我正在尝试使用NTLM身份验证对SOAP Web服务进行身份验证,如Apache CXF中所述,堆栈如下 -
-
jcifs-1.3.17.jar
-
cxf-2.7.11
-
NTLM SSL
-
JDK 5(我可能无法改变这个)
每次我尝试连接时都会拒绝401未经授权的访问,因为它使用的是未授权的基础NT凭证,而不是我在代码中配置的有效凭证 . (我不得不修改jCIFS,因为它不支持SSL NTLM返回NtlmHttpURLConnection的HTTPs版本) . 使用HTTP异步机制时的结果相似 .
String domainController = "xxx.xxx.xxx";
UniAddress dc = UniAddress.getByName(domainController, true);
jcifs.Config.setProperty("http.auth.ntlm.domain", "xxx.xxx.xxx");
jcifs.Config.setProperty("jcifs.smb.client.domain", "domain");
jcifs.Config.setProperty("jcifs.netbios.wins", dc.getHostAddress());
jcifs.Config.setProperty("jcifs.smb.client.soTimeout", "300000"); // 5 minutes
jcifs.Config.setProperty("jcifs.netbios.cachePolicy", "1200"); // 20 minutes
jcifs.Config.setProperty("jcifs.smb.client.username", USER);
jcifs.Config.setProperty("jcifs.smb.client.password", PWD);
//Register the jcifs URL handler to enable NTLM
jcifs.Config.registerSmbURLHandler();
HelloWorld src = new HelloWorld();
ClientProxyFactoryBean factory = new ClientProxyFactoryBean(new JaxWsClientFactoryBean());
factory.setServiceClass( IHelloWorld.class );
factory.setAddress(SERVICE_URL);
factory.setUsername(USER);
factory.setPassword(PWD);
IHelloWorld service = (IHelloWorld ) factory.create();
Client client = ClientProxy.getClient(service);
HTTPConduit http = (HTTPConduit) client.getConduit();
System.out.println(http.getClass().getName());
//org.apache.cxf.transport.http.URLConnectionHTTPConduit
HTTPClientPolicy httpClientPolicy = new HTTPClientPolicy();
httpClientPolicy.setConnectionTimeout(36000);
httpClientPolicy.setAllowChunking(false);
http.setClient(httpClientPolicy);
http.getAuthorization().setAuthorizationType("NTLM");
http.getAuthorization().setUserName(USER);
http.getAuthorization().setPassword(PWD);
http.getClient().setAllowChunking( false );
http.getClient().setAutoRedirect( true );
TLSClientParameters tcp = new TLSClientParameters();
tcp.setTrustManagers( new TrustManager[]{ new TrustAllX509TrustManager() } );
http.setTlsClientParameters( tcp );
System.out.println("Invoking service...");
String msg= "echo";
try {
String res = service.readMessage(msg);
System.out.println("readMessage.result=" + res);
} catch (Exception e) {
e.printStackTrace();
}
Upong运行此代码我得到以下异常跟踪
:domain \是sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)at sun.reflect.NativeConstructorAccessorImpl.newInstance(Unknown Source)at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(Unknown Source)at java.lang.reflect . 位于org.apache的org.apache.cxf.interceptor.Client上的org.apache.cxf.interceptor.ClientFaultConverter.processFaultDetail(ClientFaultConverter.java:175)中的Constructor.newInstance(未知来源)org.apache.cxf.interceptor.ClientFaultConverter.handleMessage(ClientFaultConverter.java:78) . org.apache.cxf.interceptor.AbstractFaultChainInitiatorObserver.onMessage(AbstractFaultChainInitiatorObserver.java:113)中的cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:272)org.apache.cxf.binding.soap.interceptor.CheckFaultInterceptor.handleMessage( CheckFaultInterceptor.java:69)atg.apache.cxf.binding.soap.interceptor.CheckFaultInterceptor.handleMessage(CheckFaultInterceptor.java:34)at org.apache.cxf.phase.PhaseInterceptorChain.doInterce pt(PhaseInterceptorChain.java:272)org.apache.cxf.endpoint.ClientImpl.onMessage(ClientImpl.java:845)at org.apache.cxf.transport.http.HTTPConduit $ WrappedOutputStream.handleResponseInternal(HTTPConduit.java:1624) at org.apache.cxf.transport.http.HTTPConduit $ orw.apache.cxf.transport.http.HTTPConduit $ WrappedOutputStream.close(HTTPConduit.java:1318 .cxf.transport.AbstractConduit.close(AbstractConduit.java:56)org.apache.cxf.transport.http.HTTPConduit.close(HTTPConduit.java:632)at org.apache.cxf.interceptor.MessageSenderInterceptor $ MessageSenderEndingInterceptor.handleMessage (MessageSenderInterceptor.java:62)位于org.apache的org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:272)org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:570) . org.apache.cx上的org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:382)中的cxf.endpoint.ClientImpl.invoke(ClientImpl.java:479)位于org.apache.cxf.frontend.ClientProxy.invoke上的org.apache.cxf.frontend.ClientProxy.invokeSync(ClientProxy.java:96)的f.endpoint.ClientImpl.invoke(ClientImpl.java:335)(ClientProxy.java: 81)在com.sun.proxy . $ Proxy44.readMessage(未知来源)
2 回答
CXF 2.7.x不支持JDK 5.来自CXF FAQ:
经过几个小时的努力试图在JDK 5堆栈和其他SOAP框架(如Axis2和CXF)之间徘徊,我终于做了一个原始的SOAP客户端,可以完成我所需要的工作 . 以下是使用自定义NT登录而不是基础登录的代码 .
使用HttpClient对象注册自定义NTLM引擎和Auth方案注册表 -
希望这可以帮助有类似问题的人 . 干杯