Search code examples

Axis2 Client Throws AxisFault: Must Understand check failed for header Security

I'm using Axis2-1.6.1 and have been able to successfully send a SOAP request. Here's an example of the request:

<?xml version="1.0" encoding="UTF-8"?>
<soapenv:Envelope xmlns:soapenv="">
    <wsse:Security xmlns:wsse="" soapenv:mustUnderstand="true">
      <wsse:UsernameToken xmlns:wsu="">
        <wsse:Password Type="">***pass***</wsse:Password>
        <wsse:Nonce Type="">***nonce***</wsse:Nonce>
        <wsu:Created Type="">***datetime***</wsu:Created>
    <wsa:Action xmlns:wsa="">http://mysite/contract/users/v3/IUsers/EchoAuthenticated</wsa:Action>
    <ns6:EchoAuthenticated xmlns:ns6="http://mysite/contract/users/v3">

Upon receiving the response, this exception is thrown:

org.apache.axis2.AxisFault: Must Understand check failed for header : Security

I'm under the impression, after doing some research, that there's something in the response that Axis2 doesn't like. Puzzled, I copied the above request and pasted it into SoapUI and fired it. It works, I receive the below response. I also confirmed, using Fiddler, that this is the same response I am getting when I send this request in Eclipse its just there's something about it that Axis2 doesn't like client-side, perhaps the mustUnderstand?

Here's the response:

<s:Envelope xmlns:s="" xmlns:a="" xmlns:u="">
    <a:Action s:mustUnderstand="1">http://mysite/contract/users/v3/IUsers/EchoAuthenticatedResponse</a:Action>
    <o:Security s:mustUnderstand="1" xmlns:o="">
      <u:Timestamp u:Id="_0">
    <EchoAuthenticatedResponse xmlns="http://mysite/contract/users/v3">
      <EchoAuthenticatedResult>This is the Users service answering back. The value you sent was: success</EchoAuthenticatedResult>

I'm limited in my ability to move to a more recent version of Axis2 as this is bundled with a product but I need to find out how I can get passed this error.


  • I found one solution which is to set mustUnderstand instances in the response to false

    To accomplish this I've done the following:

    1. Create a Handler class which extends *org.apache.axis2.handlers.AbstractHandler

    import java.util.Iterator;
    import org.apache.axiom.soap.SOAPEnvelope;
    import org.apache.axiom.soap.SOAPHeader;
    import org.apache.axiom.soap.SOAPHeaderBlock;
    import org.apache.axis2.AxisFault;
    import org.apache.axis2.context.MessageContext;
    public class MustUnderstandHandler extends org.apache.axis2.handlers.AbstractHandler  {
      public InvocationResponse invoke(MessageContext messageContext) throws AxisFault {
          System.out.println("RemoveMustUnderstandAll: invoke " + messageContext);
          SOAPEnvelope env = messageContext.getEnvelope();
          SOAPHeader header = env.getHeader();
          if(header != null){
              for(Iterator<?> itr = header.getChildElements(); itr.hasNext();){
                  SOAPHeaderBlock headerBlock = (SOAPHeaderBlock);
                    System.out.println("RemoveMustUnderstandAll (" + messageContext + "): setMustUnderstand(false) to " + headerBlock.getQName());
        catch(Exception e){
        return InvocationResponse.CONTINUE;

    1. Wire the AxisConfiguration to use the handler class

    In the generated Stub (created from WSDL2Java) I've located instances where it's executing the client and before each of these lines I included the following:

    AxisConfiguration axisConfiguration = _messageContext.getConfigurationContext().getAxisConfiguration();
    ArrayList arrayList = new ArrayList();
    arrayList.add(new MustUnderstandHandler());
    // execute the operation client