I am trying to consume a .NET web service using UsernameToken plain
text password authentication.
Here is my .wsdd configuration file:
<!-- Using the WSDoAllSender security handler in request flow -->
<deployment xmlns="http://xml.apache.org/axis/wsdd/"
xmlns:java="htt p://xml.apache.org/axis/wsdd/providers/java">
<transport name="http"
pivot="java:org .apache.axis.tr ansport.http.HT TPSender"/>
<globalConfigur ation>
<requestFlow >
<handler type="java:org. apache.ws.axis. security.WSDoAl lSender" >
<parameter name="action" value="Username Token"/>
<parameter name="user" value="hyonyim"/>
<parameter name="passwordT ype" value="Password Text"/>
<!--<parameter name="password" value="hyonyim1 "/>-->
<parameter name="passwordC allbackClass"
value="com.bsi. main.CTCallback "/>
<parameter name="mustUnder stand" value="false" />
</handler>
</requestFlow >
</globalConfigura tion>
</deployment>
I am using axis 1.2.1 and wss4j 1.5.1. When I try to consume the
service, I get the following error:
AxisFault
faultCode: {http://docs.oasis-open.org/wss/2004/...is-200401-wss-
wssecurity-
secext-1.0.xsd}Invalid SecurityToken
faultSubcode:
faultString: An invalid security token was provided
The code seems to trying to check the semantics of the SOAP request,
even though the mustUnderstand parameter is set to false in the config
file.
Any help is appreciated.