Example 76 with Fault
use of org.apache.cxf.interceptor.Fault in project cxf by apache.
the class JettyDigestAuthTest method setupClient.
private HTTPConduit setupClient(boolean async) throws Exception {
URL wsdl = getClass().getResource("/wsdl/hello_world.wsdl");
greeter = new SOAPService(wsdl, SERVICE_NAME).getPort(Greeter.class);
BindingProvider bp = (BindingProvider) greeter;
ClientProxy.getClient(greeter).getInInterceptors().add(new LoggingInInterceptor());
ClientProxy.getClient(greeter).getOutInterceptors().add(new LoggingOutInterceptor());
bp.getRequestContext().put(BindingProvider.ENDPOINT_ADDRESS_PROPERTY, ADDRESS);
HTTPConduit cond = (HTTPConduit) ClientProxy.getClient(greeter).getConduit();
HTTPClientPolicy client = new HTTPClientPolicy();
cond.setClient(client);
if (async) {
if (cond instanceof AsyncHTTPConduit) {
UsernamePasswordCredentials creds = new UsernamePasswordCredentials("ffang", "pswd");
bp.getRequestContext().put(Credentials.class.getName(), creds);
bp.getRequestContext().put(AsyncHTTPConduit.USE_ASYNC, Boolean.TRUE);
client.setAutoRedirect(true);
} else {
fail("Not an async conduit");
}
} else {
bp.getRequestContext().put(BindingProvider.USERNAME_PROPERTY, "ffang");
bp.getRequestContext().put(BindingProvider.PASSWORD_PROPERTY, "pswd");
cond.setAuthSupplier(new DigestAuthSupplier());
}
ClientProxy.getClient(greeter).getOutInterceptors().add(new AbstractPhaseInterceptor<Message>(Phase.PRE_STREAM_ENDING) {
public void handleMessage(Message message) throws Fault {
Map<String, ?> headers = CastUtils.cast((Map<?, ?>) message.get(Message.PROTOCOL_HEADERS));
if (headers.containsKey("Proxy-Authorization")) {
throw new RuntimeException("Should not have Proxy-Authorization");
}
}
});
client.setAllowChunking(false);
return cond;
}
Also used :
SOAPService(org.apache.hello_world_soap_http.SOAPService)
DigestAuthSupplier(org.apache.cxf.transport.http.auth.DigestAuthSupplier)
Message(org.apache.cxf.message.Message)
Fault(org.apache.cxf.interceptor.Fault)
BindingProvider(javax.xml.ws.BindingProvider)
URL(java.net.URL)
AsyncHTTPConduit(org.apache.cxf.transport.http.asyncclient.AsyncHTTPConduit)
UsernamePasswordCredentials(org.apache.http.auth.UsernamePasswordCredentials)
HTTPConduit(org.apache.cxf.transport.http.HTTPConduit)
AsyncHTTPConduit(org.apache.cxf.transport.http.asyncclient.AsyncHTTPConduit)
LoggingOutInterceptor(org.apache.cxf.ext.logging.LoggingOutInterceptor)
Greeter(org.apache.hello_world_soap_http.Greeter)
HTTPClientPolicy(org.apache.cxf.transports.http.configuration.HTTPClientPolicy)
LoggingInInterceptor(org.apache.cxf.ext.logging.LoggingInInterceptor)
Map(java.util.Map)
Credentials(org.apache.http.auth.Credentials)
UsernamePasswordCredentials(org.apache.http.auth.UsernamePasswordCredentials)
Example 77 with Fault
use of org.apache.cxf.interceptor.Fault in project cxf by apache.
the class JettyHTTPServerEngine method addServant.
/**
* Register a servant.
*
* @param url the URL associated with the servant
* @param handler notified on incoming HTTP requests
*/
public synchronized void addServant(URL url, JettyHTTPHandler handler) {
if (shouldCheckUrl(handler.getBus())) {
checkRegistedContext(url);
}
initializeContexts();
SecurityHandler securityHandler = null;
if (server == null) {
DefaultHandler defaultHandler = null;
// create a new jetty server instance if there is no server there
server = createServer();
addServerMBean();
if (connector == null) {
connector = createConnector(getHost(), getPort(), handler.getBus());
if (LOG.isLoggable(Level.FINER)) {
logConnector((ServerConnector) connector);
}
}
server.addConnector(connector);
setupThreadPool();
/*
* The server may have no handler, it might have a collection handler,
* it might have a one-shot. We need to add one or more of ours.
*
*/
int numberOfHandlers = 1;
if (handlers != null) {
numberOfHandlers += handlers.size();
}
Handler existingHandler = server.getHandler();
HandlerCollection handlerCollection = null;
boolean existingHandlerCollection = existingHandler instanceof HandlerCollection;
if (existingHandlerCollection) {
handlerCollection = (HandlerCollection) existingHandler;
}
if (!existingHandlerCollection && (existingHandler != null || numberOfHandlers > 1)) {
handlerCollection = new HandlerCollection();
if (existingHandler != null) {
handlerCollection.addHandler(existingHandler);
}
server.setHandler(handlerCollection);
}
/*
* At this point, the server's handler is a collection. It was either
* one to start, or it is now one containing only the single handler
* that was there to begin with.
*/
if (handlers != null && !handlers.isEmpty()) {
for (Handler h : handlers) {
// which should not be added at this point.
if (h instanceof DefaultHandler) {
defaultHandler = (DefaultHandler) h;
} else {
if ((h instanceof SecurityHandler) && ((SecurityHandler) h).getHandler() == null) {
// if h is SecurityHandler(such as ConstraintSecurityHandler)
// then it need be on top of JettyHTTPHandler
// set JettyHTTPHandler as inner handler if
// inner handler is null
((SecurityHandler) h).setHandler(handler);
securityHandler = (SecurityHandler) h;
} else {
handlerCollection.addHandler(h);
}
}
}
}
/*
* handlerCollection may be null here if is only one handler to deal with.
* Which in turn implies that there can't be a 'defaultHander' to deal with.
*/
if (handlerCollection != null) {
handlerCollection.addHandler(contexts);
if (defaultHandler != null) {
handlerCollection.addHandler(defaultHandler);
}
} else {
server.setHandler(contexts);
}
try {
server.start();
} catch (Exception e) {
LOG.log(Level.SEVERE, "START_UP_SERVER_FAILED_MSG", new Object[] { e.getMessage(), port });
// problem starting server
try {
server.stop();
server.destroy();
} catch (Exception ex) {
// ignore - probably wasn't fully started anyway
}
server = null;
throw new Fault(new Message("START_UP_SERVER_FAILED_MSG", LOG, e.getMessage(), port), e);
}
}
String contextName = HttpUriMapper.getContextName(url.getPath());
ContextHandler context = new ContextHandler();
context.setContextPath(contextName);
// bind the jetty http handler with the context handler
if (isSessionSupport) {
SessionHandler sh = configureSession();
if (securityHandler != null) {
// use the securityHander which already wrap the jetty http handler
sh.setHandler(securityHandler);
} else {
sh.setHandler(handler);
}
context.setHandler(sh);
} else {
// otherwise, just the one.
if (securityHandler != null) {
// use the securityHander which already wrap the jetty http handler
context.setHandler(securityHandler);
} else {
context.setHandler(handler);
}
}
contexts.addHandler(context);
ServletContext sc = context.getServletContext();
handler.setServletContext(sc);
final String smap = getHandlerName(url, context);
handler.setName(smap);
if (contexts.isStarted()) {
try {
context.start();
} catch (Exception ex) {
LOG.log(Level.WARNING, "ADD_HANDLER_FAILED_MSG", new Object[] { ex.getMessage() });
}
}
registedPaths.add(url.getPath());
++servantCount;
}
Also used :
SessionHandler(org.eclipse.jetty.server.session.SessionHandler)
SecurityHandler(org.eclipse.jetty.security.SecurityHandler)
Message(org.apache.cxf.common.i18n.Message)
DefaultHandler(org.eclipse.jetty.server.handler.DefaultHandler)
ErrorHandler(org.eclipse.jetty.server.handler.ErrorHandler)
SecurityHandler(org.eclipse.jetty.security.SecurityHandler)
Handler(org.eclipse.jetty.server.Handler)
ContextHandler(org.eclipse.jetty.server.handler.ContextHandler)
SessionHandler(org.eclipse.jetty.server.session.SessionHandler)
Fault(org.apache.cxf.interceptor.Fault)
ServletException(javax.servlet.ServletException)
UncheckedIOException(java.io.UncheckedIOException)
IOException(java.io.IOException)
DefaultHandler(org.eclipse.jetty.server.handler.DefaultHandler)
ContextHandler(org.eclipse.jetty.server.handler.ContextHandler)
ServletContext(javax.servlet.ServletContext)
ContextHandlerCollection(org.eclipse.jetty.server.handler.ContextHandlerCollection)
HandlerCollection(org.eclipse.jetty.server.handler.HandlerCollection)
Example 78 with Fault
use of org.apache.cxf.interceptor.Fault in project cxf by apache.
the class NettyHttpServletHandler method channelRead.
@Override
public void channelRead(ChannelHandlerContext ctx, Object msg) throws Exception {
HttpRequest request = (HttpRequest) msg;
if (HttpUtil.is100ContinueExpected(request)) {
ctx.write(new DefaultHttpResponse(HttpVersion.HTTP_1_1, HttpResponseStatus.CONTINUE));
}
// find the nettyHttpContextHandler by lookup the request url
NettyHttpContextHandler nettyHttpContextHandler = pipelineFactory.getNettyHttpHandler(request.uri());
if (nettyHttpContextHandler != null) {
handleHttpServletRequest(ctx, request, nettyHttpContextHandler);
} else {
throw new RuntimeException(new Fault(new Message("NO_NETTY_SERVLET_HANDLER_FOUND", LOG, request.uri())));
}
}
Also used :
HttpRequest(io.netty.handler.codec.http.HttpRequest)
Message(org.apache.cxf.common.i18n.Message)
DefaultHttpResponse(io.netty.handler.codec.http.DefaultHttpResponse)
Fault(org.apache.cxf.interceptor.Fault)
Example 79 with Fault
use of org.apache.cxf.interceptor.Fault in project cxf by apache.
the class SecureConversationOutInterceptor method handleMessage.
public void handleMessage(SoapMessage message) throws Fault {
AssertionInfoMap aim = message.get(AssertionInfoMap.class);
// extract Assertion information
if (aim != null) {
Collection<AssertionInfo> ais = PolicyUtils.getAllAssertionsByLocalname(aim, SPConstants.SECURE_CONVERSATION_TOKEN);
if (ais.isEmpty()) {
return;
}
if (isRequestor(message)) {
SecureConversationToken itok = (SecureConversationToken) ais.iterator().next().getAssertion();
try {
SecurityToken tok = (SecurityToken) message.getContextualProperty(SecurityConstants.TOKEN);
if (tok == null) {
String tokId = (String) message.getContextualProperty(SecurityConstants.TOKEN_ID);
if (tokId != null) {
tok = TokenStoreUtils.getTokenStore(message).getToken(tokId);
}
}
if (tok == null) {
tok = issueToken(message, aim, itok);
} else {
tok = renewToken(message, aim, tok, itok);
}
if (tok != null) {
for (AssertionInfo ai : ais) {
ai.setAsserted(true);
}
message.getExchange().getEndpoint().put(SecurityConstants.TOKEN, tok);
message.getExchange().getEndpoint().put(SecurityConstants.TOKEN_ID, tok.getId());
message.getExchange().put(SecurityConstants.TOKEN_ID, tok.getId());
message.getExchange().put(SecurityConstants.TOKEN, tok);
TokenStoreUtils.getTokenStore(message).add(tok);
}
PolicyUtils.assertPolicy(aim, SPConstants.BOOTSTRAP_POLICY);
} catch (TokenStoreException ex) {
throw new Fault(ex);
}
} else {
// server side should be checked on the way in
for (AssertionInfo ai : ais) {
ai.setAsserted(true);
}
PolicyUtils.assertPolicy(aim, SPConstants.BOOTSTRAP_POLICY);
}
}
}
Also used :
SecurityToken(org.apache.cxf.ws.security.tokenstore.SecurityToken)
AssertionInfo(org.apache.cxf.ws.policy.AssertionInfo)
TokenStoreException(org.apache.cxf.ws.security.tokenstore.TokenStoreException)
Fault(org.apache.cxf.interceptor.Fault)
SecureConversationToken(org.apache.wss4j.policy.model.SecureConversationToken)
AssertionInfoMap(org.apache.cxf.ws.policy.AssertionInfoMap)
Example 80 with Fault
use of org.apache.cxf.interceptor.Fault in project cxf by apache.
the class SpnegoContextTokenOutInterceptor method handleMessage.
public void handleMessage(SoapMessage message) throws Fault {
AssertionInfoMap aim = message.get(AssertionInfoMap.class);
// extract Assertion information
if (aim != null) {
Collection<AssertionInfo> ais = PolicyUtils.getAllAssertionsByLocalname(aim, SPConstants.SPNEGO_CONTEXT_TOKEN);
if (ais.isEmpty()) {
return;
}
if (isRequestor(message)) {
String tokId = (String) message.getContextualProperty(SecurityConstants.TOKEN_ID);
SecurityToken tok = null;
try {
if (tokId != null) {
tok = TokenStoreUtils.getTokenStore(message).getToken(tokId);
if (tok != null && tok.isExpired()) {
message.getExchange().getEndpoint().remove(SecurityConstants.TOKEN_ID);
message.getExchange().remove(SecurityConstants.TOKEN_ID);
TokenStoreUtils.getTokenStore(message).remove(tokId);
tok = null;
}
}
if (tok == null) {
tok = issueToken(message, aim);
}
for (AssertionInfo ai : ais) {
ai.setAsserted(true);
}
message.getExchange().getEndpoint().put(SecurityConstants.TOKEN_ID, tok.getId());
message.getExchange().put(SecurityConstants.TOKEN_ID, tok.getId());
TokenStoreUtils.getTokenStore(message).add(tok);
} catch (TokenStoreException ex) {
throw new Fault(ex);
}
} else {
// server side should be checked on the way in
for (AssertionInfo ai : ais) {
ai.setAsserted(true);
}
}
}
}
Also used :
SecurityToken(org.apache.cxf.ws.security.tokenstore.SecurityToken)
AssertionInfo(org.apache.cxf.ws.policy.AssertionInfo)
TokenStoreException(org.apache.cxf.ws.security.tokenstore.TokenStoreException)
Fault(org.apache.cxf.interceptor.Fault)
AssertionInfoMap(org.apache.cxf.ws.policy.AssertionInfoMap)
Aggregations
Fault (org.apache.cxf.interceptor.Fault)283
IOException (java.io.IOException)74
QName (javax.xml.namespace.QName)56
Message (org.apache.cxf.message.Message)52
XMLStreamException (javax.xml.stream.XMLStreamException)50
Element (org.w3c.dom.Element)42
Message (org.apache.cxf.common.i18n.Message)34
Exchange (org.apache.cxf.message.Exchange)30
WSSecurityException (org.apache.wss4j.common.ext.WSSecurityException)30
SOAPException (javax.xml.soap.SOAPException)28
InputStream (java.io.InputStream)27
ArrayList (java.util.ArrayList)27
XMLStreamReader (javax.xml.stream.XMLStreamReader)26
XMLStreamWriter (javax.xml.stream.XMLStreamWriter)26
BindingOperationInfo (org.apache.cxf.service.model.BindingOperationInfo)25
Test (org.junit.Test)24
SecurityToken (org.apache.cxf.ws.security.tokenstore.SecurityToken)23
List (java.util.List)21
SOAPMessage (javax.xml.soap.SOAPMessage)21
MessagePartInfo (org.apache.cxf.service.model.MessagePartInfo)21
