DocumentDownload? -- (FWM 02080) Invalid logon token

Similar Messages

• Delivering serialized session or logon token to external web app?

  Hello,
  I have the following situation, the user logs into SAP BO 4.0 Launch pad application, he needs to start our external web application and therefore we created an hyperlink. The application opens in a new tab, that's running fine. Our application uses BO SDK to provide some functionality (browse user SAP folders, reports or so), and therefore we need to log in into the current user session.
  Is there any way to deliver either the serialized session or logon token to external application? Are there any internal variables to be used? Or should I use totally different approach? 
  There would be a workaround by delivering just the current BO user name to the external app, and than using a separate (administrators) login to fetch only the current user's data. But this I guess is not the right way to do the job.
  Any help is greatly appreciated

  Hi Martin,
  I am facing same situation than you and I also considered using the trusted authentication until I reads following statement in java docs
  To enable trusted authentication on a client machine, create a text file named TrustedPrincipal.conf on the client machine and add the following text:
  SharedSecret=<secret>
  where <secret> is the trusted authentication shared secret configured in BusinessObjects Enterprise.
  So, if the external web app may be launched from any user this would mean having to install this file in all BI LaunchPad desktop computers. It isn´t? This does not sound very elegant. Is this what you did?
  Thanks

• Workflow Manager Suspends Workflows - "Invalid JWT token"

  Hi,
  I've installed Workflow Manager with the default settings described in this Technet article:
  http://technet.microsoft.com/en-us/library/jj193514.aspx. Everything seems to install just fine but when I create a very simple workflow test on an "Announcements" list which simple
  creates a Workflow History entry. However, the workflow immediately suspends with the following error which seems to be some kind of an authentication error. I am running the workflow logged on as a site collection administrator which is not 1. farm administrator
  or 2. the service ID that I input into the Workflow Manager Configuration Wizard.I also DO have profiles installed, the user running the workflow DOES have a profile and I DO have the App Management service application installed. In addition, I rebooted the
  SharePoint VM after the install
  Given that Workflow Manager, Workflow Manager Client 1.0 and Service Bus 1.0 are all running on the same server as Central Administration (since I only have the one SharePoint VM) perhaps the reference to "SAMEORIGIN" in the error means something?
  I've installed Workflow Manager with the same instructions on other farms in the past and not had this problem and wondering whether the June 2013 CU has introduced this error. . .
  Please help!
  Kathryn
  RequestorId: f17eeb99-00f1-d82f-0000-000000000000.
  Details: An unhandled exception occurred during the execution of the workflow instance.
  Exception details: System.ApplicationException: HTTP 401 {"error_description":"Invalid JWT token. Could not resolve issuer token."} {"x-ms-diagnostics":["3000006;reason=\"Token contains invalid signature.\";category=\"invalid_client\""],"SPRequestGuid":["f17eeb99-00f1-d82f-9859-d5b160369f87"],"request-id":["f17eeb99-00f1-d82f-9859-d5b160369f87"],"X-FRAME-OPTIONS":["SAMEORIGIN"],"SPRequestDuration":["4"],"SPIisLatency":["0"],"Server":["Microsoft-IIS\/8.0"],"WWW-Authenticate":["Bearer
  realm=\"2b0ecd05-1b3e-4efd-a346-c7b309bf6fb5\",client_id=\"00000003-0000-0ff1-ce00-000000000000\",trusted_issuers=\"00000005-0000-0000-c000-000000000000@*,[email protected]09bf6fb5\"","NTLM"],"X-Powered-By":["ASP.NET"],"MicrosoftSharePointTeamServices":["15.0.0.4517"],"X-Content-Type-Options":["nosniff"],"X-MS-InvokeApp":["1;
  RequireReadOnly"],"Date":["Sun, 25 Aug 2013 22:22:02 GMT"]} at Microsoft.Activities.Hosting.Runtime.Subroutine.SubroutineChild.Execute(CodeActivityContext context) at System.Activities.CodeActivity.InternalExecute(ActivityInstance
  instance, ActivityExecutor executor, BookmarkManager bookmarkManager) at System.Activities.Runtime.ActivityExecutor.ExecuteActivityWorkItem.ExecuteBody(ActivityExecutor executor, BookmarkManager bookmarkManager, Location resultLocation)
  Kathryn Birstein, Senior SharePoint Architect

  Hi,
  Base on the description, an unhandled exception occurred during the execution of the workflow instance.
  I suggest you to use other account to test the workflow. Please make sure you are not using system account. Also please make sure User profile service is running and syncing with active directory. As I've found sometimes workflow tries to read user information
  from user profile service and if the user details missing in User Profile service, the workflow might get failed. The original error is "Token Contains Invalid signature" which means either the user is system account or the user doesn't exists in user profile.
  There is an article about the error message, you can refer to it:
  http://steve.thelineberrys.com/following-sites-across-farms-with-sharepoint-2013-mysites/
  More information:
  Troubleshooting Workflow Manager 1.0 Management and Execution:
  http://msdn.microsoft.com/en-us/library/windowsazure/jj193529(v=azure.10).aspx?ppud=4
  Best Regards, 
  Linda
  Li

• Could not save the document to the repository for the following reason: [repo_proxy 30] DocumentFacade::uploadBlob - Query execute has failed : Error occurred while attempting to reconnect to CMS : Not a valid logon token. (FWB 00003) (hr=#0x80042a70) (WI

  Hi, getting Could not save the document to the repository for the following reason: [repo_proxy 30] DocumentFacade::uploadBlob - Query execute has failed : Error occurred while attempting to reconnect to CMS : Not a valid logon token. (FWB 00003) (hr=#0x80042a70) (WIS 30567) amongst lots of other errors when scheduling.
  I was logged in as administrator and attempting to schedule a webi document to my self using the email option.
  thanks in advance

  Hi Trinath,
  Could you please confirm if you could save a new report as well or not; or is it specific to scheduling.
  If you are unable to save a report also then I think this is due to the path of the Input File Repository Server or its temporary directory are not pointing to the same path, and their locations are set to 2 different hard drives
  BOXI3.1 Server must use the same hard drive (local or network share) for the Input File Repository Server and its temporary directory.
  - Shahnawaz

• Emailed a link (token) and when my browser opens it I get the error: An error occured. The URL had a missing or invalid conirmation token.

  tyring to set up an Alumni Email Forwarding Account. They sent me a confirmation email with the link to complete the process. When I "followed" the link, Firefox opens the page and I get the message: An error occured. The URL had a missing or invalid confirmation token.
  I'm wondering if maybe my browser settings are the problem and if so, what do I need to change.

  Does that link have special characters in it that may get corrupted when pasting or passed via DDE?<br />
  ''(do not post that link on this forum)''

• Redirecting Logon Token in XI 3.1

  We have a custom application in BOEXI R2, which gets the login information, creates a logon token & passes the URL to open a Infoview window.
  We are in process of upgrading this to BOEXI 3.1, so we made necessary assembly reference changes & the Infoview URL. But the application is not logging to Infoview using the login token. So we would like to know is there any changes made in BOEXI 3.1 for the way of passing the login token/cookies.

  You should be able to log in with passwords as well.
  It is up to you as to how you want to get the password to the page for use in the logon step.
  Just replace the "" with "whateveryourpasswordis" and as long as the user name is correct and it is set up with secEnterprise credentials it will log in as that user.
  enterpriseSession = sessMgr.Logon("Administrator", "", System.Environment.MachineName.ToString(), "secEnterprise");
  Edited by: Jason Everly on Feb 5, 2009 9:51 AM

• Close session on URL reporting - Logon token

  Hi,
  when a user opens a report using a direct link (like openDocument) he creates a session that doesn't expires when he close the browser window.
  So if the same user opens 5 times the same report, he uses all the 5 licenses and the system is not accesible anymore (until the server will unlock the connections).
  It is possible to avoid this?
  Thanks!!
  Edited by: freeman74 on Dec 21, 2009 2:24 PM

  On page 17 and 18 of the doc "xi3-1_url_reporting_opendocument_en.pdf" it is written:
  ASPTOKEN
  Logon tokens ensure that your company's licensing information is accurate.
  Each time a user logs on to the BusinessObjects Enterprise system, the
  count for the number of licenses that are currently in use increases by one.
  If a logon token is not passed as a parameter, each time the user logs on to
  the CMS (for example, the user may want to log on to a different
  BusinessObjects Enterprise client component), the count increments. As a
  result, an administrator or auditor may overestimate the number of licenses
  in use.
  Example:
  This example shows you how to display a report when the user clicks the
  View Report link.
  <a target='_blank' href='http://<servername>:<port>/CrystalRe
  ports/viewrpt.cwr?id=" & "CurrentReportID & " & _ apstoken="
  & LogonToken & "'> View Report</a>
  The resulting URL for this link is as follows:
  http://<servername>:<port>/CrystalReports/viewrpt.cwr?id=152&ap
  stoken=myAPS:A1B2
  I'm writing a URL that contains username and password to avoid the login; but how can I get the logon token before the user views the report??

• Flickr credentials fail consistently - "can't update this collection, Invalid auth token"

  I've set up links to FaceBook and Flickr and am happily uploading images directly from LR3. Every couple of days, the Flickr link/authorisation seems to die, and I get the message:
  Can't update this collection.
  Flickr API returned an error message (function upload,
  message Invalid auth token)
  OK
  I need to re-authorise the connection by logging into Flickr using > Edit Session > Log In.
  My password on Flickr hasn't changed (nor has any other detail), so there's no reason why the authorisation should be failing. I have a Flickr Pro account. The facebook connection is fine and never expires.
  Any clues?
  Thanks,
  Steve
  Lightroom version: 3.3 [711369]
  Operating system: Windows 7 Business Edition
  Version: 6.1 [7600]
  Application architecture: x64

  I can think of few ways the auth stuff can fail, based on the SDK example the publish service is derived from. But I bet folks over on the Lightroom SDK forum might know more than my inexpert guesses.

• Invalid refresh token

  Hi Team,
  We are using the Oauth codes to generate echosign document widget through API. Now we are receiving invalid refresh token error when try to refresh the key before making an API call.
  Initially i retrieved the Access Token Request code and retrieved the refresh_token.
  Please let me know if we need to generate access token request every time we make an API call?
  Thank you

  Hi,
  Thanks for highlighting and bringing this to our attention. This is a known issue that is currently being investigated.
  Jat

• Supress default logon box after invalid logon via SSO

  Hi,
  We are using SSO to authenticate to the database. If the SSO authenication fails, Oracle Forms automatically brings up the default logon box. For example -
  A user registers and their userid and password are stored in the OID. The user's password is then reset by a DBA. The next time the user tries to access the application, the credentials stored in the OID are incorrect. The on-error trigger in the form fires and brings up an error message. Then the default logon box pops up. I would like to just display a message and then exit the form. I do not want the user to have the option to enter a userid and password. I have tried putting an exit_form in the on-error trigger, but it says that exit_form is a restricted procedure. No other triggers fire before the default logon box pops up.
  Does anyone know how I can supress the default logon box?
  Thanks,
  Kim

  Hi Caíque,
  Yes, we allowed pop-ups  and cokies in the browser and disabled the firewall.
  When we click a button on the CRM UI in internet explorer, the error message is
  -Invalid argument
  "http://acsmrcrm03.com:8000/sap(====)/bc/bsp/sap/bsp_wd_base/popup_buffered_frame_cached.htm?sap-client=100&sap-language=EN&sap-domainRelax=min"
  -Object does not support this property or method"

• Error Code:  18452 - Invalid logon parameters

  We are trying to schedule several crystal reports to run automatically on our server and continue to get the following errors.
  Invalid log on parameters Database Vendor Code:  18452
  When we review the log in Crystal Report Viewer we are receiving the following information.
  The database logon information for this report is either incomplete or incorrect.   
  Unable to retrieve Object.
  Would anyone be able to tell us what is causing these error codes?

  We resolved the error by changing the logon paramater within our ODBC datasource connection.   When the crystal report was original created it was using the designers logon credentials to connect to the data source.  In order to fix this we had to change the logon parameter to the datasource logon.   The easiest way we determined that it was using the designers credentials (UserID/password) was by opening up the "set database location" tool and then we opened up the properties; there is where we seen the UserID of the designer.   To change this you might need to create a new connection and then update using the database expert and the set database location tools.

• Problems with Crystal reports server 2008 VI (Invalid logon information)

  I have added a report that connects to the SQL server and also I set up the required ODBC for the report on the server. I could run the report without any issues.
  When I add the same report to another folder in CMC or add a new report that uses the same connection, and try to run it, I get the following error.
  I did set location and verify database in Crystal designer many times and added the report into CMC, but still it gives me the error.
  However the first report that I added still works fine. For some reports it shows the parameter screen and when I enter them and click OK it gives the same error. I checked the logon information and they are correct. Reports work fine in Crystal designer. When I added the report, in the database configuration I selected "Use original database logon information from the report." and entered the SQL user id and password.
  error message:
  "The database logon information for this report is either incomplete or incorrect"
  I then went back to the database configuration and selected "Use custom database logon information specified here." and entered the ODBC connection info.
  With this when I run the report it takes a little longer and again asks me to enter the user id and password, even though I selected "Use same database logon as when report is run" option. Still when I enter the user id and password and click ok it keeps on prompting the same. I kept on entering it for 20 times, still it kept on prompting for the same. I am not sure how to make this work.
  The report that I am trying to run has an SQL command (that links with 10+ tables), views and some tables. It also got one dynamic parameter prompt.
  Also when I select the item from dropdown box "Table Prefix" and save and come back to the database configuration the option I selected is blank. It seems like CMC is not saving this. I found out that this sometimes happens with the password too.
  I have checked on SAP forum and could not find a solution for either of these problems yet.
  I do have created a web site with CR developer 2008 that runs the same report and it works there without any issues.
  Could any one help me with this?

  I assume that you have built your reports with the CR Designer 2008 V1. Try to open the affected report in the CR Designer and select Database->VErify database and save it back into the repository. Does it work?
  Regards,
  Stratos

• How to get logon token from OA framework

  Hi, All
  Is there a way to retrieve the oralce ebs user token. It seems that Class webAppsContext doesn't provide the method to retrieve this info. Any Advice ? thanks in advance

  You can get the username with <OAPageContext>.getUserName(..) API. As to get the password, you might want to check the FND APIs, to retrieve the decrypted password for the user.

• Getting Invalid SAML token error while trying to access wls9.2 webservice

  Hi,
  I am using wss4j at the client side as SAML token issuer to add saml assertion to the soap envelop whose target is a webservice deployed in a aqua logic service bus 2.6. But at the server side i.e wls9.2, i am getting following exception
  weblogic.xml.crypto.wss.SecurityTokenValidateResult@326f6a[status: false][msg The SAML token is not valid.]</faultstring></soapenv:Fault></soapenv:Body></soapenv:Envelope>
  weblogic.xml.crypto.wss.WSSecurityException: Security token failed to validate. weblogic.xml.crypto.wss.SecurityTokenValidateResult@326f6a[status: false][msg The SAML token is not valid.]
       at weblogic.xml.crypto.wss.SecurityImpl.unmarshalAndProcessSecurityToken(SecurityImpl.java:476)
       at weblogic.xml.crypto.wss.SecurityImpl.unmarshal(SecurityImpl.java:392)
  This error seems to be coming during unmarshalling of soap envelop which is run before request goes to SAML Identity Assertion provider V1. Certificates are properly configured at both client and server side so it seems that generated SAML assertion is not compliant with weblogic 9.2 unmarshalling process.
  Has anyone got any solution for this problem. I am not exactly looking for full SSO configuration at the weblogic side so I have not set any credential mapper (which is also a saml issuer). Nor have i done any setting related with SSO on weblogic.
  Any idea will really be helpful in this regard.
  Thanks.

  In what version of Oracle?
  I see a couple of problems assuming you are working with a currently supported version:
  1. Never grant CONNECT to anyone: Ever. Grant CREATE SESSION.
  2. GRANT CREATE TABLE to AQ;
  Go to Morgan's Library at www.psoug.org and look at AQ Demo 1. You should have no problem cutting and pasting your way to where you are trying to go.

• Invalid Access Token in Script

  Hey folks!
  I was hoping to set up a copy of my local Pictures directory from my home server to OneDrive, so I was following the blog
  post here.
  This led me to the
  blog post here regarding using Powershell 3.0 to connect to Live. From that post, I'm using the Authorization code grant flow to generate an Access Token. I get the Live login and application approvals, but when I try to Invoke-RestMethod to the URI,
  I get the following error, which leads me to believe I'm not really generating the Access Token.
  Any ideas? Thanks!
  Invoke-RestMethod -URI "https://apis.live.net/v5.0/me/skydrive?access_token=$AccessToken
  Invoke-RestMethod : { "error": { "code": "request_token_invalid", "message": "The access token isn't valid." } }
  At line:1 char:1
  + Invoke-RestMethod -URI "https://apis.live.net/v5.0/me/skydrive?access_tok ...
  + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      + CategoryInfo          : InvalidOperation: (System.Net.HttpWebRequest:HttpWebRequest) [Invoke-RestMethod], WebExc
     eption
      + FullyQualifiedErrorId : WebCmdletWebResponseException,Microsoft.PowerShell.Commands.InvokeRestMethodCommand

  I did register, but didn't change the secret. I am getting intermittent success, so I think I might just be impatient and maybe the 24 hours applies on new applications?
  To answer the first question - just putzing around really on Windows 2012 Essentials, which can't run the SkyDrive app. Trying to see if a basic copy to SkyDrive would work using a PowerShell script.
  Go back and read the article very carefully.  THe token is initially only good for an hour.  You need to change the request.
  Sit down and read slowly while testing each bit of code presented.  You need to do it in three steps.
  1. Acquire current token.
  2. Apply token to session
  3. Get folder.
  ¯\_(ツ)_/¯