Failed Calling A X.509 Certificate Secured Web Service From OSB

Similar Messages

• Calling secured web service from Pl SQL

  Hi
  I am trying to call a secured web service from pl/sql using utl_http.
  Is there a sample pl/sql program that i can refer to call a secured web service.
  sample soap header that am trying to acheive.
  <soap:Header>
  <wsa:Action>http://myactaction</wsa:Action>
  <wsa:MessageID>uuid:asdfadrewrwqr</wsa:MessageID>
  <wsa:ReplyTo>
  <wsa:Address>http://schemas.xmlsoap.org/ws/2004/03/addressing/role/anonymous</wsa:Address>
  </wsa:ReplyTo>
  <wsa:To>http://myact</wsa:To>
  <wsse:Security soap:mustUnderstand="1">
  <wsse:UsernameToken wsu:Id="SecurityToken-321321">
  <wsse:Username>mordfsafsdae</wsse:Username>
  <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">werwqrewrwe</wsse:Password>
  </wsse:UsernameToken>
  </wsse:Security>
  </soap:Header>
  Thanks a ton in advance

  Hi,
  On way we can call a web service is to pass the Web Service URL to UTL_HTTP package:
  Sample Web Service URL
  ===================
  lv_url :=
  'http://67.97.189.151:8888/plsqlsample/dbfunc?invoke=placeOrder'
  || '&'
  || 'param0=1'
  || '&'
  || 'param1=1'
  || '&'
  || 'param2=1';
  Sample Call using UTL_HTTP
  =====================
  SELECT UTL_HTTP.request (lv_url)
  INTO lv_result
  FROM DUAL;
  Thank you.
  Regards,
  Balu

• Error while invoking a WS-Security secured web service from Oracle BPEL..

  Hi ,
  We are facing some error while invoking a WS-Security secured web service from our BPEL Process on the windows platform(SOA 10.1.3.3.0).
  For the BPEL process we are following the same steps as given in an AMIS blog : - [http://technology.amis.nl/blog/1607/how-to-call-a-ws-security-secured-web-service-from-oracle-bpel]
  but sttill,after deploying it and passing values in it,we are getting the following error on the console :-
  &ldquo;Header [http://schemas.xmlsoap.org/ws/2004/08/addressing:Action] for ultimate recipient is required but not present in the message&rdquo;
  Any pointers in this regard will be highly appreciated.
  Thanks,
  Saurabh

  Hi James,
  Thanks for the quick reply.
  We've tried to call that web service from an HTML designed in Visual Studios with the same username and password and its working fine.
  But on the BPEL console, we are getting the error as mentioned.
  Also if you can tell me how to set the user name and password in the header of the parter link.I could not find how to do it.
  Thanks,
  Saurabh

• Error when trying to access a secured web service from Forms 10g 10.1.2.3

  Hello,
  I'm trying to access a secured web service from Forms10g 10.1.2.3 but i'm getting the next error when pressing the button the first time:
  java.rmi.RemoteException: ; nested exception is: HTTP transport error: javax.xml.soap.SOAPException:
  java.security.PrivilegedActionException: javax.xml.soap.SOAPException: Bad response: 401 UnauthorizeWhen i press the button a second time i got this error:
  javax.xml.rpc.soap.SOAPFaultException: The SOAP request is invalid. The required node 'Envelope' is missingThis is the code i have in my button:
  DECLARE
  jo ora_java.jobject;
  pdfObject ora_java.jobject;
  pdf     varchar2(900);
  rv varchar2(100);
  ex ora_java.jobject;
  BEGIN
  JO := SEARCHSOAPCLIENT.new;
  SEARCHSOAPCLIENT.setUsername(JO,'weblogic');
  SEARCHSOAPCLIENT.setPassword(JO,'welcome1');
  pdfObject := SEARCHSOAPCLIENT.quicksearch(JO,'1234',NULL);
  pdf := SEARCHSOAPCLIENT.tostring(pdfObject);
  message(pdf);
  message(' ');
  EXCEPTION
  WHEN ORA_JAVA.JAVA_ERROR then
  message('Unable to call out to Java, ' ||ORA_JAVA.LAST_ERROR);
  WHEN ORA_JAVA.EXCEPTION_THROWN then
  ex := ORA_JAVA.LAST_EXCEPTION;
  :error := Exception_.toString(ex);
  END;When i run it from JDeveloper it works, this is a portion of java code the proxy web service has:
  import oracle.webservices.transport.ClientTransport;
  import oracle.webservices.OracleStub;
  import javax.xml.rpc.ServiceFactory;
  import javax.xml.rpc.Stub;
  public class SearchSoapClient {
      private webservicesproxywebcontent.proxy.SearchSoap _port;
      public SearchSoapClient() throws Exception {
          ServiceFactory factory = ServiceFactory.newInstance();
          _port = ((webservicesproxywebcontent.proxy.Search)factory.loadService(webservicesproxywebcontent.proxy.Search.class)).getSearchSoap();
          this.setUsername("weblogic");
          this.setPassword("welcome1");
          System.out.println("callling from _port "+ _port.quickSearch("1234234", null));
       * @param args
      public static void main(String[] args) {
          try {
              webservicesproxywebcontent.proxy.SearchSoapClient myPort = new webservicesproxywebcontent.proxy.SearchSoapClient();
              System.out.println("calling " + myPort.getEndpoint());
          } catch (Exception ex) {
              ex.printStackTrace();
       * delegate all operations to the underlying implementation class.
      public QuickSearchResult quickSearch(String queryText, IdcPropertyList extraProps) throws java.rmi.RemoteException {
          return _port.quickSearch(queryText, extraProps);
      }Also the secured web service was generated from Webcenter Content 11.1.1.6 that is why it's a secured web service.
  Kind Regards
  Carlos

  Without going into any technical discussion about the code, my first question is what JDK version was used to create this which was imported into the form? Understand that Forms 10 runs on JDK 1.4.2, so if you used any newer JDK version, likely there will be problems.

• Unable to consume secured Web service from a Dynpro application

  Hello,
  I have followed <a href="http://help.sap.com/saphelp_nw04/helpdata/en/c3/bac36a469e4c75aba646077e71516d/frameset.htm">this tutorial</a>
  in order to protect and consume a secured Web service from a Dynpro application using SAP logon ticket.
  The problem is that after implementing everything needed I  receive 401 Unauthorized when I am trying to consume it from the web dynpro side.
  If I manually transfer the request the credentials, before the execute i.e:
  modObj._setUser
  modObj._setPassword
  modObj.execute();
  I am able to call it, meaning the dynpro application doesn't transfer these credentials to the Webservice even though it's authentication property is set to true.
  Any idea how to solve it?
  Roy
  Message was edited by:
          Roy Cohen

  Try below steps
  • Add jars
  o security.class
  o tc/sec/destinations/interface
  • Setting WebDynpro project property
  o Project>Properties>Web Dynpro References-->Interface references
  &#61607; Name=tcsecdestinations~interface
  o Project>Properties>Web Dynpro References-->Service reference
  &#61607; Name=webservices
  &#61607; Name=tcsecdestinations~service
  • Dynamically Set httpdestination and Call web service
  final InitialContext ctx = new InitialContext();
  final DestinationService dstService = (DestinationService)ctx.lookup(DestinationService.JNDI_KEY);
  if (dstService== null)
  throw new NamingException ("Destination service not available");
  final Destination destination = dstService.getDestination("HTTP"," DestinationName");
  // getting user name
  Properties destprop = destination.getDestinationProperties();
  String username = destprop.getProperty("USERNAME");
  String password = destprop.getProperty("PASSWORD");
  final HTTPDestination httpDestination = (HTTPDestination) destination;
  HttpURLConnection httpConnection = httpDestination.getURLConnection();
  String httpURL = String.valueOf(httpConnection.getURL());
  Request_AdvLocationVer1ViDocument_getLocation obj=wdContext.currentRequest_AdvLocationVer1ViDocument_getLocationElement().modelObject();
  obj._setUser( user );
  obj._setPassword(pass);
  obj._setEndPoint(httpURL);
  obj.execute();
  Rahul

• How to call OWSM secured web-service from ADF application

  I have a OWSM secured web-service, which takes username/password.
  I want to invoke this webservice from ADF application. ADF application has its own security and it takes its own username/password. End user can't provide the username/password for web-service call. My ADF application should call the webservice and provide it appropriate username/password.
  What is the best practice to handle such scenario. I don't want to hardcode username/password in Java (ADF) code.
  Thanks
  Sanjeev.

  it is not clear to me if you are having problems with calling java code from OIM or if the problem is the web service API.
  Lets do some divide and conquer:
  Can you create a simple java class that just writes a couple of lines to the log? Please attach this code to the OIM task and make sure it runs.
  Once this works we can start looking at the web service call.
  Best regards
  /Martin

• How to call Jive Search methods using REST Web Services from ADF

  Hi
  Can someone provide me an example to call JIVE Search using REST web services from Webcenter ADF.
  As we have the similar facility to call UCM Search from WebServices DataControl.
  Do we have anything similar like this for JIVE Search?
  JIVE 5.1 is deprecating SOAP style web services and so I am planning to use REST.
  Any suggestions on this is much appreciated.
  Many Thanks
  Khad

  so what exactly is the problem here?
  what is not working?

• How to embed user credentials in Secured Web Service from OBIEE 11gFMW?

  I am trying to invoke a webservice that I successfully exposed as a WSDL Web Service using EBS Integrated SOA Gateway. I am using OBIEE 11g Action Framework which uses WebLogic.
  Here are the steps I completed:
  - I exposed a WSDL web service in EBS R12 via Integrated SOA Gateway
  - I granted the access to this service in EBS R12 to user SYSADMIN
  - I used OBIEE 11g to make a Action to call the Web service (using Action Framework) by searching for the WSDL
  - When I try to execute the action: I get the error:
  Action could not be invoked.
  ServiceExecutionFailure :
  Error invoking web service HR_PHONE_API_Service at endpoint http://ip-10-87-33-3.ec2.internal:8000/webservices/SOAProvider/plsql/hr_phone_api/ Missing <wsse:Security> in SOAP Header
  PROBLEM: I am unsure how to add the credentials for SYSADMIN user and password to add the SOAP username/pwd to the outgoing call. According to the documentation in the Integrators guide, FMW Security guide, and Web Logic guides..seems we have to configure the SOAP call to have the proper credentials. The documentation is not very clear on exactly how to do this. I tried to set up the credential store and an account in ActionFrameWorkConfig.xml but I am still missing something. I am logged into OBIEE as biadmin and I am trying to call a webservie in EBS that is granted to SYSADMIN/sysadmin user. Pls advise.

  I am trying to invoke a webservice that I successfully exposed as a WSDL Web Service using EBS Integrated SOA Gateway. I am using OBIEE 11g Action Framework which uses WebLogic.
  Here are the steps I completed:
  - I exposed a WSDL web service in EBS R12 via Integrated SOA Gateway
  - I granted the access to this service in EBS R12 to user SYSADMIN
  - I used OBIEE 11g to make a Action to call the Web service (using Action Framework) by searching for the WSDL
  - When I try to execute the action: I get the error:
  Action could not be invoked.
  ServiceExecutionFailure :
  Error invoking web service HR_PHONE_API_Service at endpoint http://ip-10-87-33-3.ec2.internal:8000/webservices/SOAProvider/plsql/hr_phone_api/ Missing <wsse:Security> in SOAP Header
  PROBLEM: I am unsure how to add the credentials for SYSADMIN user and password to add the SOAP username/pwd to the outgoing call. According to the documentation in the Integrators guide, FMW Security guide, and Web Logic guides..seems we have to configure the SOAP call to have the proper credentials. The documentation is not very clear on exactly how to do this. I tried to set up the credential store and an account in ActionFrameWorkConfig.xml but I am still missing something. I am logged into OBIEE as biadmin and I am trying to call a webservie in EBS that is granted to SYSADMIN/sysadmin user. Pls advise.

• Problems to invoke a secure Web service from Oracle BPM Studio 10.3

  Hi all
  I'm trying to consume a web service through HTTPS protoloco Oracle BPM Studio v10.3, but I get the following error: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target.
  Some help!!
  Thanks

  Without going into any technical discussion about the code, my first question is what JDK version was used to create this which was imported into the form? Understand that Forms 10 runs on JDK 1.4.2, so if you used any newer JDK version, likely there will be problems.

• Invoking a secure web service from a standalone java client

  I am using stand alone java client to invoke a web service. This web service in turn invokes a jcs which is protected ( role based access ).
  I am using a proxy at the client side for web service invocation
  FileSubmission_Impl filesubmission_impl = new FileSubmission_Impl();
  FileSubmissionSoap filesubmissionsoap = filesubmission_impl.getFileSubmissionSoap();
  filesubmissionsoap.processFiles(...)
  This works if there are no security constraints on any of the resources (@common:security).
  I need to pass the username and password from the java client that will be authenticated and allowed to access the protected resources.
  Please let me know as to how this can be achieved ( passing username and password from client )

  Paula,
  I suppose you're using CFINVOKE (http://www.activsoftware.com/code_samples/code.cfm/CodeID/44/ColdFusion/Invoking_SOAP_Web_Services_with_ColdFusion_MX_CFINVOKE_Tag) or are you using a third party tool like CFX_SOAP (http://www.activsoftware.com/products/productdetail.cfm/id/1015)?
  Are you working with WebAS 6.4 or 6.2?
  It works with web services created with WebAS 6.4, but you should generate proxy classes. Check Thomas' weblog (second part of it)->https://www.sdn.sap.com/irj/sdn/weblogs?blog=/pub/wlg/1012. [original link is broken] [original link is broken] [original link is broken] [original link is broken] [original link is broken] [original link is broken] [original link is broken] [original link is broken] [original link is broken]
  The WSDL generated by this method is more standard than the one generated when you just Remote enable an FM and look at the webservice browser.
  Th core of CF MX is Java and that engine is rather strict in standards.
  Eddy

• Invoke External HTTPS Web Service from OSB 11G

  Hi,
  We have a requirement to invoke a HTTPS web service hosted by third-party and we have to send HTTP basic authentication detials also.
  Third party given us the HTTP basic authentication details and only certificate nothing else.
  After some research service account can be used for basic authentication and service key provider for https requirement.
  But before service key provider creation there are steps to import the certificate into weblogic server and do some config steps (PKI cred mapping and all )I have gone through the forums but i am new to OSB and SSL i could not understand.
  Can some one help with detailed steps.
  Thanks in Advance
  Srikanth

  You can simply use "Execute Script" operation in Workbench and make use of java.net.URL. Below links should help :
  http://www.mkyong.com/webservices/jax-rs/restfull-java-client-with-java-net-url/
  http://www.adobe.com/devnet/livecycle/articles/building-xml.html
  http://help.adobe.com/en_US/livecycle/9.0/workbenchHelp/help.htm?content=000581.html
  Hope this helps.
  -Wasil

• How to invoke secure web service from BPEL in SOA 11g

  In SOA 11g I have a simple bpel process in which I am invoking a secured webservice as partnerlink. The webservice which is used in bpel process is deployed in weblogic and the SSL port is enabled on weblogic server. The wsdl url starts with "https:\\hostname:port\servicename?wsdl"
  But I am getting compilation errors when i compiled the BPEL code
  Error(16,65): Load of wsdl "AddressBookManager.wsdl" failed
  Error(19,30): Load of wsdl "https://hostname:port/DV900/AddressBookManager?wsdl" failed
  Error(35,102): Cannot find Port Type "{http://oracle.e1.bssv.JP010000/}Oracle_E1_SBF_SEI_PkgBldFile_AddressBookManager" for "AddressBookManager" in WSDL Manager
  Can anyone please help me out in resolving this.
  Thanks,
  Shameem banu.

  Solution is you need to import the keystore into Jdeveloper jdk first.
  keytool -import -alias <name> -file <name>.pem -keystore <name>.jks -storepass <passwd>
  All details in <> are your specific keystore,pwd details.
  Then go to Jdeveloper/jdev/bin
  add the following to
  jdev.conf file
  AddVMOption -Djavax.net.ssl.trustStore=path_to_keystore\keystorename.jks
  AddVMOption -Djavax.net.ssl.trustStorePassword=password
  Then you can create partner link for https based wsdl
  Good Luck

• Calling Secured Business Service from OSB

  Hi,
  I am trying to call a Service which is secured.
  the Request SOAP message is like :
  <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/"
  xmlns:ns="urn:crmondemand/ws/activity/10/2004"
  xmlns:act="urn:/crmondemand/xml/activity"
  xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
  *<soapenv:Header>*
  *     *<wsse:Security>**
  *          *<wsse:UsernameToken>**
  *               *<wsse:Username>USERX</wsse:Username>**
  *               *<wsse:Password type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">PASSWORD</wsse:Password>**
  **          </wsse:UsernameToken>**
  *     </wsse:Security>*
  *</soapenv:Header>*
  <soapenv:Body>
  ========================
  ========================
  </soapenv:Body>
  </soapenv:Envelope>
  I have created a business service and attached the service to Proxy service.
  I am new to OSB.I am unable to change the header data.In the forums i found couple of responses pointing to create
  Policy file or creating service account which were not clear to me.Dear expert , please guide me what exactly need to be done in this case.
  Thanks in advance,
  Regards,
  Chandra

  hi,
  Finally i have done it with the help of documentation.
  solution is :
  In the service configuration --> Policy -->select OWSM policy bindings (your domain should be configured with OWSM extention))
  select predefined oracle/wss_username_token_client_policy from in the OWSM configuration window
  next login to the em console: http://localhost:7001/em
  In the left hand side pane Go to Weblogic Domain -> select <your domain name>
  In the central pallete Weblogic Domain drop down goto secutiry --> Credentials.
  Here create a map with name : oracle.wsm.security (if not exists)
  Create a key by selecting the map as :oracle.wsm.security
  Key name : Sample_KEY
  Type : password
  Username: The username you are expecting in the soap header
  Password: The password you are expecting in the soap header
  Now go back to your service configuration -> Policy -> select the policy that you have added.
  there you can see the properties button enabled.click on it...
  there for the default_value = basic_credentials give the over_ride value as Sample_KEY (the key name you have mapped to the map)
  Regards,
  Chandra sekhar kommalapati

• How to call a secure web service via XAI Sender in CC&B

  Hi All,
              I want to a call a secure web service from CC&B through out bound message. I have configured the calling  WSDL in XAI Sender. The wevservice is secured one.I tried to call it by configuring user name and password in XAI sender context.But still i am not able to call the service.
  Can anybody help me how to over come this issue ??
  I have cretaed the same post under utilities,but i am not able reply it.
  I am using HTTPSNDR  as XAI class.
  Thanx in advance.
  Regards
  sunil

  Are you getting any errors? What type of XAI Class are you using?
  One thing I've noticed is that if you are making changes to the XAI Sender you will have to restart the environment before the changes can take effect.
  Also, if you are using RTHTTPSNDR as XAI Class you may have to include the HTTP Method - Post in the context.
  Hope this helps.
  Regards,
  Philip

• Accessing Secured Web Services fromPL/SQL  Code.

  Hi ,
  This is an urgent requirement.We need to call a Web Sercured which is secured(That we need Authenticate using Digital Signatures).I don't how to call a Secured web service from PL/SQL code.with java it is possible.
  Can anyone help me in confoguring/Writing code to call web services with Digital Certificates.
  Regards,
  Ram

  In the XmlDigester class you would have to change the following 2 functions...
  public int Compare(Object x, Object y)
  XmlAttribute lhs = (XmlAttribute)x;
  XmlAttribute rhs = (XmlAttribute)y;
  string ls = lhs.NamespaceURI;
  string rs = rhs.NamespaceURI;
  if ((ls == rs) || (ls.Equals(rs) && ls != null && rs != null))
  ls = lhs.LocalName;
  rs = rhs.LocalName;
  if (ls == null)
  return -1;
  if (rs == null)
  return 1;
  byte[] larr = Encoding.UTF8.GetBytes(ls);
  byte[] rarr = Encoding.UTF8.GetBytes(rs);
  int len = Math.Min(larr.Length, rarr.Length);
  for (int i = 0; i < len; i++)
  int li = (int)(larr[i] & 0xFF);
  int ri = (int)(rarr[i] & 0xFF);
  int d = li - ri;
  if (d != 0)
  return d;
  return larr.Length - rarr.Length;
  private void Serialize(string s, Stream outStream)
  byte[] bytes = Encoding.UTF8.GetBytes(s);
  int len = bytes.Length;
  Serialize((byte)(len >> 8), outStream);
  Serialize((byte)(len), outStream);
  Serialize(bytes, outStream);
  That should do the trick.