Cross Domain without an app is it possible?

Similar Messages

• Business Process Apps using cross domain CSOM or REST calls: which one is the easiest to use?

  Hi
  I have build a  few (on prem) provider hosted and  SharePoint hosted apps to really surface data held in host web. Now, I want to do something a bit more complex by starting to build a process follow that makes a number of cross domain calls -
  the success handler of the preceding call setting up the next cross domain call  and so on . 
  For example:
  Document Library 1
  Document 1, Content type ct_1 (various attributes set inc taxonomy, lookup etc)
  I want to copy this document and any set fields to ……..
  Document Library 2
  Document 2, Content type ct_2 (inherits from ct_1) ( ( various attributes, set as above) 
   I just wondered if this was achievable with
  client side REST or would this be better with
  CSOM :-( Thos I am stating to hate CSOM ;-.I did have a look at server side code ( csom/rest) and I thought quite verbose and a backwards step plus not really amenable to later moving to Angular or Knockout- tho please let me know if this initial assumption
  is wrong.  
  One controversial view
  would be to code up a full  farm trust web part because the server side apis are well understood. Also,  one or two dlls are are likely to be difficult to migrate at some stage - assuming  V Next does not mechanisms to
  prevent full trust farm solutions complete with bard wire and watchtowers ;-)
  The other option thought of would be a 2013 w/f but I would a fancy form to go with this as I would want to capture user
  input
  Be interested to hear the thoughts from the community 
  Daniel, WSL
  Freelance consultant

  Hi,
  According to your post, my understanding is that you have cross-domain problems in apps for SharePoint.
  There are many different techniques to overcome cross-domain issues in JavaScript.
  You can use Rest to resolve it. Please refer to:
  Cross Domain and SharePoint Hosted Apps using REST
  More information:
  Solving cross-domain problems in apps for SharePoint
  Cross Domain and SharePoint Hosted Apps using CSOM
  Thanks,
  Linda Li                
  Forum Support
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Linda Li
  TechNet Community Support

• Cross Domain Call in SharePoint Hosted app.

  Hi, I am very new in SharePoint 2013 App dev and want to understand when actually Cross domain calls are required and how we can achieve it. 
  Getting host web site title from a sharepoint hosted app needs a cross domain call?
  My point of confusion is some places I have seen we have to load SPRequestExecutor for getting data from host web  but I am able to get it using changing the context to host web and then getting the title without using SPRequestExecutor:
   appContextSite = new SP.AppContextSite(ctx, spHostUrl);
     Nweb = appContextSite.get_web();
     //Nweb = ctx.get_web();
     ctx.load(Nweb); 
  What is the difference between the two( using SPRequestExecutor and not using) and what places we need to use it and where we can get data without it ?
  please help me to resolve this confusion.
  Thanks

  Hi vmishr11,
  When you use SP.RequestExecutor, it will execute asynchronously to get data from host web. It will use like below:
  var executor = new SP.RequestExecutor(appweburl);
  executor.executeAsync(
  url:
  appweburl +
  "/_api/web/lists/getbytitle('Announcements')/items",
  method: "GET",
  headers: { "Accept": "application/json; odata=verbose" },
  success: successHandler,
  error: errorHandler
  For SP.AppContextSite, it will execute in order to get data.
  Here is a detailed article for your reference:
  How to: Access SharePoint 2013 data from apps using the cross-domain library
  Best Regards
  Zhengyu Guo
  TechNet Community Support

• Load XML file from addon domain without cross-domain Policy file

  Hello.
  Assuming that there are two addon domains on the same server: /public_html/domain1.com       and      /public_html/domain2.com
  I try to load XML file from domain2.com into domain1.com without using cross-domain policy file (since it doesn’t work on xml files in my case).
  So the idea is to use php file in order to load XML and read it back to flash.
  I’ve found an interesting scripts that seems to do the job but unfortunately I can't get it to work. In my opinion there is somewhere problem with AS3 part. Please take a look.
  Here are the AS3/PHP scripts:
  AS3 (.swf in www.domain1.com):
  // location of the xml that you would like to load, full http address
  var xmlLoc:String = "http://www.domain2.com/MyFile.xml";
  // location of the php xml grabber file, in relation to the .swf
  var phpLoc:String = "loadXML.php";
  var xml:XML;
  var loader:URLLoader = new URLLoader();
  var request:URLRequest = new URLRequest(phpLoc+"?location="+escape(xmlLoc) );
  loader.addEventListener(Event.COMPLETE, onXMLLoaded);
  loader.addEventListener(IOErrorEvent.IO_ERROR, onIOErrorHandler);
  loader.load(request);
  function onIOErrorHandler(e:IOErrorEvent):void {
      trace("There was an error with the xml file "+e);
  function onXMLLoaded(e:Event):void {
      trace("the rss feed has been loaded");
      xml = new XML(loader.data);
      // set to string, since it is passed back from php as an object
      xml = XML(xml.toString());
      xml_txt.text = xml;
  PHP (loadXML.php in www.domain1.com):
  <?php
  header("Content-type: text/xml");
  $location = "";
  if(isset($_GET["location"])) {
      $location = $_GET["location"];
      $location = urldecode($location);
  $xml_string = getData($location);
  // pass the url encoded vars back to Flash
  echo $xml_string;
  //cURLs a URL and returns it
  function getData($query) {
      // create curl resource
      $ch = curl_init();
      // cURL url
      curl_setopt($ch, CURLOPT_URL, $query);
      //Set some necessary params for using CURL
      curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
      curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
     //Execute the curl function, and decode the returned JSON data
      $result = curl_exec($ch);
      return $result;
      // close curl resource to free up system resources
      curl_close($ch);
  ?>

  I think you might be right about permissions/settings on the server for php. Unfortunately I'm not allowed to adjust them.
  So I wrote my own script - this time I used file path instead of http address of the XML file.  It works fine in my case.
  Here it is:
  XML file on domain2.com:
  <?xml version="1.0" encoding="UTF-8"?>
  <gallery>
      <image imagePath="galleries/gallery_1/images/1.jpg" thumbPath="galleries/gallery_1/thumbs/1.jpg" file_name= "1"> </image>
      <image imagePath="galleries/gallery_1/images/2.jpg" thumbPath="galleries/gallery_1/thumbs/2.jpg" file_name= "2"> </image>
      <image imagePath="galleries/gallery_1/images/3.jpg" thumbPath="galleries/gallery_1/thumbs/3.jpg" file_name= "3"> </image>
  </gallery>
  swf  on domain1.com:
  var imagesXML:XML;
  var variables:URLVariables = new URLVariables();
  var varURL:URLRequest = new URLRequest("MyPHPfile.php");
  varURL.method = URLRequestMethod.POST;
  varURL.data = variables;
  var MyLoader:URLLoader = new URLLoader;
  MyLoader.dataFormat =URLLoaderDataFormat.VARIABLES;
  MyLoader.addEventListener(Event.COMPLETE, XMLDone);
  MyLoader.load(varURL);
  function XMLDone(event:Event):void {
      var imported_XML:Object = event.target.data.imported_XML;
      imagesXML = new XML(imported_XML);
     MyTextfield_1.text = imagesXML;
     MyTextfield_2.text = imagesXML.image[0].attribute("thumbPath");  // sample reference to attribute "thumbPath" of the first element
  php file on domain1.com:
  <?php
  $xml_file = simplexml_load_file('../../domain2.com/galleries/gallery_1/MyXMLfile.xml');  // directory to XML file on the same server
  $imported_XML = $xml_file->asXML();
  print "imported_XML=" . $imported_XML;
  ?>
  Regards
  PS: for those who read the above discussion: the first and the second script work but you must test which one is better in your situation. The first script will also work between two domains on different servers. No cross domain policy file needed.

• I sync my iphone with my office computer, but what I really would like to do is syncing only the calendars (because my secretary uses them to set up new apppointments), but syncing all the rest on my home computer. Is it possible without losing apps or mu

  I sync my iphone with my office computer, but what I really would like to do is syncing only the calendars (because my secretary uses them to set up new apppointments), but syncing all the rest on my home computer. Is it possible without losing apps or music?

  Although not recommended, yes.
  Disable automatic syncing when the iPhone is connected with iTunes on each computer.
  The only item you will have selected for syncing with iTunes on your computer at work will be Calendars, which is selected under the Info tab for your iPhone sync preferences with iTunes. Nothing else will be selected under the various tabs for your iPhone sync preferences with iTunes on your computer at work. You will get a warning message that your iPhone is associated with another iTunes library on a different computer which you can ignore when syncing calendars/calendar events only with iTunes on your computer at work.

• Is it possible to have a different cross domain for subsites

  Hi,
  I am not sure weather it is achievable or not. Can someone help me here please?
  I want to deploy more than one cross domain policy in the farm. Let suppose, www.mysite.com/crossdomain.xml(master- permission for complete site including all subsite.)
  www.mysite.com/site1/crossdomain.xml (Permission just for site1)
  www.mysite.com/crossdomain.xml (Permission jus for site 2)
  And so on.
  Many Thanks
  Manan

  Hi Yammer,
  Apologies if I have posted the question in a wrong section.
  Is it possible for you to point me to the correct section.
  Regards
  Manan

• Are Cross Domain Flash Local Shared Objects (LSO aka Flash Cookie) possible

  Hi,
  I found several solutions for creating Flash LSOs from JavaScript (for example: http://www.nuff-respec.com/technology/cross-browser-cookies-with-flash )
  If Page (www.hostA.com/index.html) and the .swf file are from the same site, everything works fine.
  Now I'm trying to load the page form www.hostA.com/index.html, which includes www.hostB.com/flashcookie.swf (different sites). But then I cannot read or store the LSO.
  I have tried several configurations (crossdomain.xml,  Security.allowDomain("...") ), but nothing works.
  Is this kind of cross domain access to a LSO possible?
  Can a flash based advertisement delivered by a 3rd party save a LSO on my disc?
  Thanks
  -stephan

  I 100% agree!  We have an application that the Government requires information to be stored on the users computer as part of Multi-Factor-Authentication.  We originally wrote it as a browser application and when everyone and their brother started deleting browser cookies because of security concerns, we totally re-wrote it as a Flash application to take advantage of permanent storage.  This new "feature" in Flash Player is causing much concern because thousands of users will need to start answering lots of security questions every single time they use the application (ie: daily) and our staff is having to handle technical support questions that shouldn't exist.  Right now it's only IE that's causing the issue, but I'm sure every browser and Internet Security program will soon be adding this to their products.  There should at least be a way for the USER to white-list a specific Domain so Flash could exempt those sites from ANY external program trying to delete ALL Shared Objects/Local Storage/Flash Cookies.  The USER should be given that choice.  This would satisfy the extra privacy you are putting in there and still allow information to be stored from sites that require it.
  John

• Accessing .flv without cross domain access?

  Hello, I am making a game that uses the soundmixer.computeSpecrum method.  I am trying to use it inconjunction with youtube videos, but unfortunatly there is a bug with flash that prevent computeSpectrum from working with youtube videos.  So I thought of a workaround by being able to access the direct .flv link of the youtube video using php, but unfortuantly I can't access it in flash because of flash and youtube's cross domain policies. 
  So I am wondering, is there any way for me to be able to access the flv using an external server or something, but without having to actually download the .flv to the server, as that would take up too much bandwidth.
  Also, if you know of a different way to analyze the audio of a youtube video that is playing, that would also be helpful.
  Thanks!

  Hi Mark,
  Please try to clean up the cached credential in your computer. Then fill in with new domain information (domainB\user) when it prompted for credentials next time and check the Remember my credential to save it. About how to remove cached credentials, please
  follow these steps:
  1. Launch the Credential Manager from Control Panel > All Control Panel Items > Credential Manager.
  2. In the Generic Credentials section you’ll see a setting for [MS Outlook] which will include your SSO details. Click the downward-pointing arrow to the right of that value.
  3. In the expand details, click Remove from vault. Then Outlook will no longer have a stored copy of your old login information (domainA\user).
  If it doesn’t work, please change the windows account with domainB\user information to have a try.
  Regards,
  Winnie Liang
  TechNet Community Support

• Is that possible to do the cross domain migration for AD RMS Services?

  Hi guys, recently i am doing a cross domain migration, when i listing out the server, i found the server have AD RMS services which is still active.
  but after my migration is complete, it is planned to do the decommission on all the old server
  After my checking, i believe the AD RMS have trust establish with a cross site domain already. What i am planning to do is try to do a migration on it.
  i have do some research on it an i found "Cross forest Migration of AD RMS document"
  what i found in the document, it have mention about
  In the event when one cluster running AD RMS is to be discontinued, users may still want to access
  previously protected content that was issued a publishing license by that computer. Servers in other clusters can then add the to-be-discontinued server as a trusted publishing domain.
  So i was wondering if there is an option for Ad RMS services to select a server or host to discontinued?
  The scenario in my head now,
  1.Build trust between in my new domain AD RMS with the existing AD RMS.  update the certificate between the trusted domain as i mention above with my new domain AD RMS.
  but i was wondering if i power down or decommission the server what will happen?
  2. the worst case scenario will be decommission the old AD RMS service, and publish the new AD RMS services in new domain, simply build trust with the cross site domain.
  any suggestion on this? which case is more workable?
  Thanks
  Dave

  Hi,
  I think you may ask in AD RMS forums:
  http://social.technet.microsoft.com/Forums/en-US/home?category=rms&filter=alltypes&sort=lastpostdesc
  Regards.
  Vivian Wang

• Calling secured web service, cross domain security

  Hey all,
  I am trying to call a secured service, for which i need to enable cross domain security.
  I have followed the steps described in
  http://download.oracle.com/docs/cd/E15523_01/web.1111/e13707/domain.htm#i1176046
  i.e. enabling trust between weblogic server domains.
  The problem is: -
  User authentication is working fine, but i am not able to invoke the operation.
  Here is the content of log file
  [2010-04-01T12:15:58.109+05:30] [AdminServer] [WARNING] [] [org.apache.myfaces.trinidadinternal.context.RequestContextImpl] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Could not find partial trigger port from RichTreeTable[org.apache.myfaces.trinidad.component.UIXTree$RowKeyFacesBeanWrapper@146ad85, id=treetablerequest] with the supported partialTriggers syntax. The partial trigger was found with the deprecated syntax. Please use the supported syntax.
  [2010-04-01T12:15:58.109+05:30] [AdminServer] [WARNING] [] [org.apache.myfaces.trinidadinternal.context.RequestContextImpl] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Could not find partial trigger service from RichTreeTable[org.apache.myfaces.trinidad.component.UIXTree$RowKeyFacesBeanWrapper@146ad85, id=treetablerequest] with the supported partialTriggers syntax. The partial trigger was found with the deprecated syntax. Please use the supported syntax.
  [2010-04-01T12:15:58.125+05:30] [AdminServer] [WARNING] [] [org.apache.myfaces.trinidadinternal.context.RequestContextImpl] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Could not find partial trigger invoke from RichTreeTable[org.apache.myfaces.trinidad.component.UIXTree$RowKeyFacesBeanWrapper@146ad85, id=treetablerequest] with the supported partialTriggers syntax. The partial trigger was found with the deprecated syntax. Please use the supported syntax.
  [2010-04-01T12:15:58.125+05:30] [AdminServer] [WARNING] [] [org.apache.myfaces.trinidadinternal.context.RequestContextImpl] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Could not find partial trigger invoke_footer from RichTreeTable[org.apache.myfaces.trinidad.component.UIXTree$RowKeyFacesBeanWrapper@146ad85, id=treetablerequest] with the supported partialTriggers syntax. The partial trigger was found with the deprecated syntax. Please use the supported syntax.
  [2010-04-01T12:15:58.125+05:30] [AdminServer] [WARNING] [] [org.apache.myfaces.trinidadinternal.context.RequestContextImpl] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Could not find partial trigger operation from RichTreeTable[org.apache.myfaces.trinidad.component.UIXTree$RowKeyFacesBeanWrapper@146ad85, id=treetablerequest] with the supported partialTriggers syntax. The partial trigger was found with the deprecated syntax. Please use the supported syntax.
  [2010-04-01T12:15:58.125+05:30] [AdminServer] [WARNING] [] [org.apache.myfaces.trinidadinternal.context.RequestContextImpl] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Could not find partial trigger request_xml_choice_toggle from RichTreeTable[org.apache.myfaces.trinidad.component.UIXTree$RowKeyFacesBeanWrapper@146ad85, id=treetablerequest] with the supported partialTriggers syntax. The partial trigger was found with the deprecated syntax. Please use the supported syntax.
  [2010-04-01T12:15:59.031+05:30] [AdminServer] [NOTIFICATION] [] [oracle.wsm.agent.WSMAgent] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] WSMAgent is initialized for category=management, function=agent.function.client, topologyNodePath=/wls/em/EJBs/default/COMPONENTs/default/WEBSERVICECLIENTs/ItemCostService/PORTs/ItemCostServiceSoapHttpPort/INTERCEPTORs/, isJ2EE=true
  [2010-04-01T12:15:59.046+05:30] [AdminServer] [NOTIFICATION] [] [oracle.wsm.security.policy.scenario.executor.SecurityScenarioExecutor] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Recipient Alias property not configured in the policy. Defaulting to encrypting with signers certificate.
  [2010-04-01T12:15:59.046+05:30] [AdminServer] [NOTIFICATION] [] [oracle.wsm.agent.WSMAgent] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] WSMAgent is initialized for category=security, function=agent.function.client, topologyNodePath=/wls/em/EJBs/default/COMPONENTs/default/WEBSERVICECLIENTs/ItemCostService/PORTs/ItemCostServiceSoapHttpPort/INTERCEPTORs/, isJ2EE=true
  [2010-04-01T12:15:59.328+05:30] [soa_server1] [NOTIFICATION] [] [oracle.soa.mediator.serviceEngine] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] MediatorServiceEngine received a request for operation = retrieveItemCost
  [2010-04-01T12:16:02.109+05:30] [soa_server1] [WARNING] [] [oracle.soa.mediator.common] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Payload after BaseActionHander.requestMessage :{parameters=oracle.xml.parser.v2.XMLElement@137ba0c}
  [2010-04-01T12:16:02.109+05:30] [soa_server1] [WARNING] [] [oracle.soa.mediator.common] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Properties after BaseActionHander.requestMessage :{ReferenceInstance=[email protected]9371, to=http://adc60091fems.us.oracle.com:6079/cstItemCosts/ItemCostService, oracle.fabric.security.identity.subject=Subject:[[
  Principal: CrossDomainConnectors
  Principal: all_function_all_data
  Principal: authenticated-role
  Private Credential: Subject:
  Principal: all_function_all_data
  Principal: CrossDomainConnectors
  , tracking.compositeInstanceId=30022, tracking.ecid=0000IUs7bmy1f_JLMm0Fye1Bg7vS000325, tracking.conversationId=null, tracking.compositeInstanceCreatedTime=Thu Apr 01 12:15:59 IST 2010, action=http://xmlns.oracle.com/apps/scm/costing/itemCosts/service/ItemCostService/retrieveItemCostRequest, tracking.parentComponentInstanceId=reference:30019, MESH_METRICS=null, tracking.parentReferenceId=mediator:3B28BA003D5A11DFBF807548C0B7C19C:3B4087C03D5A11DFBF807548C0B7C19C:req, transport.http.remoteAddress=10.177.219.95}
  [2010-04-01T12:16:02.125+05:30] [soa_server1] [WARNING] [] [oracle.soa.mediator.common] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Headers after BaseActionHander.requestMessage :[]
  [2010-04-01T12:16:03.562+05:30] [soa_server1] [ERROR] [] [oracle.soa.mediator.serviceEngine] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Rolling back transaction due to ORAMED-03303:[Unexpected exception in case execution]Unexpected exception in request response operation "retrieveItemCost" on reference "Service1". Possible Fix:Check whether the reference service is properly configured and running or look at exception for analysing the reason or contact oracle support.
  [2010-04-01T12:16:03.578+05:30] [soa_server1] [ERROR] [] [oracle.soa.mediator.serviceEngine] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Got an exception: oracle.fabric.common.FabricInvocationException: javax.xml.ws.soap.SOAPFaultException: FailedCheck : failure in security check[[
  oracle.tip.mediator.infra.exception.MediatorException: ORAMED-03303:[Unexpected exception in case execution]Unexpected exception in request response operation "retrieveItemCost" on reference "Service1". Possible Fix:Check whether the reference service is properly configured and running or look at exception for analysing the reason or contact oracle support.
  at oracle.tip.mediator.service.SyncRequestResponseHandler.handleFault(SyncRequestResponseHandler.java:207)
  at oracle.tip.mediator.service.SyncRequestResponseHandler.process(SyncRequestResponseHandler.java:123)
  at oracle.tip.mediator.service.ActionProcessor.onMessage(ActionProcessor.java:64)
  at oracle.tip.mediator.dispatch.MessageDispatcher.executeCase(MessageDispatcher.java:124)
  at oracle.tip.mediator.dispatch.InitialMessageDispatcher.processCase(InitialMessageDispatcher.java:514)
  at oracle.tip.mediator.dispatch.InitialMessageDispatcher.processCases(InitialMessageDispatcher.java:417)
  at oracle.tip.mediator.dispatch.InitialMessageDispatcher.processCases(InitialMessageDispatcher.java:301)
  at oracle.tip.mediator.dispatch.InitialMessageDispatcher.dispatch(InitialMessageDispatcher.java:137)
  at oracle.tip.mediator.serviceEngine.MediatorServiceEngine.process(MediatorServiceEngine.java:779)
  at oracle.tip.mediator.serviceEngine.MediatorServiceEngine.request(MediatorServiceEngine.java:650)
  at oracle.integration.platform.blocks.mesh.SynchronousMessageHandler.doRequest(SynchronousMessageHandler.java:139)
  at oracle.integration.platform.blocks.mesh.MessageRouter.request(MessageRouter.java:179)
  at oracle.integration.platform.blocks.mesh.MeshImpl$2.run(MeshImpl.java:167)
  at java.security.AccessController.doPrivileged(Native Method)
  at javax.security.auth.Subject.doAs(Subject.java:396)
  at oracle.integration.platform.blocks.mesh.MeshImpl.doRequestAsSubject(MeshImpl.java:165)
  at oracle.integration.platform.blocks.mesh.MeshImpl.request(MeshImpl.java:141)
  at sun.reflect.GeneratedMethodAccessor1762.invoke(Unknown Source)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:296)
  at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:177)
  at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:144)
  at oracle.integration.platform.metrics.PhaseEventAspect.invoke(PhaseEventAspect.java:59)
  at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:166)
  at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
  at $Proxy184.request(Unknown Source)
  at oracle.integration.platform.blocks.soap.WebServiceEntryBindingComponent.doMessageProcessing(WebServiceEntryBindingComponent.java:1169)
  at oracle.integration.platform.blocks.soap.WebServiceEntryBindingComponent.processIncomingMessage(WebServiceEntryBindingComponent.java:768)
  at oracle.integration.platform.blocks.soap.FabricProvider.processMessage(FabricProvider.java:113)
  at oracle.j2ee.ws.server.provider.ProviderProcessor.doEndpointProcessing(ProviderProcessor.java:1160)
  at oracle.j2ee.ws.server.WebServiceProcessor$1.run(WebServiceProcessor.java:896)
  at java.security.AccessController.doPrivileged(Native Method)
  at javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
  at oracle.security.jps.internal.jaas.AccActionExecutor.execute(AccActionExecutor.java:47)
  at oracle.security.jps.internal.jaas.CascadeActionExecutor$SubjectPrivilegedExceptionAction.run(CascadeActionExecutor.java:79)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:147)
  at weblogic.security.Security.runAs(Security.java:61)
  at oracle.security.jps.wls.jaas.WlsActionExecutor.execute(WlsActionExecutor.java:48)
  at oracle.security.jps.internal.jaas.CascadeActionExecutor.execute(CascadeActionExecutor.java:52)
  at oracle.security.jps.internal.jaas.AbstractSubjectSecurity.executeAs(AbstractSubjectSecurity.java:105)
  at oracle.j2ee.ws.server.provider.GenericProviderPlatform.runAs(GenericProviderPlatform.java:302)
  at oracle.j2ee.ws.server.WebServiceProcessor.invokeEndpointImplementation(WebServiceProcessor.java:903)
  at oracle.j2ee.ws.server.provider.ProviderProcessor.doRequestProcessing(ProviderProcessor.java:561)
  at oracle.j2ee.ws.server.WebServiceProcessor.processRequest(WebServiceProcessor.java:216)
  at oracle.j2ee.ws.server.WebServiceProcessor.doService(WebServiceProcessor.java:179)
  at oracle.j2ee.ws.server.WebServiceServlet.doPost(WebServiceServlet.java:417)
  at oracle.integration.platform.blocks.soap.FabricProviderServlet.doPost(FabricProviderServlet.java:480)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
  at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
  at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:292)
  at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.dms.wls.DMSServletFilter.doFilter(DMSServletFilter.java:326)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3592)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
  at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2202)
  at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2108)
  at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1432)
  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
  at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
  Caused by: oracle.fabric.common.FabricInvocationException: javax.xml.ws.soap.SOAPFaultException: FailedCheck : failure in security check
  at oracle.integration.platform.blocks.soap.WebServiceExternalBindingComponent.throwFabricInvocationException(WebServiceExternalBindingComponent.java:414)
  at oracle.integration.platform.blocks.soap.WebServiceExternalBindingComponent.throwFabricInvocationExceptionForSoapFault(WebServiceExternalBindingComponent.java:410)
  at oracle.integration.platform.blocks.soap.WebServiceExternalBindingComponent.processSOAPFault(WebServiceExternalBindingComponent.java:393)
  at oracle.integration.platform.blocks.soap.WebServiceExternalBindingComponent.processOutboundMessage(WebServiceExternalBindingComponent.java:252)
  at oracle.integration.platform.blocks.soap.WebServiceExternalBindingComponent.sendSOAPMessage(WebServiceExternalBindingComponent.java:635)
  at oracle.integration.platform.blocks.soap.WebServiceExternalBindingComponent.request(WebServiceExternalBindingComponent.java:525)
  at oracle.integration.platform.blocks.mesh.SynchronousMessageHandler.doRequest(SynchronousMessageHandler.java:139)
  at oracle.integration.platform.blocks.mesh.MessageRouter.request(MessageRouter.java:179)
  at oracle.integration.platform.blocks.mesh.MeshImpl$2.run(MeshImpl.java:167)
  at java.security.AccessController.doPrivileged(Native Method)
  at javax.security.auth.Subject.doAs(Subject.java:396)
  at oracle.integration.platform.blocks.mesh.MeshImpl.doRequestAsSubject(MeshImpl.java:165)
  at oracle.integration.platform.blocks.mesh.MeshImpl.request(MeshImpl.java:141)
  at sun.reflect.GeneratedMethodAccessor1762.invoke(Unknown Source)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:296)
  at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:177)
  at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:144)
  at oracle.integration.platform.metrics.PhaseEventAspect.invoke(PhaseEventAspect.java:71)
  at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:166)
  at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
  at $Proxy184.request(Unknown Source)
  at oracle.tip.mediator.serviceEngine.MediatorServiceEngine.request2Mesh(MediatorServiceEngine.java:981)
  at oracle.tip.mediator.service.BaseActionHandler.requestProcess(BaseActionHandler.java:202)
  at oracle.tip.mediator.service.BaseActionHandler.requestProcess(BaseActionHandler.java:94)
  at oracle.tip.mediator.service.BaseActionHandler.requestProcess(BaseActionHandler.java:74)
  at oracle.tip.mediator.service.SyncRequestResponseHandler.process(SyncRequestResponseHandler.java:74)
  ... 64 more
  Caused by: javax.xml.ws.soap.SOAPFaultException: FailedCheck : failure in security check
  at oracle.j2ee.ws.client.jaxws.DispatchImpl.throwJAXWSSoapFaultException(DispatchImpl.java:882)
  at oracle.j2ee.ws.client.jaxws.DispatchImpl.invoke(DispatchImpl.java:715)
  at oracle.j2ee.ws.client.jaxws.OracleDispatchImpl.synchronousInvocationWithRetry(OracleDispatchImpl.java:226)
  at oracle.j2ee.ws.client.jaxws.OracleDispatchImpl.invoke(OracleDispatchImpl.java:97)
  at oracle.integration.platform.blocks.soap.AbstractWebServiceBindingComponent.dispatchRequest(AbstractWebServiceBindingComponent.java:450)
  at oracle.integration.platform.blocks.soap.WebServiceExternalBindingComponent.processOutboundMessage(WebServiceExternalBindingComponent.java:185)
  ... 88 more
  [2010-04-01T12:16:03.578+05:30] [soa_server1] [ERROR] [] [oracle.soa.mediator.serviceEngine] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Updating fault processing DMS metrics
  [2010-04-01T12:16:03.656+05:30] [soa_server1] [NOTIFICATION] [] [oracle.soa.mediator.serviceEngine] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [composite_name: calling_secured_web_service] [J2EE_MODULE.name: fabric] [component_instance_id: 3B28BA003D5A11DFBF807548C0B7C19C] [component_name: Mediator1] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [composite_instance_id: 30022] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] MediatorServiceEngine returning a response for operation = retrieveItemCost
  [2010-04-01T12:16:03.656+05:30] [soa_server1] [NOTIFICATION] [] [oracle.wsm.agent.WSMAgent] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [J2EE_MODULE.name: fabric] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Message Type is normalized, exiting agent.processFault()
  [2010-04-01T12:16:03.656+05:30] [soa_server1] [NOTIFICATION] [] [oracle.wsm.agent.WSMAgent] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: all_function_all_data] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [WEBSERVICE_PORT.name: ItemCostServiceSoapHttpPort] [APP: soa-infra] [J2EE_MODULE.name: fabric] [J2EE_APP.name: soa-infra] [WEBSERVICE.name: ItemCostService] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] Message Type is normalized, exiting agent.processFault()
  [2010-04-01T12:16:04.296+05:30] [soa_server1] [ERROR] [OWS-04115] [oracle.webservices.service] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0:3] [APP: soa-infra] [arg: FabricProvider] [arg: javax.xml.rpc.soap.SOAPFaultException: FailedCheck : failure in security check] [TARGET: /Farm_test_domain/test_domain/soa_server1/soa-infra] [TARGET_TYPE: oracle_soainfra] An error occurred for port: FabricProvider: javax.xml.rpc.soap.SOAPFaultException: FailedCheck : failure in security check.
  [2010-04-01T12:16:04.312+05:30] [AdminServer] [NOTIFICATION] [] [oracle.sysman.emSDK.webservices.wsdlapi.dispatch.DispatchUtil] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Dispatch.invoke failed.Exception stack trace written to trace file.
  [2010-04-01T12:16:04.343+05:30] [AdminServer] [ERROR] [EM-00453] [oracle.sysman.emas.model.wsmgt.WSTestModel] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Failed to invoke operation
  [2010-04-01T12:16:04.343+05:30] [AdminServer] [ERROR] [EM-00453] [oracle.sysman.emas.view.wsmgt.WSView] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE]*.ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Failed to invoke operation*
  [2010-04-01T12:16:04.359+05:30] [AdminServer] [NOTIFICATION:24] [] [oracle.sysman.core.app.menu.XMLMenuManager] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] The Document for grid menu is not found.
  [2010-04-01T12:16:04.531+05:30] [AdminServer] [WARNING] [] [org.apache.myfaces.trinidad.bean.PropertyKey] [host: sjandhya-idc1] [nwaddr: 10.177.219.95] [tid: [ACTIVE].ExecuteThread: '8' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000IUs7bmy1f_JLMm0Fye1Bg7vS000325,0] [APP: em] [TARGET: /Farm_test_domain/test_domain/AdminServer/em] [TARGET_TYPE: j2ee_application] Unserializable value:oracle.sysman.core.view.tgtctls.common.DefaultTreeModel@15622f9 for key:UINodePropertyKey[value,17]
  Thanks
  Nitin

  Thanks again Billy,
  I have configured a wallet with all the necessary certificates. Actually I have purchased a VeriSign trusted certificate and convert that into Oracle Wallet (p12) using openssl with appropriate password. And I'm calling UTL_HTTP.set_wallet('<path_to_wallet>','<pass_to_open_it>');
  I have send my public key to them (web service company) and they need me to send my certificate with every request so that they can authenticate.
  You are saying we don't have to write any code for TLS/SSL UTL_HTTP will take care of that, thats really good.
  One more thing I want to mention here...
  In Internet Explorer - When I am importing my certificate without my private key and trying to access web service I'm getting 404 page not found error.
  But when I'm importing my certificate with the private key, I can see WSDL and all other methods offered by that web service.
  I'm guessing Oracle Wallet that I'm creating with my certificate will store private key also. B'coz it is showing me User Certificate in Ready state.
  ORA-00600 is not giving me proper location where I can find any error in my code.
  Thanks
  -Smith

• ReportViewer & IReportServerCredentials WORKS within Domain; FAILS with Cross-Domain request:HTTP status 401: Unauthorized

  The IReportServerCredentials approach with the ReportViewer control is working fine within a domain, but I get a 401 not authorized error for a Web IIS server trying to call a SSRS server in another domain. I've see plenty of helpful postings on the use
  of IReportServerCredentials but nothing that provides suggestions for this cross domain issue. Hope someone has some ideas on this one. Thanking you in advance for your response.
  Using VS 2008 VB.NET web app with ReportViewer control Version=8.0.0.0.
  Outside domainA Web Server IIS 8. OS = Windows NT 6.2;
  Inside domainA Windows 7 desktop; Inside domainA Windows Server 2003
  SSRS using windows authentication and on SQL Server 2012. OS = Windows NT 6.2
  The processing described below successfully produces a report when the web server app runs on a machine in the same domain as the SSRS server. For the "same domain" web app, both Win 7 desktop VS 2008 development server and Windows 2003 IIS 6 have
  been tested successfully.
  The report fails with error "The request failed with HTTP status 401: not authorized " when the web app is run from a windows IIS 8 machine (outward or Internet facing web server) that is not in the domain of the SSRS server. The ReportViewer control
  credentials (provided by IReportServerCredentials and taken from the web.config file) match a domain account in the same domain as the SSRS
  server and one that has browser permission on the report folder. The same credentials are used successfully for reports requested from within the SSRS domain.
  One interesting thing is that on the Internet facing web server, I can access the report via a browser request. So it is possible to have a user request coming from the Internet facing machine get through the SSRS windows authentication. Just does not
  work for the ReportViewer.
  Using IReportServerCredentials interface per example provided by Microsoft msdn site. Code listed below.
  IReportServerCredentials would appear to be a viable approach because it can pass credentials of a windows account known to the SSRS server, but not known to the client machine. By the way, database calls to SQL Server in domainA using a SQL Server
  native login account work fine. So the network support communication to a domain that the web server does not belong to.
  <Serializable()> _
  Public NotInheritable Class MyReportServerCredentials
      Implements IReportServerCredentials
      Public ReadOnly Property ImpersonationUser() As System.Security.Principal.WindowsIdentity _
          Implements IReportServerCredentials.ImpersonationUser
          Get
              'Use the default windows user.  Credentials will be
              'provided by the NetworkCredentials property.
              Return Nothing
          End Get
      End Property
      Public ReadOnly Property NetworkCredentials() As ICredentials _
              Implements IReportServerCredentials.NetworkCredentials
          Get
              'Read the user information from the web.config file. 
              'By reading the information on demand instead of storing
              'it, the credentials will not be stored in session,
              'reducing the vulnerable surface area to the web.config
              'file, which can be secured with an ACL.
              'User name
              Dim userName As String = _
                  ConfigurationManager.AppSettings("MyReportViewerUser")
              If (String.IsNullOrEmpty(userName)) Then
                  Throw New Exception("Missing user name from web.config file")
              End If
              'Password
              Dim password As String = _
                  ConfigurationManager.AppSettings("MyReportViewerPassword")
              If (String.IsNullOrEmpty(password)) Then
                  Throw New Exception("Missing password from web.config file")
              End If
              'Domain
              Dim domain As String = _
                  ConfigurationManager.AppSettings("MyReportViewerDomain")
              If (String.IsNullOrEmpty(domain)) Then
                  Throw New Exception("Missing domain from web.config file")
              End If
              Return New NetworkCredential(userName, password, domain)
          End Get
      End Property
      Public Function GetFormsCredentials(ByRef authCookie As Cookie, _
                     ByRef userName As String, _
                     ByRef password As String, _
                     ByRef authority As String) As Boolean _
          Implements IReportServerCredentials.GetFormsCredentials
          authCookie = Nothing
          userName = Nothing
          password = Nothing
          authority = Nothing
          'Not using form credentials
          Return False
      End Function
  End Class
  'Set the ReportViewer values and retrieve the report from the SSRS server into a pdf file on the client machine.
  ProposalRptViewer.ProcessingMode = Microsoft.Reporting.WebForms.ProcessingMode.Remote
  ' Set the ReportViewer ReportServerCredentials from the MyReportServerCredentials Class.
  ' Note the credentials are for a domain account defined in the same domain that the SSRS server belongs to and one that has browser permission on the report folder.
  ProposalRptViewer.ServerReport.ReportServerCredentials = _
       New MyReportServerCredentials()
  ProposalRptViewer.ServerReport.ReportServerUrl = New Uri(System.Configuration.ConfigurationManager.AppSettings(Web.[Global].CfgKeyReportServerURL))
  ProposalRptViewer.ServerReport.ReportPath = System.Configuration.ConfigurationManager.AppSettings(Web.[Global].CfgKeyReportPathProposal)
  ProposalRptViewer.ShowCredentialPrompts = False     ' disable prompting for data source credentials
  Dim paramList As New Generic.List(Of ReportParameter)
  Dim pInfo As ReportParameterInfoCollection
  pInfo = ProposalRptViewer.ServerReport.GetParameters()
  paramList.Add(New ReportParameter("ProposalID", ProposalID, True))paramList.Add(New ReportParameter("Entity", Entity, True))
  paramList.Add(New ReportParameter("intRatesPage", intRatesPage1, True))
  ProposalRptViewer.ServerReport.SetParameters(paramList)
  ' Process and render the report
  ProposalRptViewer.ServerReport.Refresh()
  Dim mimeType As String = Nothing
  Dim encoding As String = Nothing
  Dim streams As String() = Nothing
  Dim extension As String = Nothing
  Dim warnings As Microsoft.Reporting.WebForms.Warning() = Nothing
  Dim returnValue As Byte()
  ' Render the proposal Rate Page 1 report to a Byte Array output in pdf file format.
  returnValue = ProposalRptViewer.ServerReport.Render("PDF", Nothing, mimeType, encoding, extension, streams, warnings)
  An error only occurs for web server not in the domain of SSRS Server:
  The request failed with HTTP status 401: Unauthorized.
  Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.
  Exception Details: System.Net.WebException: The request failed with HTTP status 401: Unauthorized.
  Source Error:
  An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack
  trace below.
  Stack Trace:
  [WebException: The request failed with HTTP status 401: Unauthorized.]
     Microsoft.SqlServer.ReportingServices2005.Execution.RSExecutionConnection.GetSecureMethods() +236
     Microsoft.SqlServer.ReportingServices2005.Execution.RSExecutionConnection.IsSecureMethod(String methodname) +58
     Microsoft.SqlServer.ReportingServices2005.Execution.RSExecutionConnection.SetConnectionSSLForMethod(String methodname) +16
     Microsoft.SqlServer.ReportingServices2005.Execution.RSExecutionConnection.LoadReport(String Report, String HistoryID) +226
     Microsoft.Reporting.WebForms.ServerReport.GetExecutionInfo() +192
     Microsoft.Reporting.WebForms.ServerReport.SetParameters(IEnumerable`1 parameters) +136
     DeltaRater.Web.ViewRates.btnCreateProposal_Click(Object sender, EventArgs e) in C:\alex\~~_____Rapid_Rater\SourceDir_VS2008_Jan17_2014\DRR\ViewRates.aspx.vb:911
     System.Web.UI.WebControls.Button.OnClick(EventArgs e) +115
     System.Web.UI.WebControls.Button.RaisePostBackEvent(String eventArgument) +140
     System.Web.UI.Page.RaisePostBackEvent(IPostBackEventHandler sourceControl, String eventArgument) +29
     System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +2981
  Version Information: Microsoft .NET Framework Version:2.0.50727.8009; ASP.NET Version:2.0.50727.8010

  I got the answer to my question by following suggestions by Irb on another technical forum.
  From web server (not on same domain), I was passing credentials of a domain account on the SSRS server. Irb suggested I create a local account on the SSRS server and pass those credentials. I tried this but got the same results.
  This approach worked for web server in SSRS domain, but failed with 401 Unauthorized for web server outside the SSRS domain. Per suggestion for local account on SSRS server, I tried passing empty string "" as the domain via IReportServerCredentials.
  Again this works for web server in the same domain as SSRS. But I get the 401 Unauthorized error when the web server is outside the domain. In testing and checking similar posts, I discovered an additional piece was required for the report request to work
  across domains. The default user did not have authority to send the request and/or receive the report. Adding the following in <system.web> section of web.config file was needed.
  <identity impersonate="true" userName="localwindowsuser" password="#########"/>          where "localwindowsuser" is a windows user defined on the web server.
  I never needed this extra piece when the web server ran in the same domain as the SSRS server. I thank Irb for making me go through the details of additional tests because that is how I stumbled across an identity comment and ultimately got things working.

• Cross domain REST API CSOM using JavaScript

  I have the following scenario:
  1) Upon create/update of the list item in https://teams.comp.com/sites/grpSite/Lists/Products
  2) I need to create the corresponding list imte in https://secureteams.comp.com/sites/grpSiteMain/Lists/Products.
  I have contribute rights on both sites and able to create/update via UI. However, to achieve automation I need to use REST API on create/update form for #1, so that it updates automatically. I have tried using REST API but it is failing, I have tried with
  SP.RequestExecutor with token but I think that is for app only.
  I need to do it for one site collection to other site collection without using the app. Please let me know how it can be done.
  I have option of using SharePoint 2013 and JavaScript CSOM only.

  Hi Shalin,
  Hope the below links help you
  https://social.technet.microsoft.com/Forums/sharepoint/en-US/2385f192-aa87-495a-9332-d4dcfac7481e/nonapp-rest-call-using-javascript-error-with-cross-domain-?forum=sharepointdevelopment
  https://social.technet.microsoft.com/Forums/sharepoint/en-US/d086e5a5-4e20-43c4-a846-2f7b999868d1/sharepoint-cross-domain-request-using-javascript?forum=sharepointdevelopmentprevious
  http://www.alaindeklerk.com/cross-domain-webservice-calls-in-sp2010-using-jsonp-part-1/
  Please remember to click 'Mark as Answer' on the answer if it helps you

• Cross Domain authentication between Windows 2012 R2 domains

  Hello,
  I am trying to figure out if this is possible.
  We have 2 companies that have a VPN between them.
  I can ping their PCs and access their servers by name no issues.
  What I am trying to do is setup a cross domain authentication.
  So their credentials can be authenticated without creating an account for them on a local network. (and vise versa)
  This way on our domain I can create share and they will be able to access it without needing to logon without different credentials.
  Thank you.

  We have Meraki with Site to Site VPN.
  Site-to-site firewall
  Policy
  Protocol
  Source
  Src port
  Destination
  Dst port
  Comment
  Actions
  <tfoot>
  Allow
  Any
  Any
  Any
  Any
  Any
  Default rule
  </tfoot>
  Add a rule
  So as you can tell we don't block anything at all.

• Cross Domain error for Silverlight + MVC application with self hosted WCF service on azure

  Hi,
  We are migrating existing Silverlight application to MVC; existing Silverlight application is hosted on
  Azure which is consuming self-hosted WCF service. For authentication we have implemented
  ADFS with WIF (passive). The cloud service (<myWebSite>.cloudapp.net) is C Name to (<myWebSite>.<myDomain>.com) and we 
  are consuming  WCF service at <myWebSite>.cloudapp.net/<myService>.svc, as we were getting “Cross Domain” error so we have added “clientaccesspolicy.xml” at the root of “WEB ROLE”.
  Existing Silverlight application works fine but the problem occurred when we deploy our migrated application to the same cloud service. We are getting a “Cross Domain” error.
  The same migrated application works fine on UAT environment, the only difference is UAT environment is
  without ADFS WIF implementation.
  Migrated application is half Silverlight and half MVC with initial landing page is Silverlight. MVC web role is used to host the service i.e. .SVC . To go to SL landing page , redirected from home controller. Following is being observed in fiddler for this
  application
  Existing Silverlight application -
  After authentication with ADFS it redirect to Silverlight landing page.
  Before calling service method it looks for “clientaccesspolicy.xml”
  In response header we are getting the content of “clientaccesspolicy.xml”
  And after this everything works fine
  Migrated Silverlight-MVC application –
  After authentication with ADFS it redirects to “HomeController” and from there we are redirecting to Silverlight landing page.
  Before calling service method it looks for “clientaccesspolicy.xml”
  In response header we are getting  following content - “https://federation-sts.<myDomain>.com/adfs/ls/?wa=wsignin1.0&amp;
  wtrealm=https%3a%2f%2f<myWebSite>.<myDomain>.com&amp;
  wctx=rm%3d0%26id%3dpassive%26ru%3d%252fclientaccesspolicy.xml&amp;wct=2014-03-17T10%3a36%3a04Z”
  4.Throw “Cross Domain” error.
  Also we have added filter in
  RouteConfig
  for .xml file
  routes.IgnoreRoute("{*allxml}",
  new { allxml = @".*\.xml(/.*)?" });
  NOTE: There is no configuration change apart from MVC configuration.
  We have done RDP to web role and found that “clientaccesspiolicy.xml” is present at “E:\approot” location and it is also accessible at “https://<myWebSite>.<myDomain>.com/clientaccesspolicy.xml”.
  Please help
  Thanks,
  Rahul P

  Hi,
  Please try to configure the cross domain policy file to allow public read access (that is, access it without federation requirement), make sure you can access the address
  http://something/clientaccesspiolicy.xml directly in a browser
  without redirecting to check whether the cross domain policy file could be anonymous accessed (Please start a new browser session and make sure you're
  not logged in. Then test the cross domain policy file.).
  Best Regards,
  Ming Xu
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• Cross Domain Connection Issues with Test Controller

  I am having trouble resolving a problem I have connecting a build agent with the test controller in a cross domain environment.  I have purged out the actual machine names, domain names, and IP addresses just in case that is a security concern. 
  Situation is this:
  All machines are running Visual Studio 2013
  Test controller/agents are on Windows Server 2012 R2
  Test controller is installed as stand-alone in order to be able to do load testing, as well as API and CodedUI.
  Build definition in TFS kicks off the automation using testsettings file to point to build controller
  Application under test uses resources in the ABC.XYZ domain.  Test agents need to be in ABC.XYZ in order to test application E2E.
  TFS is in Main.corp.company.com domain.
  Test controller is a dual-homed box in corp.company.com and ABC.XYZ domains.  It are accessible from Main using the corp.company.com NIC.
  All our dual homed boxes are set up this way.  Dual homed with Main and ABC directly is considered a security violation.
  From the dual homed box, logged in with my ABC credentials, I can access TFS in Main using my Main credentials.
  Manually, I can successfully kick off a test run from a command line from a VM in ABC.
  Build controller and build agents are in Main.corp.company.com.
  Build controller can successfully connect to build agent, and build agent successfully builds the automation.
  Build agent fails to connect to build controller:
  Failed to queue test run 'buildagent@MachineOne 2014-08-12 12:35:34_Any CPU_Debug': No such host is known
  I can ping the build controller from the test agent, and I can successfully query port 6901:
  Querying target system called:
  testcontroller.corp.company.com
  Attempting to resolve name to IP address...
  Name resolved to 10.10.10.111
  TCP port 6901 (unknown service): LISTENING
  Firewall is turned off on the test controller.  Even if it wasn’t, the relevant rules allowing port 6901 and File and Printer Sharing are created.
  Local Security Policy | Security Options | Network access: Sharing & security model = classic
  NETBIOS names of the test agents and build agent are set in the test controller’s hosts file (they were pingable without this anyway)
  NETBIOS name of the test controller is set in the test agent’s hosts file (it was pingable without this anyway)
  Tried both simple NETBIOS name and FSDN for test controller in testsettings file
  Considering installing a build agent on the same machine as the test controller, but suspect that would just move my communication problem to build controller : build agent
  Considering moving test controller to Main and making the four test agents dual-homed, but there is a concern to limit the number of dual-homed boxes, and also suspect that would again just move the communication problem.
  I can use netstat to verify that the service is listening to port 6901 on both NICs:
  TCP    0.0.0.0:6901           0.0.0.0:0              LISTENING       6536
  TCP    [::]:6901              [::]:0                 LISTENING      
  6536
  (PID 6536 is the QTController.exe)
  However the VSTTController.log only mentions listening to the ABC NIC.  Since the connection to the ABC test agents works, that makes sense.
  When I open the testsettings file on my laptop in the Main domain and examine the server name, there is a warning that the host cannot be found.  When I open it on a VM in the ABC domain I am able to manage the test controller and view all the test
  agents.  However, if I try to restart the build controller I get an access denied error.  Not sure if that is related in some way.
  I am using a ABC domain service account to run the test agent sevice.  There is a Main domain service account running the build.  Both service accounts are administrators on the test controller and in the TeatTestControllerAdmins and TeatTestControllerUsers
  groups.  The test agent service account is also in the TeamTestAgentService group.
  I tried to create a port proxy to forward requests from the Main facing NIC to the port on the ABC facing NIC:
  netsh interface portproxy add v4tov4 listenport=6901 listenaddress=10.10.10.111 connectport=6901 connectaddress=10.20.20.222
  This almost worked.  I could see with netstat commands that the port was opened and a connection was established with the build agent,  however after a long wait it hit an error that it couldn’t find the ABC NIC:
  A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond 10.20.20.222:6901
  So apparently the ABC IP is getting forwarded back to the test agent, which then of course can’t use it.
  I am running out of ideas to try.  Not sure where the problem is:
  Cross-domain issue between Main.corp.company.com and corp.company.com?  Or,
  Problem with the test controller not being able to listen on more than one NIC?
  I know I am not the first person to try to set up something cross domain.  Most of the troubleshooting suggestions I have been able to bing have been about fixing connections between test controller and test agents, which isn’t the problem here. 
  Is this set up just so far from standard that VS can’t handle it?
  Thanks in advance,
  Gary

  Hi Gary,
  Thank you for posting in the MSDN forum.
  >> Build agent fails to connect to build controller: Failed to queue test run 'buildagent@MachineOne 2014-08-12 12:35:34_Any CPU_Debug': No such host is known
  >> I know I am not the first person to try to set up something cross domain.  Most of the troubleshooting suggestions I have been able to bing have been about fixing connections between test controller and test
  agents, which isn’t the problem here. 
  Just to make this issue clearly, you mean that it is not the Test Controller and Test Agent issue, am I right?
  As you said that it is related to the Build controller and build Agent, am I right?
  If it is related to the Build Controller and Build Agent, I suggest you post this issue to the TFS forum, there you would get dedicated support.
  http://social.msdn.microsoft.com/Forums/vstudio/en-US/home?category=vstfs&filter=alltypes&sort=lastpostdesc
  If there's any concern, please feel free to let me know.
  Sincerely,
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place. <br/> Click <a
  href="http://support.microsoft.com/common/survey.aspx?showpage=1&scid=sw%3Ben%3B3559&theme=tech"> HERE</a> to participate the survey.