我正在开发一个使用嵌入式axis2 servlet和rampart(均为1.4版)创建的web服务。我创建了正确的目录结构,并放置了所有必需的模块和库。
在没有任何安全策略的情况下使用它时,一切都很好。悬停,当我添加安全策略时,将任何请求发布到我的web服务导致:
org.apache.axis2.AxisFault:无效安全网址:org.apache.rampart.handler.PostDispatchVerificationHandler.invoke(PostDispatchVerifificationHandler.java:143)网址:org.apache.axis2.engine.Phase.invoke(Phase.java:317)网址:org.apache.axis2.engine.AxiEngine.ioke(AxisEngine.java:264)网址:org.apache.axis2.engine.AxiEngine.rereceive(AxisEngine.java:163)网址:org.apache.axis2.transport.http.HTTPransportUtils.processHTTPPostRequest(HTTPTransportUtils.java:275)网址:org.apache.axis2.transport.http.AxisServlet.doPost(AxisServlet.java:131)位于javax.servlet.httpHttpServlet.service(HttpServlet.java:637)位于javax.servlet.httpHttpServlet.service(HttpServlet.java:717)网址:org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)网址:org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)位于pl.epoint.ow.filters.OneWebFilter.doFilter(OneWebFilter.java:46)网址:org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)网址:org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)网址:org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)网址:org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)网址:org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)网址:org.apache.catalina.core.StandardWrapperValv.invoke(StandardWrapperValve.java:235)网址:org.apache.catalina.core.StandardContextValv.__invoke(StandardContextValv.java:191)网址:org.apache.catalina.core.StandardContextValv.invoke(StandardContextValv.java)网址:org.jboss.web.tomcat.security.SecurityAssociationValv.invoke(SecurityAssociationValve.java:190)网址:org.jboss.web.tomcat.security.JaccContentValve.ioke(JaccContextValve.java:92)网址:org.jboss.web.tomcat.security.SecurityContextEstablishmentValv.process(SecurityContextEstablishment Valve.java:126)网址:org.jboss.web.tomcat.security.SecurityContextEstablishmentValv.invoke(SecurityContextEstablishment Valve.java:70)网址:org.apache.catalina.core.StandardHostValv.invoke(StandardHostValv.java:127)网址:org.apache.catalina.vals.ErrorReportValve.ioke(ErrorReportValve.java:102)网址:org.apache.catalina.core.StandardEngineValv.invoke(StandardEngineValv.java:109)网址:org.apache.catalina.connecter.CoyoteAdapter.service(Coyotedapter.java:330)网址:org.apache.coyote.http11.Http11Processor.produce(Http11Processor.java:829)网址:org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)网址:org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)位于java.lang.Thread.run(Thread.java:662)
这是我的service.xml文件(已删除机密详细信息)http://pastebin.com/bPPiuRMM
有人知道如何解决这个问题吗?
请检查安全策略是否正确应用。只需检查服务的WSDL是否包含安全策略。请在此处为此[1]创建一个JIRA。
[1] -https://issues.apache.org/jira/browse/Rampart