Modify OSB Proxy "HTTPS required" setting through customization file

Similar Messages

• Modify the contents of xquery resource using customization file

  I have a xquery resource that stores constants that are environment specific.
  Is there a way to use the 'customization file' feature in OSB to replace the contents of the file instead of having separate xquery resources for each environment ?

  You cannot do this using the customization feature..

• Addning new properties in customization file of OSB

  Hi,
  We have option to find and replace few properties of proxy and business services in OSB through customization files.
  Our requirement is to have few additional properties like client certs, https enabling which are not available when a customization file is created OOTB.
  Any pointers on customizing customization file will be more helpful.
  Thanks,
  Sowmya

  Hi,
  the structure is not very interesting because I'm flexible :-)
  But for excample like this:
  <MyData>
  <val1>abc</val1>
  <val2>def</val2>
  </MyData>
  <MyData>
  <val1>uvw</val1>
  <val2>xyz</val2>
  </MyData>
  To write such a file is not really the problem. But I don't want to parse the XML structure with String command.
  Thanks,
  Armin

• Defining polling interval on customization file

  Hello everyone,
  I have a requirement: define a polling interval (in this specific case for a email polling proxy, however it would be useful for a file polling proxy as well) in a customization file.
  It seems a simple task, however i could not find a way to perform...
  I've searched here in the forums and have found nothing (if someone finds a thread about this please provide the link).
  I've googled a bit as well, and the result was the same...
  In this blog post http://wesselj.blogspot.pt/2012/01/oracle-service-bus-good-bad-and-ugly.html we can read:
  "+(...) Customization files. Inflexible, verbous and complex to maintain. Not everything can be customized with the customization files, some like passwords are reasonable, *but things like polling interval for file integration would be nice to be able to change between environments*.+"
  And in this document http://docs.oracle.com/cd/E11036_01/alsb30/pdf/consolehelp.pdf , in the customization topic (page 29-1), there is nothing mentioning polling interval...
  The environment installed is OSB 11gR1.
  Any suggestions on how to perform this task?

  Any ideas?

• Account in the Customization File

  Hi,
  I'm working on a project in which we need to configure an Account when the Customization File is executed. But whenever I try to generate a Customization File , having selected the Accounts as one of the elements to be in it, it ignores them an generates a Customization File without any Account configuration. Would you know if there is an automatic way to set the configurations of an Account?
  I'm using AquaLogic Service Bus - BEA Workspace Studio.
  Thanks in advance
  Edited by: user151564158 on Mar 17, 2010 6:19 AM

  You can't have Account customized through customization file. This is simply not supported. Try searching forum. It has already been discussed here.

• Osb proxy service on https,help?

  The Client use https protocol to send message to OSB'S proxy service,so how to configue the proxy service?
  At present:
  service type:Messaging Service
  request message type:xml
  reponse message type :none
  transport:http
  https required:unchenk
  it works on http.
  Anybody can tell me the way to configue a proxy service to receive the https message ?

  As you are using the xml message type for request message you can easily get the value through the message that you have defined.
  Just put a report or log to see whether the incoming message is holding the value that ur sending.
  Then continue from there as per your usecase.
  Sorry missed one info, then you have to select the method that you are going to use in https. You can test this from osb test console by selecting the method as per your usecase.
  Thanks,
  Vijay
  Edited by: veejai24 on 14-May-2012 03:43

• How to resolve HTTP/1.1 407 Proxy Authorization Required issue

  Dear Sir,
  I am getting following error when connecting from SQL developer to oracle cloud. I have tested both on SQL developer 3.2.20.09.87 and sqldeveloper-4.0.2.15.21. but getting the same error as below.
  request your in getting the resolution for the same. thanks in advance
  HTTP/1.1 407 Proxy Authorization Required:
  oracle.dbtools.raptor.cloud.auth.AuthenticationFailedException: HTTP/1.1 407 Proxy Authorization Required
    at oracle.dbtools.raptor.cloud.auth.basic.BasicAuthenticationEngine.doPost(BasicAuthenticationEngine.java:162)
    at oracle.dbtools.raptor.cloud.auth.basic.BasicAuthenticationEngine.authenticate(BasicAuthenticationEngine.java:63)
    at oracle.dbtools.raptor.cloud.auth.basic.GUIBasicAuthenticationEngine.authenticate(GUIBasicAuthenticationEngine.java:26)
    at oracle.dbtools.raptor.cloud.connection.ConnectionCreator.createConnection(ConnectionCreator.java:24)
    at oracle.dbtools.raptor.cloud.connection.CConnections$C.getConnection(CConnections.java:39)
    at oracle.dbtools.raptor.cloud.connection.CConnections.getConnection(CConnections.java:176)
    at oracle.dbtools.raptor.cloud.navigator.CloudConnection.openConnectionImpl(CloudConnection.java:127)
    at oracle.dbtools.raptor.cloud.navigator.CloudConnection.getConnection(CloudConnection.java:89)
    at oracle.dbtools.raptor.cloud.navigator.ConnectionTreeNode$LoadTask.doWork(ConnectionTreeNode.java:74)
    at oracle.dbtools.raptor.cloud.navigator.ConnectionTreeNode$LoadTask.doWork(ConnectionTreeNode.java:38)
    at oracle.dbtools.raptor.backgroundTask.RaptorTask.call(RaptorTask.java:193)
    at java.util.concurrent.FutureTask.run(FutureTask.java:262)
    at oracle.dbtools.raptor.backgroundTask.RaptorTaskManager$RaptorFutureTask.run(RaptorTaskManager.java:554)
    at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:471)
    at java.util.concurrent.FutureTask.run(FutureTask.java:262)
    at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
    at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
    at java.lang.Thread.run(Thread.java:745)
  Caused by: java.io.IOException: HTTP/1.1 407 Proxy Authorization Required
    at oracle.dbtools.raptor.cloud.auth.basic.BasicAuthenticationHandler.handleError(BasicAuthenticationHandler.java:250)
    at oracle.dbtools.raptor.cloud.auth.basic.BasicAuthenticationHandler.handleError(BasicAuthenticationHandler.java:24)
    at oracle.dbtools.raptor.cloud.connection.CloudHander.handleResponse(CloudHander.java:38)
    at org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:945)
    at org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:919)
    at org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:910)
    at oracle.dbtools.raptor.cloud.connection.DefaultClient.executeRequest(DefaultClient.java:96)
    at oracle.dbtools.raptor.cloud.auth.basic.BasicAuthenticationEngine.doPost(BasicAuthenticationEngine.java:153)
    ... 17 more
  Regards,
  Deenanath
  Message was edited by: 2803956
  Hi Brian,
  I did settings for Database and SFTP only. The advanced setting on "new cloud connection" screen fills automatically. when I tried to remove the advanced setting such as host name, port, server path and service name. then it is asking for hostname.
  After doing all the steps i am facing the same issue of " HTTP/1.1 407 Proxy Authorization Required".
  Could you please help me to resolve the issue?
  Thanks for your help and support.

  Did you set up your HTTP Proxies inside of the settings in SQL Developer? Does the particular database you are attempting to access, does the proxy server need authentication? Again, check the http proxy options in sql developer.
  https://docs.oracle.com/cd/E11882_01/doc.112/e12152/intro.htm#CIHFCGCD

• HTTP/1.1 407 Proxy Authentication Required ( Forefront TMG requires authorization to fulfill the request. Access to the Web Proxy filter is denied. )

  17:06:13 Synchronizer Version 14.0.6123
  17:06:13 Synchronizing Mailbox '[email protected]'
  17:06:13 Synchronizing Hierarchy
  17:06:13   4 folder(s) added to online store
  17:06:13   1 folder(s) updated in online store
  17:06:13 Synchronizing local changes in folder 'Inbox'
  17:06:13 Error synchronizing folder
  17:06:13 [80041004-0-0-430]
  17:06:13 Error with Send/Receive.
  17:06:13 There was an error synchronizing your folder hierarchy. Error : 80041004.
  17:06:13 Synchronizing server changes in folder 'Calendar'
  17:06:13 Synchronizing server changes in folder 'Contacts'
  17:06:13 
  17:06:13 
  *Request*       
  17:06:13 17:06:13:0590
  17:06:13 POST
  17:06:13  http://
  17:06:13 contacts.msn.com
  17:06:13 /ABService/ABService.asmx
  17:06:13 
  17:06:13 <ABFindAll xmlns="http://www.msn.com/webservices/AddressBook"> <abId>00000000-0000-0000-0000-000000000000</abId><abView>Full</abView><deltasOnly>false</deltasOnly></ABFindAll>
  17:06:13 
  *Response*  
  17:06:13 17:06:13:0870
  17:06:13 HTTP/1.1 407 Proxy Authentication Required ( Forefront TMG requires authorization to fulfill the request. Access to the Web Proxy filter is denied.  )
  Via: 1.1 TMG
  Proxy-Authenticate: Negotiate
  Proxy-Authenticate: Kerberos
  Proxy-Authenticate: NTLM
  Connection: close
  Proxy-Connection: close
  Pragma: no-cache
  Cache-Control: no-cache
  Content-Type: text/html
  Content-Length: 707
  17:06:13 
  17:06:13 
  17:06:13 
  17:06:13 Error with Send/Receive.
  17:06:13 There was an error synchronizing a contacts folder. Error : 80004005.
  17:06:13 Synchronizing server changes in folder 'Drafts'
  17:06:13 Synchronizing local changes in folder 'Inbox'
  17:06:13 Error synchronizing folder
  17:06:13 [80041004-0-0-430]
  17:06:13 Synchronizing server changes in folder 'Sent Items'
  17:06:13 Synchronizing server changes in folder 'Deleted Items'
  17:06:13 Synchronizing server changes in folder 'Junk E-mail'
  17:06:13 Done
  17:06:13 
  17:06:13 
  *Request*       
  17:06:13 17:06:13:0870
  17:06:13 POST
  17:06:13  http://
  17:06:13 mail.services.live.com
  17:06:13 /DeltaSync_v2.0.0/Settings.aspx
  17:06:13 
  17:06:13 <?xml version="1.0" encoding="utf-8"?><Settings xmlns="HMSETTINGS:"><ServiceSettings><SafetySchemaVersion>1</SafetySchemaVersion><SafetyLevelRules><GetVersion/></SafetyLevelRules><SafetyActions><GetVersion/></SafetyActions><Properties><Get/></Properties></ServiceSettings><AccountSettings><Get><Options/><Properties/></Get></AccountSettings></Settings>
  17:06:13 
  *Response*  
  17:06:13 17:06:13:0870
  17:06:13 HTTP/1.1 407 Proxy Authentication Required ( Forefront TMG requires authorization to fulfill the request. Access to the Web Proxy filter is denied.  )
  Via: 1.1 TMG
  Proxy-Authenticate: Negotiate
  Proxy-Authenticate: Kerberos
  Proxy-Authenticate: NTLM
  Connection: close
  Proxy-Connection: close
  Pragma: no-cache
  Cache-Control: no-cache
  Content-Type: text/html
  Content-Length: 707
  17:06:13 
  17:06:13 

  Hi,
  According to the log, it seems that TMG firewall denied the request and replied with an HTTP 407 response, indicating that proxy authentication was required. This was done because the Forefront TMG firewall did not have any access rules which would allow
  the anonymous request. Please check if you have configured related access rules.
  When did you recieve this log? Is there anyting wrong? Which authentication method you have used, Kerberos, NTLM or other? 
  It seems that each time a web proxy client requests a resource through a Forefront TMG firewall that requires NTLM authentication the client is actually denied twice during the transaction before being successfully authenticated and allowed access. When
  the Forefront TMG firewall is configured to use Kerberos there is only a single denied request and HTTP 407 response and then contact a domain controller and obtain a Kerberos ticket to present to the TMG firewall to gain access to the resource.
  If you configured the TMG clients with a certain proxy name, please make sure you typed the TMG's domain computer name only (not IP address nor alias).
  Best regards,
  Susie

• Installation of Firefox caused FiddlerRoot to be installed and I cannot access any https sites now through ANY borwser. Changes my proxy consistently.

  FiddlerRoot not only does not allow https certificates, but also resets my proxy after I set it back. This is consistent and i have worked through all the know "solutions". This is a ridiculous piece of code and has severely limited my internet capabilities.

  hello, no genuine firefox download from mozilla.org contains fiddlerroot - you might have downloaded adware from a rogue site.
  please go into the system control panel and uninstall programs like BrowserSafeguard, BrowserSafe, SafeGuard or other software that sounds suspicious and didn't get installed by you intentionally.
  <br>_{reference: https://support.mozilla.org/en-US/questions/982532#answer-520145}
  afterwards, run a full scan of your system with different security tools like the [http://www.malwarebytes.org/products/malwarebytes_free free version of malwarebytes] & [http://www.bleepingcomputer.com/download/adwcleaner/ adwcleaner].
  [[Troubleshoot Firefox issues caused by malware]]

• HTTP/1.1 407 Proxy Authentication Required for cloud connection

  I am using Jdeveloper version 11.1.1.7.1 for ADF deployment on cloud service(Java and DB services).As instructed ,I have followed all the steps and in jdeveloper .when I tried to Authenticate the created connection with username and password, i am getting HTTP/1.1 407 Proxy Authentication Required .I am clueless how to solve this,Followed all the blogs but no luck.Please help on this,

  Presumably you are behind a FW, does your proxy require authentication if so did you set it with "Tools > Preferences > Web Browser and Proxy > Proxy Server Requires Authentication". Also what is the version of your JCS SDK ? You can check it by:
  java -jar javacloud.jar -version
  It should be something like 15.1.2.0 or later ..
  Jani Rautiainen
  Fusion Applications Developer Relations
  https://blogs.oracle.com/fadevrel/

• OSB Proxy service HTTP kerberos authentication

  Is it possible to use kerberos authentification in OSB Proxy service?
  I need it in following scenarios.
  First scenario. We have Sharepoint Portal with Windows SSO. Our Sharepoint developers can invoke webservice on OSB (proxy service) with transfering of kerberos ticket (they talk about process named impersonation). In OSB proxy service I want to know credentials which are passed in kerberos ticket. How to do it? My Weblogic and OSB Consoles already have kerberos auth.
  Second scenario. How can I pass kerberos ticket from proxy service to business service without knowing info in this ticket. Like passthrought for basic auth.
  PS I had read info here: http://download.oracle.com/docs/cd/E13159_01/osb/docs10gr3/security/security_faq.html and paragraph about OSB SSO looks bad for this task...

  For weblogic console i had done several actions for enabling of kerberos auth... some of them are:
  - NegotiateIdentityAsserter was added to realm's providers,
  - web.xml of consle was configured in section ...<login-config><auth-method>CLIENT-CERT, FORM</auth-method>...
  etc...
  What actions i need to do for proxy service?
  PS Manoj sorry... wait... i missed your link before have not read info yet :) may be it will help...
  Edited by: Andrey L. on 17.03.2010 2:25

• Consume JMS Unit-Of-Work message through OSB proxy service

  Hi,
  Anyone know how to consume a JMS Unit-Of-Work (UOW) message using an OSB Proxy Service of JMS type?
  I can submit a unit-of-work JMS message (which consists of multiple constituent messages) using an OSB proxy & business service combination and setting the UOW transport headers appropriately. I can also separately produce and consume Java objects via a JMS queue where the consumption is done via OSB proxy (of java request message type), but these aren't UOW messages.
  Apparently as soon as it is a UOW message then the message consumed is an ObjectMessage ArrayList and one has to use the "Java" request message type for the JMS consumer proxy, but I'm unsure of how to create the concurrent client jar to use it in the same proxy service's JMS transport configuration in order to output the ObjectMessage ArrayList (UOW message). 
  Ideally I'd like to consume a single UOW XML message via an OSB JMS proxy service.
  Any pointers would be appreciated.
  R

  Finally got this working!!
  For posterity: Needed to insert Java Object JMS messages on the OSB JMS producer (Business Service) side with correct UOW jms transport header set in route node. Then consume the Unit-Of-Work message on the other side via jms proxy service with "java" request message type, with appropriate jar containing the Object class as the "Client jar" in the JMS Transport configuration. In the same JMS consumer proxy I had to do a java callout, passing the contents of $body, using java.util.ArrayList and javax.jms.ObjectMessage, as input into a method (.. decodeJavaMessage(ArrayList<ObjectMessage> ...)). In this java callout class you can get to each individual ObjectMessage via typecasting the get() method on the Arraylist to (ObjectMessage) and then just typecast the getObject() on this Objectmessage into your original Java Class (same as what you inserted onto queue originally).
  Hope this saves someone some time in future!

• OSB Customization files 2 set Retry Application Errors and Timeout props

  I know it's possible to set Endpoint URI, Retry Count and Retry Iteration Interval properties using customization files, but what about other properties? I am particularly interested in setting Retry Application Errors and Timeout for a HTTP business services. If it's not possible to do with customization files is there another way of setting them without having to go though each service in the console?
  Edited by: user1019490 on Sep 23, 2010 2:45 AM

  Yes, I guess this can be done as there is provision in ALSBCustomizationFile.xml. Below is the snippet from ALSBCustomizationFile.xml
  <cus:envValueAssignments>
  <xt:envValueType>Service URI Table</xt:envValueType>
  <xt:location xsi:nil="true"/>
  <xt:owner>
  <xt:type>BusinessService</xt:type>
  <xt:path>TestProject/BusinessService/TestBS</xt:path>
  </xt:owner>
  <xt:value>
  <tableElement xmlns="http://www.bea.com/wli/sb/transports">
  <URI>http://www.test.com/testService.asmx</URI>
  <weight>0</weight>
  </tableElement>
  </xt:value>
  </cus:envValueAssignments>
  <cus:envValueAssignments>
  <xt:envValueType>Service Retry Count</xt:envValueType>
  <xt:location xsi:nil="true"/>
  <xt:owner>
  <xt:type>BusinessService</xt:type>
  <xt:path>TestProject/BusinessService/TestBS</xt:path>
  </xt:owner>
  <xt:value xsi:type="xs:string" xmlns:xs="http://www.w3.org/2001/XMLSchema">0</xt:value>
  </cus:envValueAssignments>
  <cus:envValueAssignments>
  <xt:envValueType>Service Retry Iteration Interval</xt:envValueType>
  <xt:location xsi:nil="true"/>
  <xt:owner>
  <xt:type>BusinessService</xt:type>
  <xt:path>TestProject/BusinessService/TestBS</xt:path>
  </xt:owner>
  <xt:value xsi:type="xs:string" xmlns:xs="http://www.w3.org/2001/XMLSchema">0</xt:value>
  </cus:envValueAssignments>
  Regards,
  Karthik

• Error while calling secured OSB proxy from BPEL

  Hi,
  I have a OSB Proxy service to which I have applied OWSM Policy:
  oracle/wss_username_token_service_policy
  In the Setting:
  Process WS-Security Header is set to Yes
  While calling this Proxy from BPEL I tried to append binding properties, I tried the following options:
  option1:
  wsseHeaders=credentials
  wssePassword=welcome1
  wsseUsername=weblogic
  option2:
  oracle.webservices.auth.password=welcome1
  oracle.webservices.auth.username=weblogic
  But neither of them work and I get the following error:
  <con:fault xmlns:con="http://www.bea.com/wli/sb/context">
  <con:errorCode>BEA-386200</con:errorCode>
  <con:reason>General web service security error</con:reason>
  <con:location>
  <con:path>request-pipeline</con:path>
  </con:location>
  </con:fault>
  <Sep 21, 2010 9:49:30 AM PDT> <Error> <OSB Security> <BEA-387022> <An error ocur
  red during web service security inbound request processing [error-code: Security
  HeaderUnmarshallingError, message-id: 3659922647318344420--645cdd1d.12b2fe0c158.
  -7e45, proxy: OSBTest/Proxy Services/PrivatePersonnelDB_PS, operation: null]
  --- Error message:
  oracle.wsm.security.SecurityException: WSM-00069 : The security header is missin
  g.
  at oracle.wsm.security.policy.scenario.processor.UsernameTokenProcessor.
  verify(UsernameTokenProcessor.java:218)
  at oracle.wsm.security.policy.scenario.executor.WssUsernameTokenScenario
  Executor.receiveRequest(WssUsernameTokenScenarioExecutor.java:123)
  at oracle.wsm.security.policy.scenario.executor.SecurityScenarioExecutor
  .execute(SecurityScenarioExecutor.java:530)
  at oracle.wsm.policyengine.impl.runtime.AssertionExecutor.execute(Assert
  ionExecutor.java:41)
  at oracle.wsm.policyengine.impl.runtime.WSPolicyRuntimeExecutor.executeS
  impleAssertion(WSPolicyRuntimeExecutor.java:608)
  Truncated. see log file for complete stacktrace
  I have even tried to enable HTTP basic Authentication for the service, but did not work.
  Any help is highly appreciated.
  Thanks.

  Hi,
  I have applied oracle/wss_username_token_service_policy for my proxy service and trying to test that from OSB Test Console. I am getting below error,
  "[OSB Security - OWSM:387253]Failed to initialize Owsm Credential Manager. Please validate the Keystore Configuration"
  When i have launched Test Console for this proxy, i have observed in Security part, oracle/wss_username_token_client_policy is appearing. I am not sure why oracle/wss_username_token_client_policy is appearing there when i applied oracle/wss_username_token_service_policy to my proxy service.
  Also do i have to need to configure any Keystore for oracle/wss_username_token_service_policy, If so please tell me the process.
  If no key store is required where will the credentials be stored.
  Thanks
  Rajesh

• Content Server Error: 407 Proxy Authorization Required

  Hi Experts,
  I am new to Content Server and have recently installed Content Server 6.40 with MaxDB 7.8 database on a Windows 2008 server.
  The installation completed successfully and IIS server was configured as per guide. The Content server is running when checked through URL on server.
  Next, we created a new repository with following details, but are facing "HTTP error: 407 Proxy Authorization Required" while testing the connection.
  Settings in OAC0
  Content Rep.    A1
  Document Area: ArchiveLink
  Storage type: HTTP Content Server
  Version no.: 0046
  HTTP server: <IP of Windows server where CS is intalled>
  Port Number     1090
  HTTP Script     ContentServer/ContentServer
  Transfer drctry C:\temp
  HTTP Port 1090 is open from SAP system(HP-UX) to Content Server(windows) and there is no firewall between the 2 servers, but we still see the error in OAC0 and CSADMIN. I also tried setting the security parameter to 0 in contentserver.ini file, but that didn't help either.
  The content server was installed using administrator user.
  Would appreciate your inputs on what am I missing?
  Thanks.
  Regards,
  Varun

  Hi Varun,
  Please change Document Area: ArchiveLink .
  Remove Archive link and change it to Document Management system ( DMS)
  Check the results and post the output.
  Regards,
  Deepak Kori