Invoking Soap over HTTPS

Similar Messages

• Enabling SOAP over HTTPs on PI7.0

  Hello
      We have a requirement to connect PI7.0 to PI7.1 with SOAP over HTTPS. Would you please let us know what all configuration need
         1.  Setting required to be done on PI7.0 ( Communication Channels, Receiver and Sender agreements)
         2.  Where to put private key and root certificate in Visual admin
         3. Port configuration for outbound and inbound traffic.
         4. Enabling of SSL on PI7.0.
         5. Any ICM related setting on PI7.0
  Thanks & Regards

  Hi Uttam,
  Hi,
  For using HTTPS protocol, you have to chose the option of HTTPS in the 'HTTP Security Level' parameter on SOAP sender communication channel.
  For using HTTPS protocol, the SSL certificates need to be deployed on the server.
  Below are the links for more information on SSL certificates:
  http://help.sap.com/saphelp_nw70ehp1/helpdata/en/14/ef2940cbf2195de10000000a1550b0/frameset.htm
  http://www.tldp.org/HOWTO/SSL-Certificates-HOWTO/
  For choosing & installing steps of SSL, refer the below links:
  /people/aniket.tare/blog/2005/03/22/ssl-certificate-installation-procedure-for-sap-j2ee-engine-630-150-steps-in-visual-administrator
  http://info.ssl.com/article.aspx?id=10694
  -Supriya.

• Looking for suggestion for SOAP over HTTP API to Oracle 10G

  I need to be able to write data to an oracle 10g database through a SOAP over HTTP connection. What is the suggest packages to do such an action.
  Best regards,
  Dale

  I suspect the problem is that the actual communication between client & Oracle DB server is done on a random "high port"; not 1522.
  The packets on the high port are not getting through the VPN.
  What I have made work in the past is to use ssh tunneling.
  Good Luck, you might need it.

• Advantages and disadvantages of SOAP over Http

  Hi!
  Can any one explain about advantages and disadvantages of SOAP over HTTP.
  Thanks
  Sreenath

  Hi,
  Yes you can use RMI to communicate to your soa suite server allthough i could not get it to work from weblogic 10.3, there is a conflict with certain other libraries. From any other 10.1.3 oracle application server there should not be any problem. The biggest advantage of RMI over SOAP is performance. The soap client also generates lots of logging which can not be disabled, ... i already logged a bug on that. The advantage of SOAP over RMI is its underlying HTTP protocol which is, in some cases, the only protocol allowed by network engineers to pass through firewalls.
  Kind Regards,
  Andre

• How can I know the end of TCP stream and/or SOAP over HTTP flow

  Hi all!
  I want to read SOAP messages over HTTP, from sniffed TCP fragments.
  How can I decide that the TCP and/or the HTTP fragmenst finished?
  For example there is a SOAP message sliced to 5 TCP packets, and the first packet contains the HTTP header and some SOAP content too. The last packet contains the SOAP XML's ending XML-tag </soap:Envelope>.
  I don't want to watch every packet's end like "if the end string is </soap:Envelope> then it is the last packet", I just simply want to know which is the last packet of that message.
  The TCP connection won't be closed after the message arrives, and let's say the HTTP header doesn't contain a Content-Length field.

  A TCP connection is just a stream of bytes. It doesn't care what those bytes are. HTTP is built on top of TCP and specifies the ability to make a request without closing the connection (HTTP 1.1 Keep Alive). So you need to understand the HTTP protocol, understand whether it's a Keep Alive connection or not, and then do the same thing a browser would to do understand when a reply has been completed and the connection is available for the next request. Otherwise, you'll just look like you're getting loads of unrelated data as you sniff the connection. Oh, and you'll probably need to understand the HTTP chunking protocol too.

• SOAP over HTTPS from XE to 10.1.3

  I'm trying to setup the classic client server application using soap(web services,utl_http) over https between XE(clients) and Application server 10.1.3. I created a pl/sql web service using JDeveloper 10.1.3 and deployed it to the AS successfully.
  When trying to create a new webservice through HTML DB (over port 80), XE states that I have no input or output parameters for my soap methods. I belive its parsing my WSDL wrong...but this is another thread...I think I can make that work.
  The main technolgical problem is sending the soap msgs over https. I would perferr to do this with utl_http since I could control my logic with pure pl/sql. Is the Apache proxy route the only option?
  Is there no way for pl/sql to consume web services?
  If a JVM was included with XE then this would be a breeze(hint hint)
  Thank you
  Dan

  Dan,
  The SOAP utility with APEX appears to be very weak, I and several others have tried to use it against 'real' web services (e.g. Amazon's S3) and get the same problem, no input or output parameters.
  To do SOAP client within Oracle the hard way see ...
  http://www.oracle.com/technology/tech/webservices/htdocs/samples/dbwebservice/DBWebServices_PLSQL.html
  I'm using Simon Fell's PocketSoap library with Excel VBA to first ensure my understanding of the S3 service, then I'll use the resulting soap envelopes as templates for hand coding into PL/SQL. Not ideal, but it works.
  Tom

• SOAP over HTTP

  I want to send XML in SOAP envelop over HTTP to Web Service. I want to used HttpUrlConnection instead of other approaches. I have set doInput and doOutput both as true as want both type of communicaiton from one HttpUrlConnection.
  I am able to get OutputStream from HttpUrlConnection but getting error 500 while trying to get InputStream.
  Any idea ... ?

  Its a question abt SOAP.I'm new to SOAP.As SOAP itself
  is a protocol (Simple obj access protocol) SOAP is no longer an acronym - I believe this was done so people's understanding of SOAP was not limited to SOAP-RPC.
  why is HTTP used to transfer data using SOAP?SOAP is an XML messaging standard. It provides a standard method for exchanging XML data in a fashion that is transport agnostic, i.e. it would be perfectly valid (though slow) to use email as the transport for SOAP messages.
  HTTP is used because it is simple, widely implemented across platforms and languages, and is also commonly available. A side effect of the use of HTTP is that many servers allow HTTP traffic through their firewalls, enabling SOAP applications to be available over a wider network (this is not the greatest from a security perspective).
  In short, HTTP is used because it's there.
  JT

• SOAP over HTTP/POST

  Hi everyone,
  I'd be eternally grateful if someone could provide me with a quick + easy solution to the following (basic?) task.
  I have a user form with the required parameters and a submit button. I have an XML schema which specifies the format for the soap requests and responses. How do I accept user input, wrap it into a soap request, send it via HTTP/POST to a server ( http://localhost:9999/xyz/xyz), wait for a soap response and display the response in a readable format to the user when they press the submit button? Not that hard is it?!
  Please try to be a specific as possible because I'm no Java expert. I'm just so confused with all the tutorials about wsdl, bpel, tomcat, jax ws, glassfish etc etc etc!
  I use netbeans and java app server 9, though I'm open to other IDEs/servers.
  Any help will be greatly appreciated,
  Ruth

  https://saaj.dev.java.net/source/browse/*checkout*/saSAAJ: aj/saaj-ri/docs/index.html
  The Java Web Services Tutorial:
  http://java.sun.com/webservices/docs/1.6/tutorial/doc/index.html
  (Chapter 5)
  SOAP Tutorial: http://www.w3schools.com/soap/default.asp

• Invoking Webservice over HTTPS

  Hi all,
  I'm using Weblogic 9.2 with default configuration of Keystore & SSL. The webservice client is generated using 'Clientgen' Ant task, I can invoke the webservice using http without problem, but when using https it's always rejected, basically I'm not sure what system properties to put for the client, here's my last desperate attempt:
  System.setProperty("weblogic.webservice.verbose", "true");
  System.setProperty("java.protocol.handler.pkgs", "weblogic.net");
  System.setProperty("weblogic.security.SSL.trustedCAKeyStore", "config/DemoIdentity.jks");
  System.setProperty("weblogic.security.SSL.ignoreHostnameVerification", "true");
  System.setProperty("weblogic.security.SSL.TrustKeyStore", "DemoTrust");
  System.setProperty("weblogic.webservice.client.ssl.strictcertchecking", "false");
  System.setProperty("ssl.debug", "true");
  PaymentGateway service = new PaymentGateway_Impl();
  PaymentGatewayPort port = service.getPaymentGatewayPort();
  Stub.class.cast(port)._setProperty(Stub.ENDPOINT_ADDRESS_PROPERTY, "https://192.168.56.3:7002/ws/PaymentGateway?WSDL");
  Stub.class.cast(port)._setProperty(Stub.USERNAME_PROPERTY, "weblogic");
  Stub.class.cast(port)._setProperty(Stub.PASSWORD_PROPERTY, "weblogic");
  ISODocument isoDoc = new ISODocument();
  isoDoc.setMti(new Integer(200));
  port.balanceInquery(isoDoc);And here's the exception thrown in client:
  Apr 16, 2010 8:18:14 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: SSL license found
  Apr 16, 2010 8:18:14 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Not in server, Certicom SSL license found
  Apr 16, 2010 8:18:14 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Ignoring not supported JCE Mac: SunJCE version 1.5 for algorithm HmacSHA1
  Apr 16, 2010 8:18:14 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Will use default Mac for algorithm HmacSHA1
  Apr 16, 2010 8:18:14 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Ignoring not supported JCE Mac: SunJCE version 1.5 for algorithm HmacMD5
  Apr 16, 2010 8:18:14 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Will use default Mac for algorithm HmacMD5
  Apr 16, 2010 8:18:14 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Ignoring not supported JCE KeyAgreement: SunJCE version 1.5 for algorithm DiffieHellman
  Apr 16, 2010 8:18:14 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Will use default KeyAgreement for algorithm DiffieHellman
  Apr 16, 2010 8:18:14 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Will use default KeyAgreement for algorithm ECDH
  Apr 16, 2010 8:18:14 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Using JCE Cipher: SunJCE version 1.5 for algorithm DESede/CBC/NoPadding
  Apr 16, 2010 8:18:14 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Using JCE Cipher: SunJCE version 1.5 for algorithm DES/CBC/NoPadding
  Apr 16, 2010 8:18:15 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Using JCE Cipher: SunJCE version 1.5 for algorithm AES/CBC/NoPadding
  Apr 16, 2010 8:18:15 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Using JCE Cipher: SunJCE version 1.5 for algorithm RC4
  Apr 16, 2010 8:18:15 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Using JCE Cipher: SunJCE version 1.5 for algorithm RSA
  Apr 16, 2010 8:18:15 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Using JCE Cipher: SunJCE version 1.5 for algorithm RSA/ECB/NoPadding
  Apr 16, 2010 8:18:15 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: SSL Session TTL :90000
  <!-------------------- REQUEST FROM CLIENT ---------------->
  URL        :  https://192.168.56.3:7002/ws/PaymentGateway?WSDL
  Headers    :
    Authorization: [Basic d2VibG9naWM6d2VibG9naWM=]
    SOAPAction: [""]
    Content-Type: [text/xml]
  <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/" xmlns:xsd="http://www.w3.org/2001/XMLSchema"><env:Header></env:Header><env:Body env:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/"><m:balanceInquery xmlns:m="http://www.telkomsel.com/PaymentGateway"><iSODocument xmlns:n1="java:com.visitek.pgi.models" xsi:type="n1:ISODocument"><amount xsi:nil="true"></amount><audit_number href="#ID_2"></audit_number><bank_code xsi:type="xsd:string">000151</bank_code><currency_code href="#ID_2"></currency_code><data href="#ID_2"></data><encrypted_pin href="#ID_2"></encrypted_pin><expiration_date href="#ID_2"></expiration_date><institution_code href="#ID_2"></institution_code><institution_data xsi:type="xsd:string">62812006002616</institution_data><local_tracking_id xsi:type="xsd:string">080722163229082127.0.0.1:9595</local_tracking_id><mti xsi:type="xsd:int">200</mti><network_information_code xsi:type="xsd:short">0</network_information_code><original_data_element href="#ID_2"></original_data_element><pan_null_true xsi:type="xsd:string">yes</pan_null_true><pos_entry href="#ID_2"></pos_entry><primary_acc_number xsi:nil="true"></primary_acc_number><response_code href="#ID_2"></response_code><response_terminal_number href="#ID_2"></response_terminal_number><service_code xsi:type="xsd:int">6016</service_code><settlement_date href="#ID_2"></settlement_date><terminal_number href="#ID_2"></terminal_number><transaction_code xsi:type="xsd:int">380000</transaction_code><transaction_data href="#ID_2"></transaction_data><transaction_date href="#ID_2"></transaction_date><transaction_sequence href="#ID_2"></transaction_sequence><transaction_time href="#ID_2"></transaction_time><transaction_timestamp href="#ID_2"></transaction_timestamp></iSODocument></m:balanceInquery><xsd:string xsi:type="xsd:string" id="ID_2"></xsd:string></env:Body></env:Envelope>
  <!-------------------- END REQUEST FROM CLIENT ------------>
  Apr 16, 2010 8:18:15 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Trusted CA keystore: config/DemoIdentity.jks
  Apr 16, 2010 8:18:15 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Filtering JSSE SSLSocket
  Apr 16, 2010 8:18:15 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: SSLIOContextTable.addContext(ctx): 24864323
  Apr 16, 2010 8:18:15 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: SSLSocket will NOT be Muxing
  Apr 16, 2010 8:18:15 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: write SSL_20_RECORD
  Apr 16, 2010 8:18:15 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: isMuxerActivated: false
  Apr 16, 2010 8:18:16 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: 25567987 SSL3/TLS MAC
  Apr 16, 2010 8:18:16 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: 25567987 received HANDSHAKE
  Apr 16, 2010 8:18:16 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: HANDSHAKEMESSAGE: ServerHello
  Apr 16, 2010 8:18:16 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: isMuxerActivated: false
  Apr 16, 2010 8:18:16 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: 25567987 SSL3/TLS MAC
  Apr 16, 2010 8:18:16 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: 25567987 received HANDSHAKE
  Apr 16, 2010 8:18:16 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: HANDSHAKEMESSAGE: Certificate
  Apr 16, 2010 8:18:16 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Cannot complete the certificate chain: No trusted cert found
  Apr 16, 2010 8:18:16 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: Validating certificate 0 in the chain: Serial number: -151503846264256045339669576782538934945
  Issuer:C=US, ST=MyState, L=MyTown, O=MyOrganization, OU=FOR TESTING ONLY, CN=CertGenCAB
  Subject:C=US, ST=MyState, L=MyTown, O=MyOrganization, OU=FOR TESTING ONLY, CN=paymentd
  Not Valid Before:Wed Mar 12 15:39:27 GMT+07:00 2008
  Not Valid After:Mon Mar 13 15:39:27 GMT+07:00 2023
  Signature Algorithm:MD5withRSA
  Apr 16, 2010 8:18:16 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE: validationCallback: validateErr = 16
  Apr 16, 2010 8:18:16 PM weblogic.diagnostics.debug.DebugLogger debug
  FINE:   cert[0] = Serial number: -151503846264256045339669576782538934945
  Issuer:C=US, ST=MyState, L=MyTown, O=MyOrganization, OU=FOR TESTING ONLY, CN=CertGenCAB
  Subject:C=US, ST=MyState, L=MyTown, O=MyOrganization, OU=FOR TESTING ONLY, CN=paymentd
  Not Valid Before:Wed Mar 12 15:39:27 GMT+07:00 2008
  Not Valid After:Mon Mar 13 15:39:27 GMT+07:00 2023
  Signature Algorithm:MD5withRSA
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Warning> <Security> <BEA-090542> <Certificate chain received from 192.168.56.3 - 192.168.56.3 was not trusted causing SSL handshake failure. Check the certificate chain to determine if it should be trusted or not. If it should be trusted, then update the client trusted CA configuration to trust the CA certificate that signed the peer certificate chain. If you are connecting to a WLS server that is using demo certificates (the default WLS server behavior), and you want this client to trust demo certificates, then specify -Dweblogic.security.TrustKeyStore=DemoTrust on the command line for this client.>
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Debug> <SecuritySSL> <000000> <Validation error = 16>
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Debug> <SecuritySSL> <000000> <Certificate chain is untrusted>
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Debug> <SecuritySSL> <000000> <SSLTrustValidator returns: 16>
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Debug> <SecuritySSL> <000000> <Trust status (16):  CERT_CHAIN_UNTRUSTED>
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Debug> <SecuritySSL> <000000> <NEW ALERT with Severity: FATAL, Type: 42
  java.lang.Exception: New alert stack
       at com.certicom.tls.record.alert.Alert.<init>(Unknown Source)
       at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source)
       at com.certicom.tls.record.handshake.ClientStateReceivedServerHello.handle(Unknown Source)
       at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessage(Unknown Source)
       at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessages(Unknown Source)
       at com.certicom.tls.record.MessageInterpreter.interpretContent(Unknown Source)
       at com.certicom.tls.record.MessageInterpreter.decryptMessage(Unknown Source)
       at com.certicom.tls.record.ReadHandler.processRecord(Unknown Source)
       at com.certicom.tls.record.ReadHandler.readRecord(Unknown Source)
       at com.certicom.tls.record.ReadHandler.readUntilHandshakeComplete(Unknown Source)
       at com.certicom.tls.interfaceimpl.TLSConnectionImpl.completeHandshake(Unknown Source)
       at com.certicom.tls.record.WriteHandler.write(Unknown Source)
       at com.certicom.io.OutputSSLIOStreamWrapper.write(Unknown Source)
       at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:65)
       at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:123)
       at java.io.FilterOutputStream.flush(FilterOutputStream.java:123)
       at weblogic.net.http.HttpURLConnection.writeRequests(HttpURLConnection.java:153)
       at weblogic.net.http.HttpURLConnection.getInputStream(HttpURLConnection.java:367)
       at weblogic.net.http.SOAPHttpsURLConnection.getInputStream(SOAPHttpsURLConnection.java:37)
       at weblogic.net.http.HttpURLConnection.getHeaderField(HttpURLConnection.java:705)
       at java.net.URLConnection.getContentType(URLConnection.java:479)
       at weblogic.webservice.binding.http11.Http11ClientBinding.receive(Http11ClientBinding.java:230)
       at weblogic.webservice.core.handler.ClientHandler.handleResponse(ClientHandler.java:64)
       at weblogic.webservice.core.HandlerChainImpl.handleResponse(HandlerChainImpl.java:238)
       at weblogic.webservice.core.ClientDispatcher.receive(ClientDispatcher.java:246)
       at weblogic.webservice.core.ClientDispatcher.dispatch(ClientDispatcher.java:147)
       at weblogic.webservice.core.DefaultOperation.invoke(DefaultOperation.java:473)
       at weblogic.webservice.core.DefaultOperation.invoke(DefaultOperation.java:459)
       at weblogic.webservice.core.rpc.StubImpl._invoke(StubImpl.java:306)
       at com.visitek.pgi.client.PaymentGatewayPort_Stub.balanceInquery(PaymentGatewayPort_Stub.java:48)
       at com.visitek.test.pg.TestPGWebservice.testWebserviceSSLInvocation(TestPGWebservice.java:70)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:585)
       at junit.framework.TestCase.runTest(TestCase.java:164)
       at junit.framework.TestCase.runBare(TestCase.java:130)
       at junit.framework.TestResult$1.protect(TestResult.java:106)
       at junit.framework.TestResult.runProtected(TestResult.java:124)
       at junit.framework.TestResult.run(TestResult.java:109)
       at junit.framework.TestCase.run(TestCase.java:120)
       at junit.framework.TestSuite.runTest(TestSuite.java:230)
       at junit.framework.TestSuite.run(TestSuite.java:225)
       at org.eclipse.jdt.internal.junit.runner.junit3.JUnit3TestReference.run(JUnit3TestReference.java:130)
       at org.eclipse.jdt.internal.junit.runner.TestExecution.run(TestExecution.java:38)
       at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.runTests(RemoteTestRunner.java:467)
       at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.runTests(RemoteTestRunner.java:683)
       at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.run(RemoteTestRunner.java:390)
       at org.eclipse.jdt.internal.junit.runner.RemoteTestRunner.main(RemoteTestRunner.java:197)
  >
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Debug> <SecuritySSL> <000000> <write ALERT, offset = 0, length = 2>
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Debug> <SecuritySSL> <000000> <close(): 19097823>
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Debug> <SecuritySSL> <000000> <19097823 read(offset=0, length=8192)>
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Debug> <SecuritySSL> <000000> <19097823 read returns -1>
  <!-------------------- RESPONSE TO CLIENT --------------->
  URL           : https://192.168.56.3:7002/ws/PaymentGateway?WSDL
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Debug> <SecuritySSL> <000000> <19097823 read(offset=0, length=8192)>
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Debug> <SecuritySSL> <000000> <19097823 read returns -1>
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Debug> <SecuritySSL> <000000> <19097823 read(offset=0, length=8192)>
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Debug> <SecuritySSL> <000000> <19097823 read returns -1>
  <Apr 16, 2010 8:18:16 PM GMT+07:00> <Info> <WebService> <BEA-220025> <Handler weblogic.webservice.core.handler.ClientHandler threw an exception from its handleResponse method. The exception was:
  javax.xml.rpc.JAXRPCException: java.io.EOFException: Response contained no data.> I'm a total stranger to this HTTPS & SSL thing & I've googled around only to find partial answers. My plan is to use custom identity, but firstly I want to make sure that using the default works.
  Any help would be greatly appreciated.
  Regards,
  Setya

  Why does it throw SSLKeyException: SSL handshake failure? I have printed the contents of DemoIdentity.jks and DemoTrust.jks files.Can you please find out what I need to do for it?
  I added the following code ,but it did not help me to resolve this issue.
  private static void callSSLService() {
  System.setProperty("weblogic.webservice.verbose", "false");
  System.setProperty("ssl.debug", "false");
  // System.setProperty("weblogic.security.SSL.trustedCAKeyStore", "C:/bea/weblogic81/server/lib/DemoIdentity.jks");
  System.setProperty("weblogic.security.SSL.trustedCAKeyStore", "C:/bea/weblogic81/server/lib/DemoTrust.jks");
  System.setProperty("weblogic.security.SSL.ignoreHostnameVerification", "true");
  System.setProperty("weblogic.webservice.client.ssl.strictcertchecking", "false");
  SOAP Fault:javax.xml.rpc.soap.SOAPFaultException:
  Exception during processing: javax.net.ssl.SSLKeyException: [Security:090477]Certificate chain received from servicemngr-ccc.tsl.xxxx.com - 142.xxx.xxx.xx was not trusted causing SSL handshake failure. (see Fault Detail for stacktrace)
  Detail:
  <detail><bea_fault:stacktrace xmlns:bea_fault="http://www.bea.com/servers/wls70/webservice/fault/1.0.0">javax.net.ssl.SSLKeyException: [Security:090477]Certificate chain received from servicemngr- com - 142.xxx.xxx.xx was not trusted causing SSL handshake failure.
       at com.certicom.tls.interfaceimpl.TLSConnectionImpl.fireException(Unknown Source)
       at com.certicom.tls.interfaceimpl.TLSConnectionImpl.fireAlertSent(Unknown Source)
       at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source)
       at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source)
       at com.certicom.tls.record.handshake.ClientStateReceivedServerHello.handle(Unknown Source)
       at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessage(Unknown Source)
       at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessages(Unknown Source)
       at com.certicom.tls.record.MessageInterpreter.interpretContent(Unknown Source)
       at com.certicom.tls.record.MessageInterpreter.decryptMessage(Unknown Source)
       at com.certicom.tls.record.ReadHandler.processRecord(Unknown Source)
       at com.certicom.tls.record.ReadHandler.readRecord(Unknown Source)
       at com.certicom.tls.record.ReadHandler.readUntilHandshakeComplete(Unknown Source)
       at com.certicom.tls.interfaceimpl.TLSConnectionImpl.completeHandshake(Unknown Source)
       at com.certicom.tls.record.WriteHandler.write(Unknown Source)
       at com.certicom.io.OutputSSLIOStreamWrapper.write(Unknown Source)
       at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:66)
       at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:124)
       at java.io.FilterOutputStream.flush(FilterOutputStream.java:123)
       at weblogic.net.http.HttpURLConnection.writeRequests(HttpURLConnection.java:122)
       at weblogic.net.http.HttpURLConnection.getInputStream(HttpURLConnection.java:322)
       at weblogic.net.http.SOAPHttpsURLConnection.getInputStream(SOAPHttpsURLConnection.java:29)
       at weblogic.net.http.HttpURLConnection.getResponseCode(HttpURLConnection.java:832)
       at weblogic.webservice.binding.http11.Http11ClientBinding.receive(Http11ClientBinding.java:238)
       at weblogic.webservice.core.handler.ClientHandler.handleResponse(ClientHandler.java:63)
       at weblogic.webservice.core.HandlerChainImpl.handleResponse(HandlerChainImpl.java:237)
       at weblogic.webservice.core.ClientDispatcher.receive(ClientDispatcher.java:243)
       at weblogic.webservice.core.ClientDispatcher.dispatch(ClientDispatcher.java:144)
       at weblogic.webservice.core.DefaultOperation.invoke(DefaultOperation.java:471)
       at weblogic.webservice.core.DefaultOperation.invoke(DefaultOperation.java:457)
       at weblogic.webservice.core.rpc.StubImpl._invoke(StubImpl.java:303)
  keytool -list -v -keystore DemoIdentity.jks -storepass DemoIdentityKeyStorePassPhrase
  keytool -list -v -keystore DemoTrust.jks -storepass DemoTrustKeyStorePassPhrase
  I executed keytool -list -v -keystore DemoIdentity.jks -storepass DemoIdentityKeyStorePassPhrase, I got the following
  C:\bea\weblogic81\server\lib>keytool -list -v -keystore DemoIdentity.jks -storepass DemoIdentityKeyStorePassPhrase
  Keystore type: jks
  Keystore provider: SUN
  Your keystore contains 1 entry
  Alias name: demoidentity
  Creation date: 21-Jan-2011
  Entry type: keyEntry
  Certificate chain length: 1
  Certificate[1]:
  Owner: CN=L020658, OU=FOR TESTING ONLY, O=MyOrganization, L=MyTown, ST=MyState, C=US
  Issuer: CN=CertGenCAB, OU=FOR TESTING ONLY, O=MyOrganization, L=MyTown, ST=MyState, C=US
  Serial number: -657037958f4825551ebcae3bc2a3349c
  Valid from: Thu Jan 20 09:56:28 PST 2011 until: Wed Jan 21 09:56:28 PST 2026
  Certificate fingerprints:
  MD5: 89:30:08:A6:5F:4F:05:83:D2:1D:B4:B3:EB:B3:CF:F2
  SHA1: 1D:E1:1F:93:30:64:CD:DC:C4:60:78:12:23:55:25:FF:FD:19:6A:2B
  I executed keytool -list -v -keystore DemoTrust.jks -storepass DemoTrustKeyStorePassPhrase, I got the following
  C:\bea\weblogic81\server\lib>keytool -list -v -keystore DemoTrust.jks -storepass DemoTrustKeyStorePassPhrase
  Keystore type: jks
  Keystore provider: SUN
  Your keystore contains 4 entries
  Alias name: certgenca
  Creation date: 22-Mar-2002
  Entry type: trustedCertEntry
  Owner: CN=CACERT, OU=FOR TESTING ONLY, O=MyOrganization, L=MyTown, ST=MyState, C=US
  Issuer: CN=CACERT, OU=FOR TESTING ONLY, O=MyOrganization, L=MyTown, ST=MyState, C=US
  Serial number: 33f10648fcde0deb4199921fd64537f4
  Valid from: Thu Mar 21 12:12:27 PST 2002 until: Tue Mar 22 13:12:27 PDT 2022
  Certificate fingerprints:
  MD5: 8E:AB:55:50:A4:BC:06:F3:FE:C6:A9:72:1F:4F:D3:89
  SHA1: E2:CB:88:9D:C5:09:F9:0A:AA:0D:3C:F6:75:7B:5F:1D:2B:A1:F7:F0
  Alias name: wlsdemocanew2
  Creation date: 24-Jan-2003
  Entry type: trustedCertEntry
  Owner: [email protected], CN=Demo Certificate Authority Constraints, OU=Security, O=BEA WebLogic, L=San Francisco, ST=California,
  C=US
  Issuer: [email protected], CN=Demo Certificate Authority Constraints, OU=Security, O=BEA WebLogic, L=San Francisco, ST=California
  , C=US
  Serial number: 0
  Valid from: Fri Nov 01 12:02:22 PST 2002 until: Mon Oct 16 13:02:22 PDT 2006
  Certificate fingerprints:
  MD5: 5B:10:D5:3C:C8:53:ED:75:43:58:BF:D5:E5:96:1A:CF
  SHA1: 4E:FB:1D:2F:58:EA:D4:0C:FC:2A:86:91:2D:43:4F:C1:79:D0:A6:4E
  Alias name: wlsdemocanew1
  Creation date: 24-Jan-2003
  Entry type: trustedCertEntry
  Owner: [email protected], CN=Demo Certificate Authority Constraints, OU=Security, O=BEA WebLogic, L=San Francisco, ST=California
  , C=US
  Issuer: [email protected], CN=Demo Certificate Authority Constraints, OU=Security, O=BEA WebLogic, L=San Francisco, ST=Californi
  a, C=US
  Serial number: 0
  Valid from: Fri Nov 01 12:02:11 PST 2002 until: Mon Oct 16 13:02:11 PDT 2006
  Certificate fingerprints:
  MD5: A1:17:A1:73:9B:70:21:B9:72:85:4D:83:01:69:C8:37
  SHA1: 84:13:A2:63:D6:74:75:3B:25:15:6F:62:8C:18:79:87:62:5B:9A:0C
  Alias name: wlscertgencab
  Creation date: 24-Jan-2003
  Entry type: trustedCertEntry
  Owner: CN=CertGenCAB, OU=FOR TESTING ONLY, O=MyOrganization, L=MyTown, ST=MyState, C=US
  Issuer: CN=CertGenCAB, OU=FOR TESTING ONLY, O=MyOrganization, L=MyTown, ST=MyState, C=US
  Serial number: 234b5559d1fa0f3ff5c82bdfed032a87
  Valid from: Thu Oct 24 08:54:45 PDT 2002 until: Tue Oct 25 08:54:45 PDT 2022
  Certificate fingerprints:
  MD5: A2:18:4C:E0:1C:AB:82:A7:65:86:86:03:D0:B3:D8:FE
  SHA1: F8:5D:49:A4:12:54:78:C7:BA:42:A7:14:3E:06:F5:1E:A0:D4:C6:59
  *******************************************

• SOAP over HTTPS Scenario.

  Experts,
  I am using PO 7.31 Single Stack.
  I am going to integrate with some Third-Party System ( B2B ) Scenario. As its B2B client want this to integrate this over SSL.
  We are using SOAP Communication channel at Source side.
  We have shared a PI WebService to third Party and told them to send data on this endpoint.
  I have changed following things in webservice( http to https and port no to ssl port no).
  Now Certficate part always confuses me So I have question over certificates/ PubliC/ Private Key :-
  1. Who will provide Certificate and to whom ??
  2. What kind of certificate will be shared accross parties ?? such as public private ?? PGP or X.509 ??
  I have gone through many blogs - but i am still confused.

  Hi Prabhat,
  1. Who will provide Certificate and to whom ??
  --->> Certificates are shared between both parties/systems. So PI needs to provide PI public key to receiver system and receiver system needs to provide there public key.
  2. What kind of certificate will be shared accross parties ?? such as public private ?? PGP or X.509 ??
  -->> The certificate can be X.509.
  Please refer the below blog and sap note 891877
  SSL (HTTPS) Configuration in SAP PI Systems as of release PI 7.10 – Step-by-step procedure
  regards,
  Harish

• HTTP(S) Timeout while invoking WebService over HTTPS.

  Hello,
  I have some stress with my webservice client implementation.
  I do the following (I can post source code if needed):
  - As usual:
  System.setProperty("java.protocol.handler.pkgs","com.sun.net.ssl.internal.www.protocol");
  Security.addProvider(new com.sun.net.ssl.internal.ssl.Provider());
  - Install my TrustManager
  - Install my DefaultHostnameVerifier
  - Register a custom type
  - Make a javax.xml.rpc.Call to access a webservice
  My observations:
  The code works well when using an HTTP URL, just changing the target URL to HTTPS causes the problem.
  The HTTPS web service (on server) works well seeing a HTTPS client using the weblogic SSL implementation, or an AXIS client can easily connect.
  When I use a simple and direct "Open HttpsURLConnection on URL("https://xxx.service?WSDL"); print-out-all-that's-coming-in", it works well. I think my SSL access is made correctly.
  The client does not complain about not-installed SSL things, all certificates are accepted, etc. No problem at this part.
  System.setProperty("javax.net.debug", "all") is set, but i dont see anything of interrest.
  I use the packages contained in 'java_xml_pack-summer-02_01' of SUN (jaxm-1.1_01, jaxp-1.2_01,jaxr-1.0_02 etc and the jsse 1.0.3).
  The server is weblogic 7.
  Calling
  call.setTargetEndpointAddress("http://arakis:7001/traces_ws/searchCertificate");
  works well while
  call.setTargetEndpointAddress("https://arakis:7002/traces_ws/searchCertificate");
  causes (after 2 minutes):
  HTTP transport error: java.net.SocketException: Unexpected end of file from server
  at com.sun.xml.rpc.client.http.HttpClientTransport.invoke(HttpClientTransport.java:189)
  at com.sun.xml.rpc.client.StreamingSender._send(StreamingSender.java:73)
  at com.sun.xml.rpc.client.dii.CallInvokerImpl.doInvoke(CallInvokerImpl.java:54)
  at com.sun.xml.rpc.client.dii.BasicCall.invoke(BasicCall.java:279)
  at SSLSOAPClient.main(SSLSOAPClient.java:264)
  CAUSE:
  java.net.SocketException: Unexpected end of file from server
  at sun.net.www.http.HttpClient.parseHTTPHeader(HttpClient.java:699)
  at sun.net.www.http.HttpClient.parseHTTP(HttpClient.java:604)
  at sun.net.www.http.HttpClient.parseHTTPHeader(HttpClient.java:697)
  at sun.net.www.http.HttpClient.parseHTTP(HttpClient.java:604)
  at com.sun.xml.rpc.client.http.handler.HttpURLConnection.getInputStream(HttpURLConnection.java:543)
  at com.sun.xml.rpc.client.http.handler.HttpURLConnection.getResponseCode(HttpURLConnection.java:920)
  at com.sun.xml.rpc.client.http.HttpClientTransport.invoke(HttpClientTransport.java:123)
  at com.sun.xml.rpc.client.StreamingSender._send(StreamingSender.java:73)
  at com.sun.xml.rpc.client.dii.CallInvokerImpl.doInvoke(CallInvokerImpl.java:54)
  at com.sun.xml.rpc.client.dii.BasicCall.invoke(BasicCall.java:279)
  at SSLSOAPClient.main(SSLSOAPClient.java:264)
  Exception in thread "main"
  What I note is that the call is using a HttpURLConnection object and NOT a HttpsURLConnection object (so problems are 'normal' i guess), but I dont have any clue what I have to do to instruct the client to use HTTPS other than specifying HTTPS in the target.
  Hope someone has an idea
  Tasha

  Hello,
  The default timeout in Axis is 60 seconds, you can change it by your client code, and you can still keep the session to call many times
  ((org.apache.axis.client.Stub)service).setMaintainSession(true); //keep session
  ((org.apache.axis.client.Stub)service).setTimeout(60*1000*30); //half hour
  Lixin

• Asynchronous SOAP over JMS

  Is it possible to expose an operation type of "Process Notification" using SOAP over JMS? When you select the Process Web Service option on the process it only allows you to define SOAP over HTTP web services. It's possible to invoke one-way SOAP over JMS web services but I cannot find a way of exposing a BPM process (or process notification) as a one-way SOAP over JMS web service.
  Thanks in advance

  There is not a way to use JMS instead of HTTP to expose the process notifications. You would need to create a JMS listener, parse the soap message, and then notify the instance (using correlations probably) from within the global.
  Creating JMS listeners is not hard to do. Let me know if you need help with that.
  HTH,
  Mark

• SOAP vs HTTP

  Hello,
  I'm new to java and I'm planning to build a client/server application, and I wanted to know what were the differences between using SOAP over HTTP to communicate between server and client, and also what are the benefits of one methodology over the other?

  You might want to take a look at the information on
  http://www.pushtotest.com/ptt
  Frank Cohen builds software to test distributed systems, and has lots of information that sounds like what you want. If you want dead tree, there's a book called
  Java Web Services
  SAMS publishing
  Various authors (Frank is one)
  They discuss in depth with examples, sample apps, advice on system set up.

• XML over HTTP using BPEL (not using SOAP)... is this possible?

  Hi there.
  We're trying to expose a BPEL process which will be exclusively triggered from a HTTP POST. The Client Partner Link in the BPEL process models Oracle's Transparent PunchOut standard. This standard is strict XML-over-HTTP, SOAP is not involved.
  However, I am getting issues when I POST the XML to BPEL. It is telling me that it requires a SOAPAction in the header. Again, the design dictates that this is raw XML over HTTP, so we are not to use any SOAP specific header values nor any kind of SOAP wrapper.
  I deployed the sample 'HTTPPostService' process which was delivered with BPEL. I am seeing the same error when I try to POST XML to this process as well. I get a response (in a SOAP wrapper) saying that it wants a SOAPAction in the header. The WSDL used to create this sample process clearly does not bind to SOAP, (there are no mentions of the SOAPAction in the operation, etc) so I do not understand.
  So, my question is: Is is possible to POST raw XML to a BPEL process? Or does BPEL require all processes to follow the SOAP 'protocol' ?
  Thanks for any help.
  Message was edited by:
  [email protected]

  I am also trying to do the same stuff. If i deploy the sample application HttpGetService, will i be able to send the request from browser the way we send typical http get request?
  here is the url which i want to use to invoke Http get BPEL
  http://cybage1:9700/httpbinding/default/HTTPGetService?ssn=10&id=20
  but i am getting following exception
  500 Internal Server Error
  java.lang.IndexOutOfBoundsException: Index: 3, Size: 3
       at java.util.ArrayList.RangeCheck(ArrayList.java:507)
       at java.util.ArrayList.get(ArrayList.java:324)
       at com.collaxa.cube.ws.http.HttpBindingServlet.call(HttpBindingServlet.java:113)
       at com.collaxa.cube.ws.http.HttpBindingServlet.doGet(HttpBindingServlet.java:97)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:740)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
       at com.evermind[Oracle Application Server Containers for J2EE 10g (10.1.2.0.0)].server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:810)
       at com.evermind[Oracle Application Server Containers for J2EE 10g (10.1.2.0.0)].server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:322)
       at com.evermind[Oracle Application Server Containers for J2EE 10g (10.1.2.0.0)].server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:798)
       at com.evermind[Oracle Application Server Containers for J2EE 10g (10.1.2.0.0)].server.http.HttpRequestHandler.run(HttpRequestHandler.java:278)
       at com.evermind[Oracle Application Server Containers for J2EE 10g (10.1.2.0.0)].server.http.HttpRequestHandler.run(HttpRequestHandler.java:120)
       at com.evermind[Oracle Application Server Containers for J2EE 10g (10.1.2.0.0)].util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:186)
       at java.lang.Thread.run(Thread.java:534)

• Javax.xml.ws.soap.SOAPFaultException: InvalidSecurity : error in processing the WS-Security security header error while invoking FinancialUtilService using HTTP proxy client

  I am trying to invoke FinancialUtilService using HTTP proxy client. I am getting below error while i am trying to invoke this service. Using FusionServiceTester i am able to invoke service and upload file to UCM. Using oracle.ucm.fa_client_11.1.1.jar also i am able to upload file to UCM without any issue. But using HTTP proxy client i am facing below error. Can anyone please help me. PFA code i am using to invoke this service.
  javax.xml.ws.soap.SOAPFaultException: InvalidSecurity : error in processing the WS-Security security header
    at com.sun.xml.ws.fault.SOAP11Fault.getProtocolException(SOAP11Fault.java:197)
    at com.sun.xml.ws.fault.SOAPFaultBuilder.createException(SOAPFaultBuilder.java:122)
    at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:125)
    at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:95)
    at com.sun.xml.ws.client.sei.SEIStub.invoke(SEIStub.java:135)
    at $Proxy43.uploadFileToUcm(Unknown Source)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at weblogic.wsee.jaxws.spi.ClientInstance$ClientInstanceInvocationHandler.invoke(ClientInstance.java:363)
    at $Proxy44.uploadFileToUcm(Unknown Source)
    at com.oracle.xmlns.apps.financials.commonmodules.shared.financialutilservice.FinancialUtilServiceSoapHttpPortClient.invokeUpload(FinancialUtilServiceSoapHttpPortClient.java:299)
    at com.oracle.xmlns.apps.financials.commonmodules.shared.financialutilservice.FinancialUtilServiceSoapHttpPortClient.main(FinancialUtilServiceSoapHttpPortClient.java:273)
  Process exited with exit code 0.
  Message was edited by: Oliver Steinmeier
  Removed attachment

  Hi Jani,
  Thanks for your reply.
  I am new to webservices and we are trying to do a POC on invoking FinancialUtilService using HTTP proxy client. I am following steps mentioned in attached pdf section "Invoking FinancialUtil Service using Web Service Proxy Client". I have imported certificate using below command. 
       keytool -import -trustcacerts -file D:\Retek\Certificate.cer -alias client -keystore D:\Retek\default-keystore.jks -storepass welcome1
  Invoking
      SecurityPolicyFeature[] securityFeature =
      new SecurityPolicyFeature[] { new
      SecurityPolicyFeature("oracle/wss11_saml_token_with_message_protection_client_policy")};
      financialUtilService_Service = new FinancialUtilService_Service();
      FinancialUtilService financialUtilService= financialUtilService_Service.getFinancialUtilServiceSoapHttpPort(securityFeature);
      // Get the request context to set the outgoing addressing properties
      WSBindingProvider wsbp = (WSBindingProvider)financialUtilService;
      WSEndpointReference replyTo =
        new WSEndpointReference("https://efops-rel91-patchtest-external-fin.us.oracle.com/finFunShared/FinancialUtilService", WS_ADDR_VER);
      String uuid = "uuid:" + UUID.randomUUID();
      wsbp.setOutboundHeaders( new StringHeader(WS_ADDR_VER.messageIDTag, uuid), replyTo.createHeader(WS_ADDR_VER.replyToTag));
      wsbp.getRequestContext().put(WSBindingProvider.USERNAME_PROPERTY, "fin_user1");
      wsbp.getRequestContext().put(WSBindingProvider.PASSWORD_PROPERTY,  "Welcome1");
      wsbp.getRequestContext().put(ClientConstants.WSSEC_RECIPIENT_KEY_ALIAS,"service");
      wsbp.getRequestContext().put(ClientConstants.WSSEC_KEYSTORE_LOCATION, "D:/Retek/default-keystore.jks");
      wsbp.getRequestContext().put(ClientConstants.WSSEC_KEYSTORE_PASSWORD, "welcome1" );
      wsbp.getRequestContext().put(ClientConstants.WSSEC_KEYSTORE_TYPE, "JKS" );
      wsbp.getRequestContext().put(ClientConstants.WSSEC_SIG_KEY_ALIAS, "client" );
      wsbp.getRequestContext().put(ClientConstants.WSSEC_SIG_KEY_PASSWORD, "password" );
      wsbp.getRequestContext().put(ClientConstants.WSSEC_ENC_KEY_ALIAS, "client" );
      wsbp.getRequestContext().put(ClientConstants.WSSEC_ENC_KEY_PASSWORD, "password" );
  SEVERE: WSM-00057 The certificate, client, is not retrieved.
  SEVERE: WSM-00137 The encryption certificate, client, is not retrieved due to exception oracle.wsm.security.SecurityException: WSM-00057 : The certificate, client, is not retrieved..
  SEVERE: WSM-00161 Client encryption public certificate is not configured for Async web service client
  SEVERE: WSM-00005 Error in sending the request.
  SEVERE: WSM-07607 Failure in execution of assertion {http://schemas.oracle.com/ws/2006/01/securitypolicy}wss11-saml-with-certificates executor class oracle.wsm.security.policy.scenario.executor.Wss11SamlWithCertsScenarioExecutor.
  SEVERE: WSM-07602 Failure in WS-Policy Execution due to exception.
  SEVERE: WSM-07501 Failure in Oracle WSM Agent processRequest, category=security, function=agent.function.client, application=null, composite=null, modelObj=FinancialUtilService, policy=oracle/wss11_saml_token_with_message_protection_client_policy, policyVersion=null, assertionName={http://schemas.oracle.com/ws/2006/01/securitypolicy}wss11-saml-with-certificates.
  oracle.wsm.common.sdk.WSMException: WSM-00161 : Client encryption public certificate is not configured for Async web service client
    at oracle.wsm.security.policy.scenario.executor.Wss11SamlWithCertsScenarioExecutor.sendRequest(Wss11SamlWithCertsScenarioExecutor.java:173)
    at oracle.wsm.security.policy.scenario.executor.SecurityScenarioExecutor.execute(SecurityScenarioExecutor.java:545)
    at oracle.wsm.policyengine.impl.runtime.AssertionExecutor.execute(AssertionExecutor.java:41)
    at oracle.wsm.policyengine.impl.runtime.WSPolicyRuntimeExecutor.executeSimpleAssertion(WSPolicyRuntimeExecutor.java:608)
    at oracle.wsm.policyengine.impl.runtime.WSPolicyRuntimeExecutor.executeAndAssertion(WSPolicyRuntimeExecutor.java:335)
    at oracle.wsm.policyengine.impl.runtime.WSPolicyRuntimeExecutor.execute(WSPolicyRuntimeExecutor.java:282)
    at oracle.wsm.policyengine.impl.PolicyExecutionEngine.execute(PolicyExecutionEngine.java:102)
    at oracle.wsm.agent.WSMAgent.processCommon(WSMAgent.java:915)
    at oracle.wsm.agent.WSMAgent.processRequest(WSMAgent.java:436)
    at oracle.wsm.agent.handler.WSMEngineInvoker.handleRequest(WSMEngineInvoker.java:393)
    at oracle.wsm.agent.handler.wls.WSMAgentHook.handleRequest(WSMAgentHook.java:239)
    at weblogic.wsee.jaxws.framework.jaxrpc.TubeFactory$JAXRPCTube.processRequest(TubeFactory.java:220)
    at weblogic.wsee.jaxws.tubeline.FlowControlTube.processRequest(FlowControlTube.java:98)
    at com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:604)
    at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:563)
    at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:548)
    at com.sun.xml.ws.api.pipe.Fiber.runSync(Fiber.java:445)
    at com.sun.xml.ws.client.Stub.process(Stub.java:259)
    at com.sun.xml.ws.client.sei.SEIStub.doProcess(SEIStub.java:152)
    at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:115)
    at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:95)
    at com.sun.xml.ws.client.sei.SEIStub.invoke(SEIStub.java:135)
    at $Proxy43.uploadFileToUcm(Unknown Source)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at weblogic.wsee.jaxws.spi.ClientInstance$ClientInstanceInvocationHandler.invoke(ClientInstance.java:363)
    at $Proxy44.uploadFileToUcm(Unknown Source)
    at com.oracle.xmlns.apps.financials.commonmodules.shared.financialutilservice.FinancialUtilServiceSoapHttpPortClient.invokeUpload(FinancialUtilServiceSoapHttpPortClient.java:111)
    at com.oracle.xmlns.apps.financials.commonmodules.shared.financialutilservice.FinancialUtilServiceSoapHttpPortClient.main(FinancialUtilServiceSoapHttpPortClient.java:86)
  Caused by: oracle.wsm.security.SecurityException: WSM-00161 : Client encryption public certificate is not configured for Async web service client
    at oracle.wsm.security.policy.scenario.processor.Wss11X509TokenProcessor.insertClientEncCertToWSAddressingHeader(Wss11X509TokenProcessor.java:979)
    at oracle.wsm.security.policy.scenario.processor.Wss11X509TokenProcessor.build(Wss11X509TokenProcessor.java:206)
    at oracle.wsm.security.policy.scenario.executor.Wss11SamlWithCertsScenarioExecutor.sendRequest(Wss11SamlWithCertsScenarioExecutor.java:164)
    ... 30 more
  Caused by: oracle.wsm.security.SecurityException: WSM-00057 : The certificate, client, is not retrieved.
    at oracle.wsm.security.jps.WsmKeyStore.getJavaCertificate(WsmKeyStore.java:534)
    at oracle.wsm.security.jps.WsmKeyStore.getCryptCert(WsmKeyStore.java:570)
    at oracle.wsm.security.policy.scenario.processor.Wss11X509TokenProcessor.insertClientEncCertToWSAddressingHeader(Wss11X509TokenProcessor.java:977)
    ... 32 more
  SEVERE: WSMAgentHook: An Exception is thrown: WSM-00161 : Client encryption public certificate is not configured for Async web service client
  File upload failed
  javax.xml.ws.WebServiceException: javax.xml.rpc.JAXRPCException: oracle.wsm.common.sdk.WSMException: WSM-00161 : Client encryption public certificate is not configured for Async web service client
    at weblogic.wsee.jaxws.framework.jaxrpc.TubeFactory$JAXRPCTube.processRequest(TubeFactory.java:231)
    at weblogic.wsee.jaxws.tubeline.FlowControlTube.processRequest(FlowControlTube.java:98)
    at com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:604)
    at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:563)
    at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:548)
    at com.sun.xml.ws.api.pipe.Fiber.runSync(Fiber.java:445)
    at com.sun.xml.ws.client.Stub.process(Stub.java:259)
    at com.sun.xml.ws.client.sei.SEIStub.doProcess(SEIStub.java:152)
    at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:115)
    at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:95)
    at com.sun.xml.ws.client.sei.SEIStub.invoke(SEIStub.java:135)
    at $Proxy43.uploadFileToUcm(Unknown Source)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at weblogic.wsee.jaxws.spi.ClientInstance$ClientInstanceInvocationHandler.invoke(ClientInstance.java:363)
    at $Proxy44.uploadFileToUcm(Unknown Source)
    at com.oracle.xmlns.apps.financials.commonmodules.shared.financialutilservice.FinancialUtilServiceSoapHttpPortClient.invokeUpload(FinancialUtilServiceSoapHttpPortClient.java:111)
    at com.oracle.xmlns.apps.financials.commonmodules.shared.financialutilservice.FinancialUtilServiceSoapHttpPortClient.main(FinancialUtilServiceSoapHttpPortClient.java:86)
  Caused by: javax.xml.rpc.JAXRPCException: oracle.wsm.common.sdk.WSMException: WSM-00161 : Client encryption public certificate is not configured for Async web service client
    at oracle.wsm.agent.handler.wls.WSMAgentHook.handleException(WSMAgentHook.java:395)
    at oracle.wsm.agent.handler.wls.WSMAgentHook.handleRequest(WSMAgentHook.java:248)
    at weblogic.wsee.jaxws.framework.jaxrpc.TubeFactory$JAXRPCTube.processRequest(TubeFactory.java:220)
    ... 19 more