View
69
Download
5
Category
Tags:
Preview:
Citation preview
https://localhost:9443/carbon/service-mgt/index.jsp?region=region1&item=services_list_menu
CorroIn_Cient_Sign_Enc
Policy: Binding CorroIn_Cient_Sign_EncSoap11Binding===--<wsp:Policy wsu:Id="SigEncr" xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> <wsp:ExactlyOne> <wsp:All> <sp:AsymmetricBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"> <wsp:Policy> <sp:InitiatorToken> <wsp:Policy> <sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"> <wsp:Policy> <sp:RequireThumbprintReference/> <sp:WssX509V3Token10/> </wsp:Policy> </sp:X509Token> </wsp:Policy> </sp:InitiatorToken> <sp:RecipientToken> <wsp:Policy> <sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never"> <wsp:Policy> <sp:RequireThumbprintReference/> <sp:WssX509V3Token10/>
</wsp:Policy> </sp:X509Token> </wsp:Policy> </sp:RecipientToken> <sp:AlgorithmSuite> <wsp:Policy> <!--<sp:Basic256/>--> <sp:Basic128/> </wsp:Policy> </sp:AlgorithmSuite> <sp:Layout> <wsp:Policy> <sp:Strict/> </wsp:Policy> </sp:Layout> <sp:IncludeTimestamp/> <sp:OnlySignEntireHeadersAndBody/> </wsp:Policy> </sp:AsymmetricBinding> <sp:Wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"> <sp:Policy> <sp:MustSupportRefKeyIdentifier/> <sp:MustSupportRefIssuerSerial/> <sp:MustSupportRefThumbprint/> <sp:RequireSignatureConfirmation/> </sp:Policy> </sp:Wss11> <sp:Wss10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"> <sp:Policy> <sp:MustSupportRefKeyIdentifier/> <sp:MustSupportRefIssuerSerial/> </sp:Policy> </sp:Wss10> <sp:SignedParts xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"> <sp:Body/> </sp:SignedParts> <sp:EncryptedParts xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"> <sp:Body/> </sp:EncryptedParts> <rampart:RampartConfig xmlns:rampart="http://ws.apache.org/rampart/policy"> <rampart:user>wso2carbon</rampart:user> <rampart:encryptionUser>useReqSigCert</rampart:encryptionUser> <rampart:timestampPrecisionInMilliseconds>true</rampart:timestampPrecisionInMilliseconds> <rampart:timestampTTL>300</rampart:timestampTTL> <rampart:timestampMaxSkew>300</rampart:timestampMaxSkew> <rampart:encryptionCrypto>
<rampart:crypto provider="org.wso2.carbon.security.util.ServerCrypto"> <rampart:property name="org.wso2.carbon.security.crypto.privatestore">wso2carbon.jks</rampart:property> <rampart:property name="org.wso2.carbon.security.crypto.alias">wso2carbon</rampart:property> <rampart:property name="org.apache.ws.security.crypto.provider">org.wso2.carbon.security.util.ServerCrypto</rampart:property> <rampart:property name="org.wso2.carbon.security.crypto.truststores">chars.jks,wso2carbon.jks,</rampart:property> <rampart:property name="rampart.config.user">wso2carbon</rampart:property> </rampart:crypto> </rampart:encryptionCrypto> <rampart:signatureCrypto> <rampart:crypto provider="org.wso2.carbon.security.util.ServerCrypto"> <rampart:property name="org.wso2.carbon.security.crypto.privatestore">wso2carbon.jks</rampart:property> <rampart:property name="org.wso2.carbon.security.crypto.alias">wso2carbon</rampart:property> <rampart:property name="org.apache.ws.security.crypto.provider">org.wso2.carbon.security.util.ServerCrypto</rampart:property> <rampart:property name="org.wso2.carbon.security.crypto.truststores">chars.jks,wso2carbon.jks,</rampart:property> <rampart:property name="rampart.config.user">wso2carbon</rampart:property> </rampart:crypto> </rampart:signatureCrypto> </rampart:RampartConfig> </wsp:All> </wsp:ExactlyOne></wsp:Policy>
ProxyService:===----------<proxy xmlns="http://ws.apache.org/ns/synapse" name="CorroIn_Cient_Sign_Enc" transports="https,http" statistics="enable" trace="enable" startOnLoad="true"> <target> <inSequence> <log level="full" category="TRACE" /> <header xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" name="wsse:Security" action="remove" /> <send> <endpoint name="CorroIn_Cient_Sign_Enc_syd3kvm162">
<address uri="http://syd3kvm162.perpetual.com.au/CorroInService/CorroIn.svc" /> </endpoint> </send> </inSequence> <outSequence> <log level="full" category="DEBUG" /> <send /> </outSequence> </target> <publishWSDL uri="http://syd3kvm162.perpetual.com.au/CorroInService/CorroIn.svc?wsdl" /> <parameter name="useOriginalwsdl">true</parameter> <parameter name="enablePublishWSDLSafeMode">true</parameter> <enabledSec /></proxy>
Test Results:==-----------chars.jks -> TiTus00!wo2carbon -> wso2carbon
You can test the syntax by apply the security rules for Outgoing wss. This will help you see the actual SOAP message before sending out. Check for error in SOAPUI error log to see if SOAPUI runs into key issues etc.
Req:<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:v1="http://Perpetual.CorroIn.Services.Web.Contract/v1" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"> <soapenv:Header> <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"> <xenc:EncryptedKey Id="EncKeyId-B89247D394632E832D12953221525661035"> <xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <wsse:SecurityTokenReference> <ds:X509Data> <ds:X509IssuerSerial> <ds:X509IssuerName>CN=localhost,O=WSO2,L=Mountain View,ST=CA,C=US</ds:X509IssuerName> <ds:X509SerialNumber>1266562946</ds:X509SerialNumber> </ds:X509IssuerSerial> </ds:X509Data> </wsse:SecurityTokenReference> </ds:KeyInfo> <xenc:CipherData> <xenc:CipherValue>erAkEwCLPMUQnz+eBXhZ2nm2pyD0DIjpX9BJ36eVTlyJG4e
duTlF8v67KnVRMJI7xetdNCuv+rzvLldW2QZyIWPiGUr0fI71f39bsz77wJ5gVTSTm0IKBPRvWe9v8pkpxJ207Aw31LEb6yW1v6VV/uV+2jdKX//5Y2FtqGs/kLc=</xenc:CipherValue> </xenc:CipherData> <xenc:ReferenceList> <xenc:DataReference URI="#EncDataId-959"/> </xenc:ReferenceList> </xenc:EncryptedKey> <ds:Signature Id="Signature-957" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:SignedInfo> <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> <ds:Reference URI="#id-958"> <ds:Transforms> <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> </ds:Transforms> <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> <ds:DigestValue>kA/TMV2qNPexoL/rufpylCMGLCQ=</ds:DigestValue> </ds:Reference> </ds:SignedInfo> <ds:SignatureValue>DxRJljVwredgvhTf+reW8CKbMoFIeuf6IQrdnQTj0vQKT59cxRoPTu85xY4QsOmzIyFpjGhA6uWNOrF79zncTJbqnkkMXc39xDyZbH1Ee/DXpj+HVMzjRhHOyzd9gjIwVqjM2Q+Gp4TyPrsI7K+GYk+gj5vP6A0mbbOhfv+JZ/M=</ds:SignatureValue> <ds:KeyInfo Id="KeyId-B89247D394632E832D12953221525351032"> <wsse:SecurityTokenReference wsu:Id="STRId-B89247D394632E832D12953221525351033" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> <ds:X509Data> <ds:X509IssuerSerial> <ds:X509IssuerName>CN=aud722003s.Perpetual.Com.Au,O=MyOrg1,C=AU</ds:X509IssuerName> <ds:X509SerialNumber>1288571739</ds:X509SerialNumber> </ds:X509IssuerSerial> </ds:X509Data> </wsse:SecurityTokenReference> </ds:KeyInfo> </ds:Signature> <wsu:Timestamp wsu:Id="Timestamp-956" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> <wsu:Created>2011-01-18T03:42:32Z</wsu:Created>
<wsu:Expires>2011-01-18T05:22:32Z</wsu:Expires> </wsu:Timestamp> </wsse:Security> </soapenv:Header> <soapenv:Body wsu:Id="id-958" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> <xenc:EncryptedData Id="EncDataId-959" Type="http://www.w3.org/2001/04/xmlenc#Content"> <xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <wsse:SecurityTokenReference xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"> <wsse:Reference URI="#EncKeyId-B89247D394632E832D12953221525661035"/> </wsse:SecurityTokenReference> </ds:KeyInfo> <xenc:CipherData> <xenc:CipherValue>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</xenc:CipherValue> </xenc:CipherData> </xenc:EncryptedData> </soapenv:Body></soapenv:Envelope>
Resp:<s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"> <s:Header>
<wsse:Security s:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"> <wsu:Timestamp wsu:Id="Timestamp-5" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> <wsu:Created>2011-01-18T03:43:12.894Z</wsu:Created> <wsu:Expires>2011-01-18T03:48:12.894Z</wsu:Expires> </wsu:Timestamp> <wsse:BinarySecurityToken EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" wsu:Id="49EA3D3AB1CDADC2D512953221929419" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">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</wsse:BinarySecurityToken> <xenc:EncryptedKey Id="EncKeyId-49EA3D3AB1CDADC2D5129532219294110"> <xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <wsse:SecurityTokenReference> <wsse:Reference URI="#49EA3D3AB1CDADC2D512953221929419" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/> </wsse:SecurityTokenReference> </ds:KeyInfo> <xenc:CipherData> <xenc:CipherValue>K9+cFMQxUYxIraEOjaIOiFquLkuhjRm2aLxAvUNHSWVwapsOzR450ncMpRda5WjiqxAMKAJsVQAQP0G2w47b6Moe1c6ou85xhJFLblxCkk6N+ORW3VckS5+Wmm7o8s1G07y3uOp9CVQ/nnCSIIRJ508BdLD43Ej17XtHbGyD5DM=</xenc:CipherValue> </xenc:CipherData> <xenc:ReferenceList> <xenc:DataReference URI="#EncDataId-8"/> </xenc:ReferenceList> </xenc:EncryptedKey>
<wsse11:SignatureConfirmation Value="G3wxVBSRu9lfkk+w5/bTB+QDU8iN7EVzD7wG9OY5F6CDdH/kQRssYzDYJkyLX/73mWZ+Oz9lpOSfFWf7UcoRKtnNTK7z6JgiGFIF73Zi6ybVlJTjDT8e87jxPJ/uXrrL6TPIHu+7C34fQ1yFW61CQxmOnVb6THsvO3vQZholeBQ=" wsu:Id="SigConf-6" xmlns:wsse11="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"/> <ds:Signature Id="Signature-7" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:SignedInfo> <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> <ds:Reference URI="#Id-26496780"> <ds:Transforms> <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> </ds:Transforms> <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> <ds:DigestValue>Sec2bH3Qu5X+5mv6A00zUQpEfAk=</ds:DigestValue> </ds:Reference> <ds:Reference URI="#Timestamp-5"> <ds:Transforms> <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> </ds:Transforms> <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> <ds:DigestValue>nvUs2s4obNBI0kiyCHLdO0Jn7p0=</ds:DigestValue> </ds:Reference> <ds:Reference URI="#SigConf-6"> <ds:Transforms> <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> </ds:Transforms> <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> <ds:DigestValue>U1orF3kmYaP3prfko+mk9cOmCw0=</ds:DigestValue> </ds:Reference> </ds:SignedInfo> <ds:SignatureValue>EYBeJ0JTtasMikTpAYv6sgMrxQQGryDHjAjdFS3PhSPHMjF4Tic/KIATjTwPLYVUtceOZzM+gIXv5lP8J7ieuB0axS3U51coHlIA4xXNz8FjOdVokGpq
O9m41NkHWT+DCNBnIjmJ5JDcUNb/JDBQym4EChpZs3HCmQQA+j1YAq8=</ds:SignatureValue> <ds:KeyInfo Id="KeyId-49EA3D3AB1CDADC2D512953221929107"> <wsse:SecurityTokenReference wsu:Id="STRId-49EA3D3AB1CDADC2D512953221929108" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> <wsse:KeyIdentifier EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1.1#ThumbprintSHA1">a/jhNus21KVuoFx65LmkW2O/l10=</wsse:KeyIdentifier> </wsse:SecurityTokenReference> </ds:KeyInfo> </ds:Signature> </wsse:Security> </s:Header> <s:Body wsu:Id="Id-26496780" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> <xenc:EncryptedData Id="EncDataId-8" Type="http://www.w3.org/2001/04/xmlenc#Content"> <xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <wsse:SecurityTokenReference xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"> <wsse:Reference URI="#EncKeyId-49EA3D3AB1CDADC2D5129532219294110"/> </wsse:SecurityTokenReference> </ds:KeyInfo> <xenc:CipherData> <xenc:CipherValue>UJ++36pT8KhXpMS3TcHdMi65+cRWCWkMXu6j9n5H8aYE9T920lAXeMz/wnIFYKAZaxWXfL8t3N5U8SIpR+GWc0GevZh4keucj6QExxCTluybGDXy03UDvlcBeKW4uBK97Uf50FsTnD6yM4dk3AwNb58qWwc1hO8lyjkw3P/DdD/1kzd6Ia1plE3TIYKz5FXQS8WX823fZAwVfJD1fJj8afhbmbZhHD4CfOEbRovODAbKL8JgjGDx1Isdf51z2cBLTOA6/ux375EKr+AjhGjJ8xpRapt/4hTpAqm0Y3H7ItKdDfDcAbUImJNHLtz0M/WDx9EoYk0+IyM6PxlMT+EptSIM/Qm6FYQns2bxv+j5Dp0yR6RUIeorJPfEjjnr2ejE5jAQBQvb+x6BdCm8OGyk8sc2bYVOD11zIDpj9EeHn35ZR/GBqHaUwr/q+uvA3L6MdKEbGcL+P57cR0AVZDyDfgU624fkDL9TlCJcWuDWHQa+P5GtkVZlivYiRh1D5k+FvwVRAENGd3Ah38s019+iYvMy1XqBVlMMekK0/rcwfD7FjrIsqnl9Q6DdFKv4zUO02voHUOTlQ8yKAs0TA5owqOkdy1auJ+0ZeVshGI6ltiU7gvPD8vwmkljlz6XYbOm2OJ429TvgBptGUjjaMkfqNI+DKX9sNVhy9cT9eD17DdCcWQH2m4JyI8vdC9ekl4yzw1vTcgpItWahco+esK9eKLDiSpCRvKz+RChFvhzf/lt6lhpFkKSYFeoxg48X+r6Ham+wWqfJXoolO2/ATvT5PEon8Qu1jM+NqyQzk8m74UukxeFzZgcH8axj7bqX4U2P7l2BSHCfpZRe/HiHYbwklJOu73Ltw635JqHdOTqkLLDcqlBav+pMChX9e1yscggzTt7Ytmh8504Ay
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
SzN2yi024ZtRSbKS7cKk5RwZdT79aUcdUr6QCViBgKfAtFaF3d+tbmGnLumhEhUPUFrsEvymCniyLmyZofNJeMVe6T2hJ4PZ0c1Y3zcyQ0FqAu4JMRmSPfEuhFutc+Ug2Cs39iBEa7lzjmhHlX1139WaczQ5BqMXO10M/8gXlDNUR0M1rxABtPZ5uSjYNAG93Shq+BwroFcqzw/UkPW9/VFCO9i2WwQpHmRVJyYABEFFYaPntLCVBrDRF/Qn7GS48/1igMNjpruCi2IF44cnvNQdfgYTNSFAtutQc8LcZlWwljx2XFsCCLnoFmSR1dzESSw/aaer2Izq8ldNHZxXFPAuTagh/ywAinMeQEIuU9S6yxJyUCso0HOrp5uh+33p1XnGD6yVkRctG3i1KyDY4ZhcxOw==</xenc:CipherValue> </xenc:CipherData> </xenc:EncryptedData> </s:Body></s:Envelope>
Check SOAPUI for error log
Once you have no error, you can just use the “Auth” tab below to see OutgoingWSS without having to apply the OutgoingWSS as seen above. SOAPUI will apply the security based on the Outgoing WSS: dropdown list.
Know issues with US key strength regulation!With AES256, we are limited by US legal encryption key strength!!, so we need to use AES128org.apache.xml.security.encryption.XMLEncryptionException: Illegal key size or default parameters==--Mon Jan 17 17:12:08 EST 2011:ERROR:org.apache.ws.security.WSSecurityException: Cannot encrypt data; nested exception is:
org.apache.xml.security.encryption.XMLEncryptionException: Illegal key size or default parametersOriginal Exception was java.security.InvalidKeyException: Illegal key size or default parameters org.apache.ws.security.WSSecurityException: Cannot encrypt data; nested exception is: org.apache.xml.security.encryption.XMLEncryptionException: Illegal key size or default parameters Original Exception was java.security.InvalidKeyException: Illegal key size or default parameters at org.apache.ws.security.message.WSSecEncrypt.doEncryption(WSSecEncrypt.java:599) at org.apache.ws.security.message.WSSecEncrypt.doEncryption(WSSecEncrypt.java:459) at org.apache.ws.security.message.WSSecEncrypt.encryptForInternalRef(WSSecEncrypt.java:348)
at org.apache.ws.security.message.WSSecEncrypt.build(WSSecEncrypt.java:309) at com.eviware.soapui.impl.wsdl.support.wss.entries.AddEncryptionEntry.process(AddEncryptionEntry.java:309) at com.eviware.soapui.impl.wsdl.support.wss.OutgoingWss.processOutgoing(OutgoingWss.java:157) at com.eviware.soapui.impl.wsdl.actions.request.ApplyOutgoingWSSToRequestAction.actionPerformed(ApplyOutgoingWSSToRequestAction.java:55) at javax.swing.AbstractButton.fireActionPerformed(Unknown Source) at javax.swing.AbstractButton$Handler.actionPerformed(Unknown Source) at javax.swing.DefaultButtonModel.fireActionPerformed(Unknown Source) at javax.swing.DefaultButtonModel.setPressed(Unknown Source) at javax.swing.AbstractButton.doClick(Unknown Source) at javax.swing.plaf.basic.BasicMenuItemUI.doClick(Unknown Source) at javax.swing.plaf.basic.BasicMenuItemUI$Handler.mouseReleased(Unknown Source) at java.awt.Component.processMouseEvent(Unknown Source) at javax.swing.JComponent.processMouseEvent(Unknown Source) at java.awt.Component.processEvent(Unknown Source) at java.awt.Container.processEvent(Unknown Source) at java.awt.Component.dispatchEventImpl(Unknown Source) at java.awt.Container.dispatchEventImpl(Unknown Source) at java.awt.Component.dispatchEvent(Unknown Source) at java.awt.LightweightDispatcher.retargetMouseEvent(Unknown Source) at java.awt.LightweightDispatcher.processMouseEvent(Unknown Source) at java.awt.LightweightDispatcher.dispatchEvent(Unknown Source) at java.awt.Container.dispatchEventImpl(Unknown Source) at java.awt.Component.dispatchEvent(Unknown Source) at java.awt.EventQueue.dispatchEvent(Unknown Source) at java.awt.EventDispatchThread.pumpOneEventForFilters(Unknown Source) at java.awt.EventDispatchThread.pumpEventsForFilter(Unknown Source) at java.awt.EventDispatchThread.pumpEventsForHierarchy(Unknown Source) at java.awt.EventDispatchThread.pumpEvents(Unknown Source) at java.awt.EventDispatchThread.pumpEvents(Unknown Source) at java.awt.EventDispatchThread.run(Unknown Source)
Recommended