username-password-filter not compatible with CXF/HTTPS

Details

Type: Bug
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: 3.1.2, 3.2.x
Fix Version/s: None
Component/s: Modules: Security (Spring Security, Acegi, PGP, WS-Security)
Labels:
None

User impact:
High
Configuration:

Hide

<endpoint name="cxfEndpoint" address="https://localhost:1234" exchange-pattern="request-response" >
<username-password-filter username="#[xpath://soap:Header/username" password="#[xpath://soap:Header/password" />
<cxf:simple-service serviceClass="my.company.ServiceClass" />
</endpoint>

Show
<endpoint name="cxfEndpoint" address="https://localhost:1234" exchange-pattern="request-response" > <username-password-filter username="#[xpath://soap:Header/username" password="#[xpath://soap:Header/password" /> <cxf:simple-service serviceClass="my.company.ServiceClass" /> </endpoint>
Log Output:

Hide
ERROR 2011-05-17 14:18:25,348 [[qid-services-2.1.0-SNAPSHOT].httpConnector.receiver.3] org.mule.exception.DefaultServiceExceptionStrategy: Caught exception in Exception Strategy: Failed to evaluate XPath expression: "//soapenv:Envelope/soapenv:Body/ser:getPerson/ser:personI"
org.mule.api.MuleRuntimeException: Failed to evaluate XPath expression: "//soap:Header/username"
at org.mule.module.xml.expression.AbstractXPathExpressionEvaluator.evaluate(AbstractXPathExpressionEvaluator.java:140)
at org.mule.expression.DefaultExpressionManager.evaluate(DefaultExpressionManager.java:274)
at org.mule.expression.DefaultExpressionManager.evaluate(DefaultExpressionManager.java:210)
at org.mule.expression.DefaultExpressionManager.evaluate(DefaultExpressionManager.java:170)
at org.mule.security.UsernamePasswordAuthenticationFilter.getAuthenticationToken(UsernamePasswordAuthenticationFilter.java:91)
at org.mule.security.UsernamePasswordAuthenticationFilter.authenticateInbound(UsernamePasswordAuthenticationFilter.java:59)
at org.mule.security.AbstractAuthenticationFilter.authenticate(AbstractAuthenticationFilter.java:70)
at org.mule.security.AbstractAuthenticationFilter.doFilter(AbstractAuthenticationFilter.java:60)
at org.mule.processor.SecurityFilterMessageProcessor.process(SecurityFilterMessageProcessor.java:59)
at org.mule.processor.ExceptionHandlingMessageProcessor.process(ExceptionHandlingMessageProcessor.java:25)
at org.mule.transport.AbstractMessageReceiver.routeMessage(AbstractMessageReceiver.java:185)
at org.mule.transport.AbstractMessageReceiver.routeMessage(AbstractMessageReceiver.java:158)
at org.mule.transport.AbstractMessageReceiver.routeMessage(AbstractMessageReceiver.java:145)
at org.mule.transport.http.HttpMessageReceiver$HttpWorker.doRequest(HttpMessageReceiver.java:247)
at org.mule.transport.http.HttpMessageReceiver$HttpWorker.processRequest(HttpMessageReceiver.java:206)
at org.mule.transport.http.HttpMessageReceiver$HttpWorker.run(HttpMessageReceiver.java:164)
at org.mule.work.WorkerContext.run(WorkerContext.java:309)
at edu.emory.mathcs.backport.java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1061)
at edu.emory.mathcs.backport.java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:575)
at java.lang.Thread.run(Unknown Source)
Caused by: java.lang.IllegalArgumentException: XML DOM type "class org.apache.commons.httpclient.ContentLengthInputStream" is currently not supported
at org.mule.module.xml.expression.XPathExpressionEvaluator.createXPath(XPathExpressionEvaluator.java:50)
at org.mule.module.xml.expression.AbstractXPathExpressionEvaluator.getXPath(AbstractXPathExpressionEvaluator.java:171)
at org.mule.module.xml.expression.AbstractXPathExpressionEvaluator.evaluate(AbstractXPathExpressionEvaluator.java:117)
... 19 more

Show
ERROR 2011-05-17 14:18:25,348 [[qid-services-2.1.0-SNAPSHOT].httpConnector.receiver.3] org.mule.exception.DefaultServiceExceptionStrategy: Caught exception in Exception Strategy: Failed to evaluate XPath expression: "//soapenv:Envelope/soapenv:Body/ser:getPerson/ser:personI" org.mule.api.MuleRuntimeException: Failed to evaluate XPath expression: "//soap:Header/username" at org.mule.module.xml.expression.AbstractXPathExpressionEvaluator.evaluate(AbstractXPathExpressionEvaluator.java:140) at org.mule.expression.DefaultExpressionManager.evaluate(DefaultExpressionManager.java:274) at org.mule.expression.DefaultExpressionManager.evaluate(DefaultExpressionManager.java:210) at org.mule.expression.DefaultExpressionManager.evaluate(DefaultExpressionManager.java:170) at org.mule.security.UsernamePasswordAuthenticationFilter.getAuthenticationToken(UsernamePasswordAuthenticationFilter.java:91) at org.mule.security.UsernamePasswordAuthenticationFilter.authenticateInbound(UsernamePasswordAuthenticationFilter.java:59) at org.mule.security.AbstractAuthenticationFilter.authenticate(AbstractAuthenticationFilter.java:70) at org.mule.security.AbstractAuthenticationFilter.doFilter(AbstractAuthenticationFilter.java:60) at org.mule.processor.SecurityFilterMessageProcessor.process(SecurityFilterMessageProcessor.java:59) at org.mule.processor.ExceptionHandlingMessageProcessor.process(ExceptionHandlingMessageProcessor.java:25) at org.mule.transport.AbstractMessageReceiver.routeMessage(AbstractMessageReceiver.java:185) at org.mule.transport.AbstractMessageReceiver.routeMessage(AbstractMessageReceiver.java:158) at org.mule.transport.AbstractMessageReceiver.routeMessage(AbstractMessageReceiver.java:145) at org.mule.transport.http.HttpMessageReceiver$HttpWorker.doRequest(HttpMessageReceiver.java:247) at org.mule.transport.http.HttpMessageReceiver$HttpWorker.processRequest(HttpMessageReceiver.java:206) at org.mule.transport.http.HttpMessageReceiver$HttpWorker.run(HttpMessageReceiver.java:164) at org.mule.work.WorkerContext.run(WorkerContext.java:309) at edu.emory.mathcs.backport.java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1061) at edu.emory.mathcs.backport.java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:575) at java.lang.Thread.run(Unknown Source) Caused by: java.lang.IllegalArgumentException: XML DOM type "class org.apache.commons.httpclient.ContentLengthInputStream" is currently not supported at org.mule.module.xml.expression.XPathExpressionEvaluator.createXPath(XPathExpressionEvaluator.java:50) at org.mule.module.xml.expression.AbstractXPathExpressionEvaluator.getXPath(AbstractXPathExpressionEvaluator.java:171) at org.mule.module.xml.expression.AbstractXPathExpressionEvaluator.evaluate(AbstractXPathExpressionEvaluator.java:117) ... 19 more
Similar Issues:
None

Description

username-password-filter doesn't work with CXF/HTTPS, the xpath evaluator can't transform ContentLengthInputStream to a XML document. Somewhere the payload needs to get transformed to a String I guess.

Activity

People

Assignee:

Unassigned

Reporter:

Tomas Blohm

Vote (0)

Watch (1)

Dates

Created:

18/May/11 02:27 AM

Updated:

21/Jun/11 11:01 AM

Agile

View on Board