This Bugzilla instance is a read-only archive of historic NetBeans bug reports. To report a bug in NetBeans please follow the project's instructions for reporting issues.

Bug 93795

Summary: WSIT security can be enabled when AM security already was enabled
Product: serverplugins Reporter: Andrey Yamkovoy <kaktus>
Component: IdentityAssignee: Peter Liu <petertliu>
Status: VERIFIED FIXED    
Severity: blocker    
Priority: P2    
Version: 5.x   
Hardware: All   
OS: All   
Issue Type: DEFECT Exception Reporter:
Bug Depends on:    
Bug Blocks: 92887    

Description Andrey Yamkovoy 2007-02-01 13:07:43 UTC 
If AM security was already enabled in 'Security' TAB it should not be possible
to enable WSIT security. Just disable corresponding checkbox in this case ...
If both AM security and WSIT security are enabled then application fails with
following exception message: 'A header representing a Message Addressing
Property is not valid and the message cannot be processed'.

Steps to reproduce:
- Create Web Application using Java EE version 5.
- Create Web Service with some operation in this application.
- Invoke web service attributes dialog.
- Go to 'Security' TAB and check in the checkbox 'Enable Message Level Security'.
- Go to 'WSIT' TAB and notice that it's possible to check in the checkbox
'Secure All Service Operations'. This checkbox should be disabled!
Comment 1 Martin Grebac 2007-02-02 15:06:22 UTC 
I commited my part of the fix, but the problem is that AM panel saves stuff only
after OK is pressed, so I have no way to detect whether the security is enabled
or not.

Checking in ServicePanel.java;
/cvs/websvc/wsitconf/src/org/netbeans/modules/websvc/wsitconf/ui/service/ServicePanel.java,v
 <--  ServicePanel.java
new revision: 1.2.8.8; previous revision: 1.2.8.7
done
Checking in Bundle.properties;
/cvs/websvc/wsitconf/src/org/netbeans/modules/websvc/wsitconf/ui/service/Bundle.properties,v
 <--  Bundle.properties
new revision: 1.2.8.4; previous revision: 1.2.8.3
done
Comment 2 Martin Grebac 2007-02-05 14:26:05 UTC 
I added an api, so please register your SecurityChecker. Reassigning to AM to
implement their part. 

IDE: [2/5/07 3:22 PM] Committing Files started
cvs server: scheduling file `SecurityCheckerRegistry.java' for addition on
branch `release551'
cvs server: scheduling file `SecurityChecker.java' for addition on branch
`release551'
cvs server: use 'cvs commit' to add these files permanently
Checking in ui/service/ServicePanel.java;
/cvs/websvc/wsitconf/src/org/netbeans/modules/websvc/wsitconf/ui/service/ServicePanel.java,v
 <--  ServicePanel.java
new revision: 1.2.8.9; previous revision: 1.2.8.8
done
RCS file:
/cvs/websvc/wsitconf/src/org/netbeans/modules/websvc/wsitconf/spi/Attic/SecurityChecker.java,v
done
Checking in spi/SecurityChecker.java;
/cvs/websvc/wsitconf/src/org/netbeans/modules/websvc/wsitconf/spi/Attic/SecurityChecker.java,v
 <--  SecurityChecker.java
new revision: 1.1.2.1; previous revision: 1.1
done
RCS file:
/cvs/websvc/wsitconf/src/org/netbeans/modules/websvc/wsitconf/spi/Attic/SecurityCheckerRegistry.java,v
done
Checking in spi/SecurityCheckerRegistry.java;
/cvs/websvc/wsitconf/src/org/netbeans/modules/websvc/wsitconf/spi/Attic/SecurityCheckerRegistry.java,v
 <--  SecurityCheckerRegistry.java
new revision: 1.1.2.1; previous revision: 1.1
done
Comment 3 Martin Grebac 2007-02-07 09:56:26 UTC 
This should be fixed:

cvs server: use 'cvs commit' to add this file permanently
Checking in
wsitconf/src/org/netbeans/modules/websvc/wsitconf/ui/service/ServicePanel.java;
/cvs/websvc/wsitconf/src/org/netbeans/modules/websvc/wsitconf/ui/service/ServicePanel.java,v
 <--  ServicePanel.java
new revision: 1.2.8.10; previous revision: 1.2.8.9
done
Comment 4 Peter Liu 2007-02-08 01:21:17 UTC 
I am reopening this issue because it is still not working correctly.
Comment 5 Peter Liu 2007-02-08 02:30:53 UTC 
Checked in fixes on both the wsit and identity sides.
Comment 6 Andrey Yamkovoy 2007-02-19 16:28:54 UTC 
Verified.