How to develop a webservice with SAML on Weblogic 8.1

I will develop some webservices on Weblogic 8.1. On the security part, we will
use SAML. Is there somebody who can tell me how to do it? Do I need third party
product? And where I can find samples?
Thanks.
Jian

I will develop some webservices on Weblogic 8.1. On the security part,
we will use SAML. Is there somebody who can tell me how to do it? Do I
need third party product? And where I can find samples?Currently, we don't offer any support for SAML in WLS -- so you would
have to use a third party product. Depending on how you want to use it,
you may be able to use a third party product to create a handler for your
service or client.
However, if you want to use the handler in the server to set the subject
for the invoke, the handler architecture will prevent you from doing
this -- the API you use to set the user
(weblogic.security.service.SecurityManager.runAs() -- see
http://edocs.bea.com/wls/docs81/javadocs/weblogic/security/service/SecurityManager.html)
cannot be successfully used in handler methods. If you wish to do this,
I'm afraid the only way we have to support this is to use a servlet filter.
-Pete

Similar Messages

  • Call a Webservice with SAML securty in PI 7.0

    Hi experts,
    I need to call a Webservice with SAML security from PI 7.0, Is It possible? or only It is possible with PI 7.1?
    Thanks in advance,
    Jose Manuel

    Hi Jose,
    Let me answer your questuion first :
    No, using PI 7.0 I dont think its posible..
    Below is a brief overview on SAML.
    SAML: It stands for Security Assertion Markup Language, it is an XML standard which is used to exchange security information between a service provider and an identity provider.
    Why we need it ???
    We have a concept called Principal Propagation in PI 7.1, Principal Propagation allows to securely pass the identity of a user from a sender application to a receiver application. There are various adapters and protocols which support the Principal Propagation and one protocol amongst them is the Webservice Reliable Messaging Protocol or WS-RM. Principal Propagation solution for WS-RM protocol is based on SAML and uses the SAML assertions.
    There are some video recordings available for configuration and you can view the same as below,
    Configure a Trust Relationship between Sender and Integration Server: Exchange sender's digital certificate between sender and Integration Server.
    Configure Trusted Issuer: Map user in the Integration Server, and specify issuer. Default issuer is the sender's system ID, default attester is the sender's certificate.
    Configure Sender Agreement and Sender Communication Channel: In Integration Directory, select SAML Sender Vouches Assertion as authentication method.
    Regards,
    Divya

  • Securing webservices with SAML

    Hi everybody,
    I'm trying to protect web services with SAML assertions using AM 7.1, I've alredy try to deploy some tutorials and samples provided by netbeans 6.0, AM7.1 and Java EE SDK, but I'm facing a lot of problems, I also found many contradictions between the tutorials and official Sun documentation and at this point I'm very confused
    It's really possible to implement web services security with SAML using AM 7/7.1 +AppServer 8.1/8.2 in the way Securing Identity Web  Services tutorial/lab (http://www.javapassion.com/handsonlabs/IdentityWebServices/) do it???
    in many tutorials and official Sun documents I found the library amWebServicesProvider.jar that is supposed to be the Sun Java Access Manager Policy Agent 2.2, this library it's supposed to implement the JSR196(Java Authentication Service Provider Interface for Containers), using this library imply modifications to the server.policy and domain.xml files, in order to add support for SOAP and HttpServlet message security providers.
    I've tryed to modify the server.policy in AppServer 8.1/8.2, but I found it's only possible to add support for SOAP message security providers, trying to add HttpServlet mesage security providers makes AppServer crash at the init. How can I add support for HttpServlet message security provider???
    library amWebServicesProvider.jar its supposed to be the Policy Agent 2.2 and its currently bundled with Java EE SDK, but the currrent relese of the Policy Agent 2.2 for SJAS 8.1/8.2 does not includes this library. Does someone know where to download this release of Policy Agent and also at least an installation guide???
    in the AM side, I'm refering to AM ( shall I say "THE HALF AM" ?) bundled with Java EE SDK I found that many agents are created at the installation time, this agents in combination with the library amWebServicesProvider.jar supposly protect the web services, these agents are not common agents, I'm refering to the agents usually we create following the Policy Agent installation guide where we only put agent name, password, a description (optional) and checkbox Device Status to true, the agents created in "THE HALF AM" are created with a lot of aditional properties despite the fact that Sun Java System Access Manager 7.1 Administration Guide(http://docs.sun.com/app/docs/doc/819-4670/gavwo?a=view)
    says that only one property (agentRootURL) is valid and all other properties will be ignored
    my real question is:
    It's really possible_+ to implement web services security with SAML using AM 7/7.1 +AppServer 8.1/8.2, I mean, using REAL TECHNOLOGIES+_, in the way Securing Identity Web  Services tutorial/lab (http://www.javapassion.com/handsonlabs/IdentityWebServices/) do it???
    Any help is aprecciated
    regards

    Hi,
    I have installed Glashfish 9.1 and NetBeans 6.0 seperately on Windows XP, and want to configure the Access Manager 7.1 and Policy Agent 2.2 to run the Blue Prints for Secured WebServices.
    If I install the Access Manager from jdk15 version of AccessManager7_1RTM from Sun site, AM gets installed properly, but StockQuoteService blueprint not deployed properly (throws exceptions even after configuring the amWebServicesProvider.jar and amclientsdk.jar manually). But the AM documentation refers to the installation for Solaris not for Windows platform. I am not sure my configuration of amWebServicesProvider.jar is valid or not.
    I ran the blueprint StockQuoteService and StockQuoteClient successfully with all the variations of WSSecurities when I installed using the "java-tools-bundle-update3-beta-windows.exe" application which installs all the Glashfish, NetBeans, AM, OpenESB, Portal etc and configures automatically after installation and Start of Glasfish server.
    I have even tried to install the AM and configure from the "access_manager-7_1-p1-ea-b5" download installer, but it throws "ClassNotFoundException: com.sun.identity.setup.AMSetupFilter" exception when i deployed the amserver.war file.
    My requirement is, to run the AccessManager and have secured WebServices working properly when installed individually the Glashfish, AccessManager etc.
    Can anyone point me where i get the AccessManager 7.1 for Windows XP, and integrate with Glashfish 9.1, and able to run the blueprints StockQuoteService and StockQuoteClient with SAML and LibertyBeareToken security pofiles.
    Thanks in advance for the help,
    krishna

  • Develope complex WebService with JDeveloper and deploy to tomcat

    Hello,
    I am thinking of developing a complex WebService with JDeveloper and deploy it to tomcat.
    The WebService should retrieve a few "normal" datatypes and a pdf and a few images. I try to store the pdf and the image in an Oracle DB as BLOB.
    My idea ist to create a Package which selects the values, pdf and the image and retrieve them as the output paramter.
    Then I want to create a WebService with the JDeveloper which calls this Package. This WebService should be published on a Tomcat.
    My first question is if that is possible?
    I think there are few problems.
    I searched the forum about deploying a JDeveloper WebService to Tomcat, but I can not find a whole solution which is going to work. I read something about JAX-RPC, but I am new to this topic. So it would be very nice, if anyone could tell me where I can find the solution or post a quick guide to solve that.
    Another question is how I have to decode the images and the pdf to provide those files in a WebService?
    I would be very glad if anyone can help me or tell me where I can find information about that, becaus I am new to this topic!
    Thank you,
    Tim

    Hi,
    does anybody have an idea about that?
    Thanks,
    Tim

  • How to develop a report with current price &  the last price in the pre.yrs

    hi ,
    guys,
    my client want a report to list of material with respective vendor and to make a price comparison betn the current price & the last price in the privious year.
    can any one help how to develop the report, shall go for generic extrc.
    thanks in advace.
    ramnath

    CR CR 2011 / "Crystal reports For Visual Studio 2010", you are correct.
    Re. the database thinggy. You can connect to a database via ODBC, OLE DB or in some instances natively. Once a report is created you an change the datasource. A good sample app on how to do this is  csharp_win_dbengine / vb_win_dbengine. A link to the samples is here:
    Crystal Reports for .NET SDK Samples - Business Intelligence (BusinessObjects) - SCN Wiki
    More info on connecting to dbs and changing them is in the developer help files:
    SAP Crystal Reports .NET SDK Developer Guide
    SAP Crystal Reports .NET API Guide
    More info on CR APIs for .NET (applies to all versions of CR and VS):
    Crystal Reports for Visual Studio 2005 Walkthro... | SCN
    You can also use ADO .NET Datasets and in this way you handle the database connections in your app. A good sample is csharp_win_adodotnet (also available in VB) - same link as above.
    More info on datasets:
    Crystal Reports Guide To ADO.NET
    Crystal Reports for Visual Studio .NET - Walkthrough - Reporting Off ADO.NET Datasets
    For more complicated operations (e.g.; changing a report from ODBC to OLE DB, changing one table, etc., you will want to use the InProc RAS SDK that is also available in CRVS. Developer help files are here:
    Report Application Server .NET SDK Developer Guide
    Report Application Server .NET API Guide
    Sample apps are here:
    NET RAS SDK Samples - Business Intelligence (BusinessObjects) - SCN Wiki
    and here:
    Crystal Reports .NET In Process RAS (Unmanaged) SDK Sample Applications
    More info on RAS SDK:
    How to Use The RAS SDK .NET With In-Process RAS Server
    Lastly, do use the search box in the top right corner. I find simple search strings such as 'crystal net parameter' return best results (KBAs, Blogs, docs, wikis, discussions and more).
    - Ludek

  • How to invoke a WebService with more than 1 value in parameter?

    I have a webservice, with a request parameter as an Array of String.
    In an invoing xml it should looks like:
    <GetPersonsData_Request>
    <request>
    <PersonIdList>
    <string> 111 </string>
    <string> 222 </string>
    <string> 333 </string>
    </PersonIdList>
    A problem i have:
    How I can to assign a differents values to this list?
    i assigned first element directly and then tried to add a new one with append:
    <bpelx:append>
    <bpelx:from>'12345'</bpelx:from>
    <bpelx:to>$GetPersonsData_Request.parameters/ns2:request/ns5:PersonIdList</bpelx:to>
    </bpelx:append>
    I receive:
    <GetPersonsData_Request>
    <request>
    <PersonIdList>
    <string> 111 </string>
    '12345'
    </PersonIdList>
    </request>
    Its added as a single string, no as a Structure Element.
    What i missed???

    ok, i tried.
    add a new string type variable:
    <variable name="string" element="ns6:string"/>
    next assigned to $string my text and tried to append it to list:
    <bpelx:append>
    <bpelx:from>$string</bpelx:from>
    <bpelx:to>$GetPersonsData_Request.parameters/ns2:request/ns5:PersonIdList</bpelx:to>
    </bpelx:append>
    and as a result i receive a correct structure:
    <GetPersonsData_Request>
    <request>
    <PersonIdList>
    <string> 111 </string>
    <string> 12345 </string>
    </PersonIdList>
    </request>
    BUT!!! When i next use a countNode:
    <assign name="ac">
    <copy>
    <from>ora:countNodes('GetPersonsData_Request','parameters','ns2:request/ns5:PersonIdList/ns8:string') - it shows me 1 !!!
    <to>$counter</to>
    </copy>
    In EM:
    Updated variable "counter"
    <payload>
    <counter>
    <counter xsi:type="def:int">1</counter>
    </counter>
    Why???
    Is it really correct example and it should to work?

  • How to develop java webservice in jDeveloper

    Hi,
    iam new to web services. iwant to develop the webservice in jDeveloper. i am also new to jDeveloper. ?
    can you please give me the steps to develop the webservices?
    and also give me the suggestion which tool i can use?
    if any body having the sample application please forward to [email protected]?
    regards
    ram

    Hi frank,
    thanks for your reply. i got it. but when i am testing this webservice its not calling properly.when i am calling the url,, its displaying as page cant be displayed. i had started the server as well..... what is the problem..
    this is the url what i got from the wsdl file...
    http://10.113.11.156:8888/WebApp-MyPro-context-root/HelloWSSoapHttpPort
    regards
    ram

  • How To call java WebService with flex.

    Hi Friends
                         can any body guide me how to use webservices that call java at server side.i have experience of http service dont know how to call the webservices.please give me a basic demo on both side(java and flex).i am using eclipse ide for java and flex.
    Thanks in advance
       Vineet osho

    The ADF Mobile Container Utilities API may be used from JavaScript or Java.
    Application Container APIs - 11g Release 2 (11.1.2.4.0)

  • How to develop ADF Mobile with Oracle Database remotely

    As my company is using Oracle Database and using ADF to development many Web-based apps and We just begin to develop in ADF Mobile.
    We can't find any tutorial about to using Oracle Database with ADF, How we can using it in ADF Mobile ?
    Thanks for your help !

    Hi,
    ADF mobile supports SOAP and REST services for business services access. This means that for you to work against an Oracle database, you need to create a business services that can be exposed as a service for WS DC consumption as explained in the ADF Mobile documentation. Your options are
    1. EJB / JPA : Create entities from database table and then create a session facade on top. This then can be declaratively exposed as a WebService. Use the WSDL reference and start New --> WebService -> WS Data Control in your ADF Mobile project
    2. ADF BC can be exposed as a Service Interface and this to ADF Mobile. To create an ADF BC service you can read the product documentation or this: http://www.oracle.com/technetwork/issue-archive/2012/12-sep/o52adf-1735897.html
    See this video: https://blogs.oracle.com/shay/entry/developing_with_oracle_adf_mobile for how to integrate this in ADF Mobile
    Frank

  • How to create a webservice with axis specific WSDL

    Hi all
    I want to know if anybosy can provide with me any documentation or information link from where i can find the way how to deploy webservices using axis specific WSDL(i mean WSDL is created using axis jars) on to the application server like Weblogic.
    I would like to know the following
    1 - How to create the web.xml
    2- How to create the deployment descriptor.
    3- How to pack the EAR or WAR file.
    Thanks and Regards
    Manoj

    You can't as File is nor serializable. It won't make sense as you would try to give a handle to a file on the server hosting the service to a remote system.
    Can you explain the use case in more detail?
    Timo

  • How to create a webservice with return type File

    Hi All,
    I have a class Letter and I am trying to expose viewReport as webservice.
    In Jdeveloper -> Business teir -> webservices -> Java web service and I have selected my method i.e. viewReport
    Now it throws error "The return type java.io.File of method viewReport can not be serialized into XML"
    I unserstood the issue but How can I achive this in JDeveloper
    public class Letter {
    public Letter() {
    super();
    public File viewReport(String name) {
    File folder = new File("C:\\APPS\\root\\pdf\\10052011");
    File[] listOfFiles = folder.listFiles();
    return listOfFiles[0];
    }

    You can't as File is nor serializable. It won't make sense as you would try to give a handle to a file on the server hosting the service to a remote system.
    Can you explain the use case in more detail?
    Timo

  • How to call a webservice with SOAP Binding Style RPC

    Hi Guys,
    I'm pretty new to the LiveCycle ES product and I'm trying to call a web service that is of SOAP binding style 'RPC'. After some research I found out that Adobe LC ES only support WSDL files of doc/literal type.
    My question is, is there a workaround for calling RPC style web services? can RPC style web services be converted into doc/literal type?
    Any information regarding this would be greatly appreciated.
    Kazz.

    Hello,
    I had the same problem and I've regenerated my WSDL ( Apache Axis ) with docu/litteral parameters.
    I think it's the only way...
    thomas

  • How to develop repository manager with initial folder structure

    Hi 2 all!
    I wonder if it is possible to create new repository programmatically with defined folder structure. I'm interested in solutions when repository manager is works with db or file system. Can you provide any example or tell me where can I define my structure?
    thnx

    Hi Nata!
    Basicly this task consists of two steps:
    1. Deploy a new configuration object for the repository manager
    2. Create the intial folder structure
    Step one is simple. Here is the configuration object of the repository manager for /documents. It's been exported from the KM configuration by using the standard export mechanisms. This can be included into a portal application project in Netweaver Studio.
    documents.co.xml
    <?xml version="1.0"  encoding="UTF-8" ?>
    <!-- file generated by configuration framework Jun 27, 2008 9:16:36 AM -->
    <Configurable configclass="CmRepositoryManager" owner="km.appl.rep.mgr.prjconfig">
    <property name="ro-expiry-time" value="0"></property>
    <property name="fsconttrack" value="true"></property>
    <property name="poolid" value="dbcon_wcmdb_cm"></property>
    <property name="securitymgr.aclcacheid" value="ca_rsrc_acl"></property>
    <property name="localroot"></property>
    <property name="serverfarm" value="false"></property>
    <property name="propertysearchmgr.class" value="com.sapportals.wcm.repository.manager.cm.CmPropertySearchManager"></property>
    <property name="keepVersionHistory" value="false"></property>
    <property name="securitymgr.aclcfg" value="acl_jdbc_rep"></property>
    <property name="versioning.localroot"></property>
    <property name="persistence.mode" value="db"></property>
    <property name="hidden" value="false"></property>
    <property name="fsnosync" value="false"></property>
    <property name="cacheid.versionhistory"></property>
    <property name="prefix" value="/documents"></property>
    <property name="fsContentCacheMaxEntries" value="-1"></property>
    <property name="fsContentCache"></property>
    <property name="name" value="documents"></property>
    <property name="cacheid.content"></property>
    <property name="compressLimit" value="-1"></property>
    <property name="cacheid.foldercontent"></property>
    <property name="cacheid.properties"></property>
    <property name="active" value="true"></property>
    <property name="cacheid.rid"></property>
    <property name="ignorerootdisplayname" value="false"></property>
    <property name="class" value="com.sapportals.wcm.repository.manager.cm.CmRepositoryManager"></property>
    <property name="cclist"></property>
    <property name="intLinksDefaultDynamic" value="true"></property>
    <property name="contentmgr.class" value="com.sapportals.wcm.repository.manager.cm.CmNamespaceAndContentManager"></property>
    <property name="cacheid.documents"></property>
    <property name="versioningmgr.class" value="com.sapportals.wcm.repository.manager.cm.CmVersioningManager"></property>
    <property name="securitymgr.w2kcfg.systemid"></property>
    <property name="lockmgr.class" value="com.sapportals.wcm.repository.manager.cm.CmLockManager"></property>
    <property name="cacheid.locks"></property>
    <property name="securitymgr.class"></property>
    <property name="persistence.db.instance-id" value="documents"></property>
    <property name="cacheid" value="ca_cm"></property>
    <property name="namespacemgr.class" value="com.sapportals.wcm.repository.manager.cm.CmNamespaceAndContentManager"></property>
    <property name="autoversioning" value="false"></property>
    <property name="description"></property>
    <property name="securitymgr.ref" value="AclSecurityManager"></property>
    <property name="fsContentCacheLimit" value="100"></property>
    <property name="propertymgr.class" value="com.sapportals.wcm.repository.manager.cm.CmPropertyManager"></property>
    <property name="services" value="accessstatistic, com.dkv.DKVApprovalAndTranslation, com.dkv.jobtool.repository.JobToolCreationService, comment, discussion, feedback, layout, personalnote, properties, rating, statemngt, subscription, svc_acl, tbp"></property>
    <property name="sendevents" value="true"></property>
    </Configurable>
    This is a DB repository. The config object for a filesystem repository might differ.
    Step 2, the creation of the initial file structure may be done with in two different ways:
    a) Include a Repository Service with your repository, which creates the folder structure on the first access of your repository.
    b) Include a Portal app which has to be called once to create the folder structure.
    For more info about using the API to create km folders take at look at this:
    https://www.sdn.sap.com/irj/sdn/thread?threadID=933638&messageID=5663711#5663711
    Cheers,
      Jürgen

  • How to intergrate oracle workflow with oc4j or weblogic?

    tks a lot

    Perhaps the easiest and most straight forward is using JMS, Oracle Advanced Queuing supports JMS, and you can use AQ messages to start or continue workflows, and workflow can publish messages to AQ.
    tks a lot

  • Webservice with axis given a wsdl

    Hi all,
    I am a newbie to webservices, I have been given a wsdl from another company and I have been asked to develop a webservice with it. I would like to know the steps which I would be requiring to take inorder to build a webservice with axis. any help would be appreciated.
    I want to know how should i proceed by looking at the wsdl. The wsdl given is quite huge and big. any starting point would be helpful.

    hey neeeded a help.. you had followed jacobs instructions.. in that it says and i quote !
    1. delete the plugin folder, restart Eclipse, update the lib in the plugin folder
    Copy 2 files: "backport-util-concurrent-3.1.jar" and "geronimo-stax-api_1.0_spec-1.0.1.jar" from <Axis2Home_Location>/lib folder to the <Eclipse_Location>\plugins\Axis2_Codegen_Wizard_1.3.0\lib folder.
    2. Edit the plugins.xml file in the <Eclipse_Location>\plugins\Axis2_Codegen_Wizard_1.3.0 folder as follows:
    <runtime>
    <library name="lib/geronimo-stax-api_1.0_spec-1.0.1.jar">
    <export name="*"/>
    </library>
    <library name="lib/backport-util-concurrent-3.1.jar">
    <export name="*"/>
    </library>
    </runtime>
    then copy the plugin folder to eclipse plugin
    restarted Eclipse and it worked.
    fix worked fine for me with Eclipse WTP (Europa) and jdk1.5.0_07
    Now my question is if i delete the plugin folder, and try to restart Eclipse, Eclipse does not start, it says missiing jars ..
    I am sorry to bother you with so much questions ..
    thanks 1

Maybe you are looking for

  • I tunes wont work

    ugh i call the **** numbers and they put me on hold!!!... i go on itunes and press download ENTIRE music library then i press aply and look at the audio bar that say 291 songs!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! then i press sync and it then says 10 songs!

  • Unable to read MAC address of router at login

    I'm using the following bash function to get the MAC address of the current router when logging in. The script works when I run it after logging in but doesn't work from my login hook (running as root). The script fails even after sleeping for 30 sec

  • How can I hide completed To Do items in printed List format?

    I have iCal configured to hide completed To Do items. When I print my calendar in List view, however, iCal prints those competed and hidden To Do items. Why can't I hide completed items in List view as I can in Calendar view. Is my only option to del

  • Short Name for same user results in different service authorization

    New to Mac Server. Not new to Unix, command line, or sys admin. I have a Mini Server, with two users; me and my wife. Both Accounts have two short names each: Initals+Lastname, and First Name only With iChat on the server, my account can login using

  • Obiee 11g RPD consistency check error after upgrade

    Hi, got below error in RPD consistency check after upgrading from obiee 10g to obiee 11.1.1.6. *ERRORS: Business Model Core: [38028] Logical column Dim - Contact.Age Range does not have a valid data type.* logical column Age= CASE WHEN "Core"."Dim -