ws-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Alekhya Gumudavelli (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (WSS-520) Searching in wrong path for the message.
Date Fri, 26 Dec 2014 10:52:13 GMT

    [ https://issues.apache.org/jira/browse/WSS-520?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14259036#comment-14259036
] 

Alekhya Gumudavelli commented on WSS-520:
-----------------------------------------

Thanks Colm, the change you suggested works. I want to make sure if it will not cause any
side-effects. I see WSSConfig.init() does the following internally in addition to initializeResourceBundles()-
 setXmlSecIgnoreLineBreak();
 addXMLDSigRIInternal();
 addJceProvider("BC", "org.bouncycastle.jce.provider.BouncyCastleProvider");

Does any of the above cause any run time differences?

> Searching in wrong path for the message.
> ----------------------------------------
>
>                 Key: WSS-520
>                 URL: https://issues.apache.org/jira/browse/WSS-520
>             Project: WSS4J
>          Issue Type: Bug
>            Reporter: renu
>            Assignee: Colm O hEigeartaigh
>
>  Getting exception:
> Caused by: org.apache.wss4j.common.ext.WSSecurityException: No message with ID "certpath"
found in resource bundle "org/apache/xml/security/resource/xmlsecurity". Original Exception
was a java.security.cert.CertPathValidatorException and message basic constraints check failed:
this is not a CA certificate 
> Original Exception was java.security.cert.CertPathValidatorException: basic constraints
check failed: this is not a CA certificate 
>  at org.apache.wss4j.common.crypto.Merlin.verifyTrust(Merlin.java:933) 
>  at org.apache.wss4j.dom.validate.SignatureTrustValidator.verifyTrustInCerts(SignatureTrustValidator.java:108)

>  at org.apache.wss4j.dom.validate.SignatureTrustValidator.validate(SignatureTrustValidator.java:64)

>  at org.apache.wss4j.dom.validate.SamlAssertionValidator.verifySignedAssertion(SamlAssertionValidator.java:130)

>  at org.apache.wss4j.dom.validate.SamlAssertionValidator.validate(SamlAssertionValidator.java:109)

> Instead of searching the message in the resource bundle of wss4j , message is searched
in xml security and thus causing the exception.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@ws.apache.org
For additional commands, e-mail: dev-help@ws.apache.org


Mime
View raw message