| Re: [higgins-dev] Error in RP / DecryptElement |
Hi Jeesmon I have tried the RP you suggested: http://www.azigo.com/company/dev/higgins-rp-demo/ and it works. I still have to tweak some things (like using my own certs instead of the provided ones, which points to localhost), but the NullPointerException is gone. The output shown is [1]. It also shows the message "Did not find an X509Data element in the KeyInfo", but that seems to be OK. I still would like to fix my original problem, though. Could it be due to missconfiguration? Wrong libraries? Thanks, Maxi [1] Did not find an X509Data element in the KeyInfo DigitalIdentity : name = givenname, namespace = http://schemas.xmlsoap.org/ws/2005/05/identity/claims, value = Mr Admin name = emailaddress, namespace = http://schemas.xmlsoap.org/ws/2005/05/identity/claims, value = admin@xxxxxxxxxxxxx name = surname, namespace = http://schemas.xmlsoap.org/ws/2005/05/identity/claims, value = Soa name = privatepersonalidentifier, namespace = http://schemas.xmlsoap.org/ws/2005/05/identity/claims, value = EHuSQbx2N8tQpPzd4p7vLgQxz/BTMrGdOk1Y+rbyVsU= 2009-08-11 15:49:37.301:/RelyingPartyDemoApp:INFO: 192.168.152.1 tried to access https://vm-ubuntu:9443/RelyingPartyDemoApp/protected/index.jsp on Tue Aug 11 15:49:37 CEST 2009. (Reported by RelyingPartyDemoApp.) Parameter = emailaddress Value = admin@xxxxxxxxxxxxx Parameter = INFOCARD_PPID Value = EHuSQbx2N8tQpPzd4p7vLgQxz/BTMrGdOk1Y+rbyVsU= Parameter = givenname Value = Mr Admin Parameter = surname Value = Soa Parameter = privatepersonalidentifier Value = EHuSQbx2N8tQpPzd4p7vLgQxz/BTMrGdOk1Y+rbyVsU= 2009-08-11 15:49:37.535:/RelyingPartyDemoApp:INFO: generateURL produces http://vm-ubuntu:9080/RelyingPartyDemoApp/Logout Jeesmon Jacob <JJacob@xxxxxxxxx> Sent by: higgins-dev-bounces@xxxxxxxxxxx 10/08/2009 16:08 Please respond to "Higgins \(Trust Framework\) Project developer discussions" <higgins-dev@xxxxxxxxxxx> To "Higgins (Trust Framework) Project developer discussions" <higgins-dev@xxxxxxxxxxx> cc Subject Re: [higgins-dev] Error in RP / DecryptElement > Regarding the other RP that you suggest: do they offer the same > functionallity with the one I am trying? is the configuration the > same? Yes, it's 100% higgins. Only difference is I manually built it and packaged with Jetty so that you don't need anything else other than Java to run it. On Aug 10, 2009, at 9:58 AM, maxi.combina@xxxxxxxxxxxxx wrote: > Hello Jeesmon, > > The download link you mention below redirects to: > http://www.eclipse.org/higgins/ver2/downloadsnew.php?loc=downloads/rp.servlet.sample > > In this location, the build B1-0-0 (note that it is from February 22, > 2008) *does* include a lot of supporting jars. The name of the file is > "org.eclipse.higgins.rp.servlet.sample-incubation-R20080222- > war.zip", and > the size is ~384KB. > > However, the files I have tried (which are newes) do *not* include any > supporting jar: > - T1-0-1, builid R20080415 > - B-1-1M1, buildid R20080515 > - B-1-1M2, buildid S20080620 > - B-1-1M3, buildid S20080801 > - B-1-1M4, buildid S20081124 > - B-1-1M5, buildid S20090224 > - B-1-1M6, buildid S20090325 (this is the release I am using) > > The size of every one of these files is ~174KB. > > > It seems that starting from T1-0-1 (April 15, 2008) the jar files > are not > bundled any more. > > > Regarding the other RP that you suggest: do they offer the same > functionallity with the one I am trying? is the configuration the > same? > > Thanks, > Maxi > > > > > Jeesmon Jacob <JJacob@xxxxxxxxx> > Sent by: higgins-dev-bounces@xxxxxxxxxxx > 10/08/2009 13:53 > Please respond to > "Higgins \(Trust Framework\) Project developer discussions" > <higgins-dev@xxxxxxxxxxx> > > > To > "Higgins (Trust Framework) Project developer discussions" > <higgins-dev@xxxxxxxxxxx> > cc > > Subject > Re: [higgins-dev] Error in RP / DecryptElement > > > > > > > I downloaded the war file and looks like it not a good one. There is > no supporting jar files included in the war. I even doubt the download > link is correct. > > Paul/Brian/Valery, could you please check the download link and see > whether it is the right link? > > http://wiki.eclipse.org/Extensible_Protocol_RP_Website_1.0#Download > > jjacobs-macbook-pro:w Jeesmon$ unzip -l RelyingPartyDemoApp2.war > Archive: RelyingPartyDemoApp2.war > Length Date Time Name > -------- ---- ---- ---- > 0 03-25-09 14:15 META-INF/ > 93 03-25-09 14:15 META-INF/MANIFEST.MF > 0 03-25-09 14:15 WEB-INF/ > 3630 01-07-08 14:47 WEB-INF/web.xml > 0 03-25-09 14:15 WEB-INF/lib/ > 0 03-25-09 14:15 images/ > 0 03-25-09 14:15 jspgraphics/ > 0 03-25-09 14:15 jspgraphics/images/ > 0 03-25-09 14:15 protected/ > 0 03-25-09 14:15 unprotected/ > 3519 12-20-07 11:42 Logout.jsp > 10307 12-20-07 11:42 MultiLogin.jsp > 2480 12-20-07 11:42 NoXmlToken.jsp > 127 12-20-07 11:42 Privacy.txt > 624 12-20-07 11:42 TestRoot.cer > 189 12-20-07 11:42 icard.properties > 49152 12-20-07 11:42 images/Thumbs.db > 202 12-20-07 11:42 images/bg-gradient-1.gif > 750 12-20-07 11:42 images/bg-gradient-1.jpg > 1106 12-20-07 11:42 images/bg-gradient-2.jpg > 400 12-20-07 11:42 images/bg-titlebar-1.gif > 13286 12-20-07 11:42 images/birthday-1.gif > 3380 12-20-07 11:42 images/camera.gif > 959 12-20-07 11:42 images/cameraRec.js > 1924 12-20-07 11:42 images/canonXti.jpg > 1633 12-20-07 11:42 images/create.gif > 1533 12-20-07 11:42 images/delete.gif > 104 12-20-07 11:42 images/demo-bluegradient-1.gif > 44 12-20-07 11:42 images/divider.gif > 10515 12-20-07 11:42 images/family-1.gif > 1054 12-20-07 11:42 images/generate.gif > 4729 12-20-07 11:42 images/logo-1.gif > 1747 12-20-07 11:42 images/modify.gif > 9358 12-20-07 11:42 images/nature-1.gif > 1371 12-20-07 11:42 images/nextBtnDisabled.gif > 1325 12-20-07 11:42 images/nextBtnEnabled.gif > 1684 12-20-07 11:42 images/nikonD80.jpg > 1936 12-20-07 11:42 images/noCamera.jpg > 1739 12-20-07 11:42 images/olympusE510.jpg > 1580 12-20-07 11:42 images/pentaxK10D.jpg > 1505 12-20-07 11:42 images/prevBtnDisabled.gif > 1447 12-20-07 11:42 images/prevBtnEnabled.gif > 1828 12-20-07 11:42 images/small-mouse.gif > 1749 12-20-07 11:42 images/sonyA100K.jpg > 1778 12-20-07 11:42 images/style2.css > 735 12-20-07 11:42 images/style3.css > 13134 12-20-07 11:42 images/vacation-1.gif > 2588 01-07-08 19:07 index.jsp > 470 12-20-07 11:42 internal.jsp > 32500 12-20-07 11:42 jspgraphics/images/Higgin's.logo.1_. > 150dpi.jpg > 202 12-20-07 11:42 jspgraphics/images/bg-gradient-1.gif > 750 12-20-07 11:42 jspgraphics/images/bg-gradient-1.jpg > 1106 12-20-07 11:42 jspgraphics/images/bg-gradient-2.jpg > 400 12-20-07 11:42 jspgraphics/images/bg-titlebar-1.gif > 1633 12-20-07 11:42 jspgraphics/images/create.gif > 1533 12-20-07 11:42 jspgraphics/images/delete.gif > 1054 12-20-07 11:42 jspgraphics/images/generate.gif > 1962 12-20-07 11:42 jspgraphics/images/infocard_56x39.gif > 4729 12-20-07 11:42 jspgraphics/images/logo-1.gif > 1747 12-20-07 11:42 jspgraphics/images/modify.gif > 1814 12-20-07 11:42 jspgraphics/style2.css > 2660 12-20-07 11:42 localhost.jks > 17811 01-07-08 19:07 protected/index.jsp > 17815 01-07-08 19:07 unprotected/index.jsp > 0 03-25-09 14:15 WEB-INF/classes/ > 0 03-25-09 14:15 WEB-INF/classes/org/ > 0 03-25-09 14:15 WEB-INF/classes/org/apache/ > 0 03-25-09 14:15 WEB-INF/classes/org/apache/xml/ > 0 03-25-09 14:15 WEB-INF/classes/org/apache/xml/security/ > 0 03-25-09 14:15 WEB-INF/classes/org/apache/xml/security/ > resources/ > 23533 03-25-09 14:15 WEB-INF/classes/org/apache/xml/security/ > resources/config.xml > -------- ------- > 268963 71 files > > > Maxi, > > In the mean time, would you like to try the ready to run pre-built RP > package that include everything from here? > > http://www.azigo.com/company/dev/higgins-rp/ > (org.eclipse.higgins.rp.simple) > http://www.azigo.com/company/dev/higgins-rp-demo/ > (org.eclipse.higgins.rpdemoapp) > > -Jeesmon > > > > > > On Aug 10, 2009, at 4:35 AM, maxi.combina@xxxxxxxxxxxxx wrote: > >> Hi Jeesmon, >> >> I downloaded a pre-built package. Details are: >> >> I downloaded the RP from: >> http://wiki.eclipse.org/Extensible_Protocol_RP_Website_1.0#Download >> >> which took me here: >> > http://www.eclipse.org/higgins/ver2/downloadsnew.php?loc=downloads/rp.servlet.sample > >> >> I am using the Stable B-1-1M6 version, which I found here: >> > http://download.eclipse.org/technology/higgins/downloads/rp.servlet.sample/builds/S-S20090325-200903251303/index.html > >> >> >> Kind regards, >> Maxi >> >> >> >> >> >> Hi Maxi, >> >> Could you please give more details on which project that you are >> using? Did you download the war file or built it yourself or used the >> pre-built package from somewhere? >> >> >> There are two rp related projects in higgins >> >> > http://dev.eclipse.org/svnroot/technology/org.eclipse.higgins/trunk/app/org.eclipse.higgins.rpdemoapp > >> >> > http://dev.eclipse.org/svnroot/technology/org.eclipse.higgins/trunk/app/org.eclipse.higgins.rp.simple > >> >> >> Thanks, >> Jeesmon >> >> On Aug 7, 2009, at 10:17 AM, maxi.combina@xxxxxxxxxxxxx wrote: >> >>> Hello, >>> >>> I am trying to configure the RP from Higgins Milestone 6. It is >>> running >>> using Tomcat 6, with Java 1.6.0_14. >>> The problem I am facing seems to happen when the RP needs to decrypt >>> the >>> user token. More specifically, the method >>> org.eclipse.higgins.rp.icard.ICardProtocolHandler.processUserToken() >>> is >>> throwing an exception in (apparently) line 146: >>> >>> ie = secext.DecryptElement(elemToken, >>> (PrivateKey) >>> (keyStore.getKey(keyStoreAlias,keyStorePwd.toCharArray()))); >>> >>> The output I see in catalina.out is [1] >>> >>> Could you please give me some hint on what may be wrong? >>> >>> Thanks in advance, >>> Maxi >>> >>> [1] >>> INFO: Decrypt token using key Sun RSA private CRT key, 1024 bits >>> >>> modulus: (long number) >>> public exponent: 65537 >>> private exponent: (long number) >>> prime p: (long number) >>> prime q: (long number) >>> prime exponent p: (long number) >>> prime exponent q: (long number) >>> crt coefficient: (long number) >>> key algorithm RSA >>> Aug 7, 2009 3:39:54 PM >>> org.eclipse.higgins.rp.icard.ICardProtocolHandler >>> processUserToken >>> SEVERE: Unable to proecess token >>> java.lang.NullPointerException >>> at >>> org >>> .eclipse >>> .higgins >>> .rp >>> .icard >>> .ICardProtocolHandler.processUserToken(ICardProtocolHandler.java: >>> 147) >>> at >>> org >>> .eclipse >>> .higgins >>> .rp >>> .icard.ICardProtocolHandler.authenticate(ICardProtocolHandler.java: >>> 105) >>> at >>> org >>> .eclipse >>> .higgins.rp.servlet.server.Login.ContinueAuthentication(Login.java: >>> 69) >>> at >>> org.apache.jsp.MultiLogin_jsp._jspService(MultiLogin_jsp.java:71) >>> at >>> org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>> at >>> org >>> .apache >>> .jasper.servlet.JspServletWrapper.service(JspServletWrapper.java: >>> 374) >>> at >>> org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java: >>> 342) >>> at >>> org.apache.jasper.servlet.JspServlet.service(JspServlet.java:267) >>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) >>> at >>> org >>> .apache >>> .catalina >>> .core >>> .ApplicationFilterChain >>> .internalDoFilter(ApplicationFilterChain.java: >>> 290) >>> at >>> org >>> .apache >>> .catalina >>> .core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java: >>> 206) >>> at >>> org >>> .apache >>> .catalina >>> .core.StandardWrapperValve.invoke(StandardWrapperValve.java: >>> 233) >>> at >>> org >>> .apache >>> .catalina >>> .core.StandardContextValve.invoke(StandardContextValve.java: >>> 191) >>> at >>> org >>> .apache >>> .catalina.core.StandardHostValve.invoke(StandardHostValve.java:128) >>> at >>> org >>> .apache >>> .catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) >>> at >>> org >>> .apache >>> .catalina.core.StandardEngineValve.invoke(StandardEngineValve.java: >>> 109) >>> at >>> org >>> .apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java: >>> 293) >>> at >>> org >>> .apache.coyote.http11.Http11Processor.process(Http11Processor.java: >>> 849) >>> at >>> org.apache.coyote.http11.Http11Protocol >>> $Http11ConnectionHandler.process(Http11Protocol.java:583) >>> at >>> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java: >>> 454) >>> at java.lang.Thread.run(Thread.java:619) >>> Aug 7, 2009 3:39:54 PM >>> org.eclipse.higgins.rp.icard.ICardProtocolHandler >>> processUserToken >>> INFO: Error authenticating token >>> Aug 7, 2009 3:39:54 PM >>> org.eclipse.higgins.rp.servlet.impl.ResultCallbackHandler >>> handleFailure >>> SEVERE: authn failure - no token: forward to NoXmlToken.jsp >>> >>> >>> <smime.p7s><ATT00001.c> >> >> _______________________________________________ >> higgins-dev mailing list >> higgins-dev@xxxxxxxxxxx >> https://dev.eclipse.org/mailman/listinfo/higgins-dev >> >> >> >> <smime.p7s><ATT00001.c> > > _______________________________________________ > higgins-dev mailing list > higgins-dev@xxxxxxxxxxx > https://dev.eclipse.org/mailman/listinfo/higgins-dev > > > > <smime.p7s><ATT00001.c> _______________________________________________ higgins-dev mailing list higgins-dev@xxxxxxxxxxx https://dev.eclipse.org/mailman/listinfo/higgins-dev
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature