Details

    • Type: Improvement Improvement
    • Status: Closed Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 2.1.3
    • Fix Version/s: 2.1.3
    • Component/s: Development
    • Security Level: Public (Public: Anyone can view)
    • Labels:
      None
    • Similar issues:
      KULRICE-12347Issues with basic authenticated services with WSS4J 1.6
      KULRICE-2356KIM Authentication Service Test
      KULRICE-1678Retrofit Rice to use the new authentication framework
      KULRICE-1634Get basic BOs, DDL, OJB descriptor, DAOs and services in place
      KULRICE-6184Document Authentication - Technical Guide
      KULRICE-1797Create sample application that tests the new Acegi based authentication with CAS and another to test the dummy login filter
      KULRICE-6806Evaluate publishing KRMS BO Services vs Designing a new Aggregate Service
      KULRICE-2196Create new workflow user service which uses KIM APIs
      KULRICE-1399Develop Authentication Enhancement Proposal
      KULRICE-1486Create a new AuthorizationService
    • Rice Module:
      KSB
    • Application Requirement:
      Rice
    • KAI Review Status:
      Not Required
    • KTI Review Status:
      Not Required

      Description

      Create a new basic authentication service and update the basic authentication handler to use it appropriately. It should handle creating the WSSecurity header when connecting to a service on the service bus which requires basic authentication.

      Peter would like to do a review of the changes before they are applied.

        Issue Links

          Activity

          Hide
          Shannon Hess added a comment - - edited

          For Testing:

          Added the following to KewEmbeddedSpringBeans.xml

          
            <bean id="rice.kew.workflowDocumentActionServiceBasicAuthentication.exporter" parent="kewServiceExporter"
                  lazy-init="false">
              <property name="serviceDefinition">
                <bean parent="kewService">
                  <property name="service">
                    <ref bean="rice.kew.workflowDocumentActionsService" />
                  </property>
                  <property name="localServiceName" value="workflowDocumentActionsService-basicAuthentication" />
                  <property name="busSecurity"
                            value="${rice.kew.workflowDocumentActionsService.secure}" />
                  <property name="basicAuthentication" value="true" />
                </bean>
              </property>
            </bean>
          
          

          Added the following to KsbMessageClientSpringBeans.xml

          
            <bean class="org.kuali.rice.ksb.service.BasicAuthenticationCredentials">
              <property name="serviceNameSpaceURI" value="http://rice.kuali.org/kew/v2_0" />
              <property name="localServiceName"
                        value="workflowDocumentActionsService-basicAuthentication" />
              <property name="username" value="${WorkflowDocumentActionsService.username}" />
              <property name="password" value="${WorkflowDocumentActionsService.password}" />
              <property name="authenticationService" ref="basicAuthenticationService" />
            </bean>
          
          

          Added the following to rice-config.xml in /usr/local/rice/rice-config.xml

          <param name="WorkflowDocumentActionsService.username">username</param>
          <param name="WorkflowDocumentActionsService.password">password</param>
          

          Used soap UI to test using wsdl http://localhost:8080/kr-dev/remoting/soap/kew/v2_0/workflowDocumentActionsService-basicAuthentication?wsdl

          Request in Soap IU:

          <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:v2="http://rice.kuali.org/kew/v2_0">
             <soapenv:Header>
             <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" soapenv:mustUnderstand="1">
                <wsse:UsernameToken xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="UsernameToken-1815911473">
                   <wsse:Username>username</wsse:Username>
                   <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">password</wsse:Password>
                </wsse:UsernameToken>
             </wsse:Security>
          </soapenv:Header>
             <soapenv:Body>
                <v2:logAnnotation>
                   <!--Optional:-->
                   <v2:documentId>3242</v2:documentId>
                   <!--Optional:-->
                   <v2:principalId>admin</v2:principalId>
                   <!--Optional:-->
                   <v2:annotation>WOOTNOT!</v2:annotation>
                </v2:logAnnotation>
             </soapenv:Body>
          </soapenv:Envelope>
          
          Show
          Shannon Hess added a comment - - edited For Testing: Added the following to KewEmbeddedSpringBeans.xml <bean id= "rice.kew.workflowDocumentActionServiceBasicAuthentication.exporter" parent= "kewServiceExporter" lazy-init= "false" > <property name= "serviceDefinition" > <bean parent= "kewService" > <property name= "service" > <ref bean= "rice.kew.workflowDocumentActionsService" /> </property> <property name= "localServiceName" value= "workflowDocumentActionsService-basicAuthentication" /> <property name= "busSecurity" value= "${rice.kew.workflowDocumentActionsService.secure}" /> <property name= "basicAuthentication" value= "true" /> </bean> </property> </bean> Added the following to KsbMessageClientSpringBeans.xml <bean class= "org.kuali.rice.ksb.service.BasicAuthenticationCredentials" > <property name= "serviceNameSpaceURI" value= "http://rice.kuali.org/kew/v2_0" /> <property name= "localServiceName" value= "workflowDocumentActionsService-basicAuthentication" /> <property name= "username" value= "${WorkflowDocumentActionsService.username}" /> <property name= "password" value= "${WorkflowDocumentActionsService.password}" /> <property name= "authenticationService" ref= "basicAuthenticationService" /> </bean> Added the following to rice-config.xml in /usr/local/rice/rice-config.xml <param name= "WorkflowDocumentActionsService.username" > username </param> <param name= "WorkflowDocumentActionsService.password" > password </param> Used soap UI to test using wsdl http://localhost:8080/kr-dev/remoting/soap/kew/v2_0/workflowDocumentActionsService-basicAuthentication?wsdl Request in Soap IU: <soapenv:Envelope xmlns:soapenv = "http://schemas.xmlsoap.org/soap/envelope/" xmlns:v2 = "http://rice.kuali.org/kew/v2_0" > <soapenv:Header> <wsse:Security xmlns:wsse = "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" soapenv:mustUnderstand= "1" > <wsse:UsernameToken xmlns:wsu = "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id= "UsernameToken-1815911473" > <wsse:Username> username </wsse:Username> <wsse:Password Type= "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText" > password </wsse:Password> </wsse:UsernameToken> </wsse:Security> </soapenv:Header> <soapenv:Body> <v2:logAnnotation> <!--Optional:--> <v2:documentId> 3242 </v2:documentId> <!--Optional:--> <v2:principalId> admin </v2:principalId> <!--Optional:--> <v2:annotation> WOOTNOT! </v2:annotation> </v2:logAnnotation> </soapenv:Body> </soapenv:Envelope>
          Hide
          Shannon Hess added a comment -

          I created a fisheye review for these changes before they are committed.

          http://fisheye.kuali.org/cru/rice-168

          Show
          Shannon Hess added a comment - I created a fisheye review for these changes before they are committed. http://fisheye.kuali.org/cru/rice-168
          Hide
          Peter Giles (Inactive) added a comment -

          Great, I think you can close the code review now Shannon. One more thing before you resolve this Jira, can you add this feature to our docbook documentation? You may not have worked with our docbook content before so give a shout if you need some help with that. Thanks!

          Show
          Peter Giles (Inactive) added a comment - Great, I think you can close the code review now Shannon. One more thing before you resolve this Jira, can you add this feature to our docbook documentation? You may not have worked with our docbook content before so give a shout if you need some help with that. Thanks!
          Hide
          Shannon Hess added a comment -

          Sure, will do. I've worked with the docbook for another contribution so I shouldn't have any trouble.

          Thanks,
          Shannon

          Show
          Shannon Hess added a comment - Sure, will do. I've worked with the docbook for another contribution so I shouldn't have any trouble. Thanks, Shannon
          Hide
          Shannon Hess added a comment -

          Resolving since information has been added to the docbook

          Show
          Shannon Hess added a comment - Resolving since information has been added to the docbook

            People

            • Assignee:
              Shannon Hess
              Reporter:
              Shannon Hess
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Structure Helper Panel