使用SoapUI测试自签名证书身份验证Web服务

时间:2015-04-19 04:36:21

标签: spring authentication ssl certificate soapui

我正在使用Spring webservice 2.2.x通过<x509/>

实现自我证书身份验证

通过这种方式, X509AuthenticationFilter 需要来自 javax.servlet.request.X509Certificate 的客户端证书

X509Certificate[] certs = (X509Certificate[]) request.getAttribute("javax.servlet.request.X509Certificate");

如何配置SoapUI以将客户端证书放在那里? 我试图将JKS或PCS12密钥库配置为:

  1. 显示项目视图 - &gt; WS-Security配置 - &gt; keyStore
  2. 请求属性 - &gt; SSL KeyStore

    3. 但它不起作用:在请求中找不到客户端证书 

    11:58:10.001 [233950856@qtp-444127949-3] DEBUG o.s.security.web.FilterChainProxy - /services at position 1 of 10 in additional filter chain; firing Filter: 'SecurityContextPersistenceFilter'
11:58:10.004 [233950856@qtp-444127949-3] DEBUG o.s.s.w.c.HttpSessionSecurityContextRepository - No HttpSession currently exists
11:58:10.004 [233950856@qtp-444127949-3] DEBUG o.s.s.w.c.HttpSessionSecurityContextRepository - No SecurityContext was available from the HttpSession: null. A new one will be created.
11:58:10.005 [233950856@qtp-444127949-3] DEBUG o.s.security.web.FilterChainProxy - /services at position 2 of 10 in additional filter chain; firing Filter: 'HeaderWriterFilter'
11:58:10.006 [233950856@qtp-444127949-3] DEBUG o.s.security.web.FilterChainProxy - /services at position 3 of 10 in additional filter chain; firing Filter: 'LogoutFilter'
11:58:10.006 [233950856@qtp-444127949-3] DEBUG o.s.s.w.u.m.AntPathRequestMatcher - Checking match of request : '/services'; against '/logout'
11:58:10.006 [233950856@qtp-444127949-3] DEBUG o.s.security.web.FilterChainProxy - /services at position 4 of 10 in additional filter chain; firing Filter: 'X509AuthenticationFilter'
11:58:10.006 [233950856@qtp-444127949-3] DEBUG o.s.s.w.a.p.x.X509AuthenticationFilter - Checking secure context token: null
11:58:10.006 [233950856@qtp-444127949-3] DEBUG o.s.s.w.a.p.x.X509AuthenticationFilter - No client certificate found in request.
11:58:10.006 [233950856@qtp-444127949-3] DEBUG o.s.s.w.a.p.x.X509AuthenticationFilter - No client certificate found in request.
11:58:10.006 [233950856@qtp-444127949-3] DEBUG o.s.s.w.a.p.x.X509AuthenticationFilter - No pre-authenticated principal found in request
11:58:10.007 [233950856@qtp-444127949-3] DEBUG o.s.security.web.FilterChainProxy - /services at position 5 of 10 in additional filter chain; firing Filter: 'RequestCacheAwareFilter'
11:58:10.007 [233950856@qtp-444127949-3] DEBUG o.s.security.web.FilterChainProxy - /services at position 6 of 10 in additional filter chain; firing Filter: 'SecurityContextHolderAwareRequestFilter'
11:58:10.007 [233950856@qtp-444127949-3] DEBUG o.s.security.web.FilterChainProxy - /services at position 7 of 10 in additional filter chain; firing Filter: 'AnonymousAuthenticationFilter'
11:58:10.007 [233950856@qtp-444127949-3] DEBUG o.s.s.w.a.AnonymousAuthenticationFilter - Populated SecurityContextHolder with anonymous token: 'org.springframework.security.authentication.AnonymousAuthenticationToken@9055e4a6: Principal: anonymousUser; Credentials: [PROTECTED]; Authenticated: true; Details: org.springframework.security.web.authentication.WebAuthenticationDetails@957e: RemoteIpAddress: 127.0.0.1; SessionId: null; Granted Authorities: ROLE_ANONYMOUS'

1 个答案:

答案 0 :(得分:0)

  1. 创建项目后
  2. 显示项目视图 - &gt; WS-Security配置 - &gt;密钥库
  3. 在此处添加客户端PCKS12密钥
  4. WS-Security配置 - &gt;传出WS-Secutity配置 - &gt;新的传出WSS配置 - &gt;任意名称
  5. 然后在 - &gt;下找到“Sepcify配置的唯一名称”。填写密钥库,别名和密码(如果有,通常为空)
  6. 保存并完成配置
相关问题
最新问题