attributes to become competitively prominent in the enterprise cloud space...

Messaging is used with distributed computing to achieve asynchronous communication. An Event is a change of state in a software system. Eventing is referred to as propagating messages which contain those event information through publish and subscribe...

Patterns are essential ingredients for architects when building solutions since patterns make solutions more stable as well as clean. It is important to pick the correct pattern based on the problem or the use-case that is implemented by a solution...

WSO2 Carbon Studio immensely simplifies SOA development by providing a complete Eclipse IDE for service/application development, deployment and execution. This article explains Carbon Studio and its benefits...

Popular Content

Developing Web Services Using Apache Axis2 Eclipse Plugins - Part 1 (456056 reads)
How to Embed an Axis2 based Web Service in your Webapp? (104719 reads)
Hello World with Apache Axis2 (102570 reads)
Web Services Security with Apache Rampart – Part 1 ( Transport Level Security ) (96134 reads)
Downloading a Binary File from a Web Service using Axis2 and SOAP with Attachments (91210 reads)
Developing Web Services Using Apache Axis2 Eclipse Plugins - Part 2 (84671 reads)
Writing Your Own services.xml for Axis2 Web Services (80074 reads)
Reference Guide to Apache Axis2 Client API Parameters (72620 reads)

Learn Cloud

Learn

Cloud

The WSO2 Application Server is a reliable application server that can host your enterprise web applications. The WSO2 Application Server as a Service is offered in StratosLive, the WSO2 Platform as a Service. This article explains how a simple web application can be developed and deployed from Carbon Studio to the WSO2 Application Server...

Latest Webinar

Different groups within an organization need to monitor different Key Performance Indicators (KPIs) - An operations team will be interested in the response times of business services and loads of each service,..

Thursday, February 9th 2012, 09.00 AM (PST)

Thursday, February 9th 2012, 10.00 AM (GMT)

Tags

Web services WS-Security WS-ReliableMessaging WS-PolicyAttachment WS-Policy WS-Trust transports WS-Eventing WS-* WS-Policy