glassfish
  1. glassfish
  2. GLASSFISH-1330

Multiple endpoint access in different WAR's leads to signature verification

    Details

    • Type: Bug Bug
    • Status: Resolved
    • Priority: Blocker Blocker
    • Resolution: Cannot Reproduce
    • Affects Version/s: 9.1pe
    • Fix Version/s: 9.1pe
    • Component/s: web_services
    • Labels:
      None
    • Environment:

      Operating System: All
      Platform: All

    • Issuezilla Id:
      1,330

      Description

      There is an issue where WSIT jars when loaded from the web app using sunweb.xml
      causes security component in WSIT to throw an error.

      A detaild test case and investigation can be found in the WSIT issue tracker
      from where this issue is being transfered.
      https://wsit.dev.java.net/issues/show_bug.cgi?id=84

      This is a show stopper bug and I am setting priority to P1.

        Activity

        Hide
        sameer_t added a comment -

        The issue does not show up anymore with the b26 and wsit1353.

        Note: (this may apply to others, not the test case referenced here)
        JSR-109 processes only those annotations that have an equivalent deployment
        descriptor entries. All the other Web Svc related annotations are processed by
        JAXWS RI. Annotation processing by JAXWS requires some special permissions for
        which the server.policy file is already updated. This permission will not be
        available for those binaries in an app's WEB-INF/lib directory. So if you are
        using WSIT binaries in the WEb-INF/lib and thise bits perform any such
        processing, then they will fail - or you need to explicitly define those
        permissions in the server.policy file.

        Show
        sameer_t added a comment - The issue does not show up anymore with the b26 and wsit1353. Note: (this may apply to others, not the test case referenced here) JSR-109 processes only those annotations that have an equivalent deployment descriptor entries. All the other Web Svc related annotations are processed by JAXWS RI. Annotation processing by JAXWS requires some special permissions for which the server.policy file is already updated. This permission will not be available for those binaries in an app's WEB-INF/lib directory. So if you are using WSIT binaries in the WEb-INF/lib and thise bits perform any such processing, then they will fail - or you need to explicitly define those permissions in the server.policy file.
        Hide
        sameer_t added a comment -

        checking with latest WSIT hudson-wsit-javanet-1353 and Glassfish-v2-b26

        Show
        sameer_t added a comment - checking with latest WSIT hudson-wsit-javanet-1353 and Glassfish-v2-b26
        Hide
        sameer_t added a comment -

        Created an attachment (id=612)
        Updated test case - put WSIT jars in lib director to run

        Show
        sameer_t added a comment - Created an attachment (id=612) Updated test case - put WSIT jars in lib director to run
        Hide
        sridatta added a comment -

        Changing owner to Sameer.

        Show
        sridatta added a comment - Changing owner to Sameer.
        Hide
        gfbugbridge added a comment -

        <BT6492739>

        Show
        gfbugbridge added a comment - <BT6492739>
        Hide
        gfbugbridge added a comment -

        <BT6483965>

        Show
        gfbugbridge added a comment - <BT6483965>
        Hide
        sameer_t added a comment -

        According to security team, removing sun-web.xml and having WSIT jar's loaded
        from classpath-prefix rather than web-inf\lib solves the problem.

        Show
        sameer_t added a comment - According to security team, removing sun-web.xml and having WSIT jar's loaded from classpath-prefix rather than web-inf\lib solves the problem.
        Hide
        jluehe added a comment -

        Updated subcategory and reassigned to Vijay.

        Show
        jluehe added a comment - Updated subcategory and reassigned to Vijay.

          People

          • Assignee:
            sameer_t
            Reporter:
            sameer_t
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: