OWSM Custom Policy Step: use of the setProcessingStage() method?

Similar Messages

• Custom Policy Step calling EJB

  Hi there,
  I'm a newby to OC4J and need some help in regards to some library issues. I've created an EJB using spring and deployed it to the oc4j container. Then I created an owsm custom policy step which retrieves the EJB bean using spring and retrieves the custom security header, which I then add to the current SOAP header. I wasn't quite sure how to create the custom policy step jar as it contains my spring jar as well as my ejb jar, so I used maven to create the jar with all my dependent jars as well. Everything works great, as in, it retrieves the EJB calls the method on the EJB which will retrieve a value from LDAP and then uses that value to query our data store and then return the object, but when it returns the object it throws the following exception:
  java.lang.LinkageError: Class com/cochlear/erpsecurity/domain/ErpSoapHeader violates loader constraints
  Which is due to the fact that I have the ErpSoapHeader in my custom policy step jar as well as my ejb jar. When I don't include the ejb jar in my custom policy step jar however then it give a class not found exception when trying to load the ejb with spring. Then I tried something dodgy and added the ejb jar to my server.xml in oracle.wsm.gateway shared library, but this caused the linkage error as well.
  Any help on how I can resolve this library issue will be great appreciated.
  Thanks so much,
  Ida

  Here's an example on how to add a custom SOAP header to the request message inside a custom step.
  public IResult execute(IMessageContext messageContext) throws Fault {
  MessageContext msgCtxt = (MessageContext) messageContext;
  SOAPEnvelope senv = msgCtxt.getRequest().getAxisMessage().getSOAPEnvelope();
  ((org.apache.axis.message.SOAPEnvelope)senv).setDirty(true);
  Name header = factory.createName("CustomHeader", "http://foo.com/custom/header");
  SOAPHeaderElement headerElement = senv.getHeader().addHeaderElement(header);
  headerElement.addTextNode("My custom header data");
  OWSM uses AXIS implementation internally to represent the SOAP message.
  Cheers,
  Vikas Jain

• OWSM - Logging in Custom Policy Step

  I'm trying to implement a custom policy step for Oracle Web Service Management.
  For debugging purposes, I need to write a diagnostic log file (like gateway.log, policymanager.log, ccore.log...) with the behavior of my step. I have to use log4j library...
  Could you help me with OWSM log configuration?
  Thanks!

  I have been reading more about this issue but I have doubts yet...
  Now, I know that I must use the package "com.cfluent.ccore.util.logging" in my code. For example:
  ILogger logger = LogManager.getLogger(...);
  logger.log(Level.INFO, "..");
  In which owsm log file does this information appear?
  Thanks!

• Custom Policy Step and the WS-Security header attibute "mustUnderstand"

  Hi there,
  I have some issues testing the custom policy step that comes with OWSM (CustomAuthenticationStep), which i describe next.
  I manage to compile/deploy the custom step successfully. I also restart the server and add the brand new step into the request pipeline. The pipeline only has two steps, a log step and a custom authentication step.
  I develop a client for the gateway service which use the "Username to Authenticate" option of the Proxy Security. The other options (inbound/outbound integrity/encryption) are all unchecked.
  When I test the client, the following SOAP message is produced:
  <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/"
  xmlns:xsd="http://www.w3.org/2001/XMLSchema"
  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
  xmlns:ns0="http://agesic.entidad/types/"
  xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
  <env:Header>
  <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
  xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
  xmlns:env="http://schemas.xmlsoap.org/soap/envelope/"
  env:mustUnderstand="1">
  <wsse:UsernameToken xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
  xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
  <wsse:Username>test</wsse:Username>
  <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">test</wsse:Password>
  </wsse:UsernameToken>
  </wsse:Security>
  </env:Header>
  <env:Body>
  <ns0:reverseElement>
  <ns0:aString>Holas!</ns0:aString>
  </ns0:reverseElement>
  </env:Body>
  </env:Envelope>
  Which looks just fine. However I get the following exception:
  javax.xml.rpc.soap.SOAPFaultException: SOAP must understand error: {http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd}Security
       at oracle.j2ee.ws.client.StreamingSender._raiseFault(StreamingSender.java:568)
       at oracle.j2ee.ws.client.StreamingSender._sendImpl(StreamingSender.java:396)
       at oracle.j2ee.ws.client.StreamingSender._send(StreamingSender.java:112)
       at agesic.cliente.gateway.proxy.runtime.EchoReverseSoapHttp_Stub.reverse(EchoReverseSoapHttp_Stub.java:78)
       at agesic.cliente.gateway.proxy.EchoReverseSoapHttpPortClient.reverse(EchoReverseSoapHttpPortClient.java:44)
       at agesic.cliente.gateway.proxy.EchoReverseSoapHttpPortClient.main(EchoReverseSoapHttpPortClient.java:33)
  If i look at the log produced by the custom step, it looks like the step was successfully passed.
  ********** Entering Custom Authentication execute method **********
  Processing stage is Request
  Request SOAP message is <?xml version="1.0" encoding="UTF-8"?>
  <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="h
  ttp://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-ins
  tance" xmlns:ns0="http://agesic.entidad/types/" xmlns:wsu="http://docs.oasis-ope
  n.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"><env:Header><wsse
  :Security env:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004
  /01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns="http://docs.oasis-open.or
  g/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:env="http://sche
  mas.xmlsoap.org/soap/envelope/"><wsse:UsernameToken xmlns:wsse="http://docs.oasi
  s-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns="http:/
  /docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"><ws
  se:Username>test</wsse:Username><wsse:Password Type="http://docs.oasis-open.org/
  wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">test</wsse
  :Password></wsse:UsernameToken></wsse:Security></env:Header><env:Body><ns0:rever
  seElement><ns0:aString>Holas!</ns0:aString></ns0:reverseElement></env:Body></env
  :Envelope>
  User locale is English
  Client ip address is rhel4.tecinfo.com.uy:7777
  Verified user is test
  The problems is with the mustUnderstand attribute. It looks like no step tells the OWSM that he understands the header, so the OWSM pass through the pipeline and when it ends it thinks that that header was not processed properly.
  I try to find documentation on this issue but I didn't find any.
  Any ideas? Is there any way to specify that the step actually understands the ws-security header?
  Thanks!
  Leo

  Ok. Thanks. The problem here is a little bit different. At the client side, we have the following:
  <?xml version="1.0" encoding="UTF-8"?>
  <oracle-webservice-clients xmlns:xsi='http://www.w3.org/2001/XMLSchema-instance' xsi:noNamespaceSchemaLocation='http://xmlns.oracle.com/oracleas/schema/oracle-webservices-client-10_0.xsd'>
  <webservice-client>
  <service-qname namespaceURI="http://agesic.entidad/" localpart="EchoReverse"/>
  <port-info>
  <wsdl-port namespaceURI="http://agesic.entidad/" localpart="EchoReverseSoapHttpPort"/>
  <runtime enabled="security">
  <security>
  <inbound/>
  <outbound>
  <username-token password-type="PLAINTEXT" add-nonce="false" add-created="false"/>
  </outbound>
  </security>
  </runtime>
  <operations>
  <operation name='reverse'>
  </operation>
  </operations>
  </port-info>
  </webservice-client>
  </oracle-webservice-clients>
  The <outbound> here is requered in order to use the WSS UserName token profile. I try to remove the <inbound/> to check if it was a problem like yours, but we still have the same exception.
  The problem seems to be with the gateway at the server side.
  Intercepting the communication between the client and the server, we are getting the following response:
  <?xml version="1.0" encoding="UTF-8"?>
  <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/"
  xmlns:xsd="http://www.w3.org/2001/XMLSchema"
  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
  xmlns:ns0="http://agesic.entidad/types/">
  <env:Body>
  <env:Fault>
  <faultcode>env:MustUnderstand</faultcode>
  <faultstring>SOAP must understand error:
  {http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd}Security</faultstring>
  </env:Fault>
  </env:Body>
  </env:Envelope>
  We need a way to instruct the gateway that he actually understands the wss header.
  Any ideas?
  Thanks!
  Leo

• Custom Policy steps in OWSM

  I am currenly implementing an integration systems between our systems and a third party system. There is a requirement for all messages sent across the interface to be acknowldeged by the other system. The transactions are synchronous so we have hand off approach where the receiving system must acknowledge message receipt by sending a synchronous response message back. This acknowledgement message will contain a boolean flag that either says true or false depending on whether they are receiving or rejecting the message. Messages could be rejected because they have an invalid digital certificate or failed message integrity. Is it possible to create custom policy step in the OWSM that allows me to send these acknoledgement messages. the message structure will contain only 3 elements:
  successfulDelivery (boolean)
  RejectedCode (Rejection ErrorCode)
  RejectedReason (Rejected Error Reason)
  Can any one help? I am still new to the OWSM.

  Here's an example on how to add a custom SOAP header to the request message inside a custom step.
  public IResult execute(IMessageContext messageContext) throws Fault {
  MessageContext msgCtxt = (MessageContext) messageContext;
  SOAPEnvelope senv = msgCtxt.getRequest().getAxisMessage().getSOAPEnvelope();
  ((org.apache.axis.message.SOAPEnvelope)senv).setDirty(true);
  Name header = factory.createName("CustomHeader", "http://foo.com/custom/header");
  SOAPHeaderElement headerElement = senv.getHeader().addHeaderElement(header);
  headerElement.addTextNode("My custom header data");
  OWSM uses AXIS implementation internally to represent the SOAP message.
  Cheers,
  Vikas Jain

• Extend OWSM with Custom Policy Step: MessageContext.setResponseMessage()?

  Hi,
  I intend to create a custom policy step for OWSM.
  In the execute method of my step (that extends AbstractStep) I want to set the Response Message using the setResponseMessage() method. According to the Extensibility Guide, this method should be passed a com.cfluent.ccore.message.SOAPMessage object as parameter.
  Basically, the code looks something like this:
  public IResult execute(IMessageContext messageContext) throws Fault {
  MessageContext msgCtxt = (MessageContext)messageContext;
  Result result = new Result();
  msgCtxt.setResponseMessage(msgCtxt.getRequestMessage());
  result.setStatus(IResult.SUCCEEDED);
  return result;
  At compile time however, JDeveloper throws the following error:
  SOAPMessage not found in class nl.amis.soa.CustomStep
  and points to the line
  msgCtxt.setResponseMessage(msgCtxt.getRequestMessage());
  Should I use AXIS SOAP objects (knowing OWSM is based on AXIS or uses it)? Or a MessageFactory? Or ... ?
  Any tips and preferably a code sample is much appreciated!
  Thanks, Sjoerd

  Hi Sjoerd ,
  Looks like documentation error. Are you importing the om.cfluent.ccore.message.SOAPMessage class? Try compiling without the import. I was able to compile your code with no issues. All I have is coresv-4.0.jar added to my jDev project.
  FYI MessageContext.get/setRequestMessage() really takes javax.xml.soap.SOAPMessage as parameter.
  Here is the code I can compile:
  package com.junk.wsm;
  import com.cfluent.pipelineengine.container.MessageContext;
  import com.cfluent.policysteps.sdk.AbstractStep;
  import com.cfluent.policysteps.sdk.IMessageContext;
  import com.cfluent.policysteps.sdk.IResult;
  import com.cfluent.policysteps.sdk.Result;
  public class junkStep extends AbstractStep {
  public junkStep() {
  public IResult execute(IMessageContext messageContext) {
  MessageContext msgCtxt = (MessageContext)messageContext;
  Result result = new Result();
  msgCtxt.setResponseMessage(msgCtxt.getRequestMessage());
  result.setStatus(IResult.SUCCEEDED);
  return result;
  Regards,
  Rajesh

• An error occurred during the Network Policy Server use of the Extensible Authentication Protocol (EAP).

  Hello everyone:
  I know this question have been asked in these forums quite a few times. I apologize if it is a repeat telecast but I was not able to find a suitable solution pertaining to my problem.
  I have a AP/SM setup that is configured to get EAP-PEAP authentication from Windows 2012 Server. I have setup everything and have verified that the EAP-PEAP authentication works fine on AP/SM by getting authentication from FreeRADIUS server. Now, when I try
  to get authentication from Windows Server, I am getting a reject. The Event log shows this generic message:
  Reason Code: 23
  Reason:
      An error occurred during the Network Policy Server use of the Extensible Authentication Protocol (EAP). Check EAP log files for EAP errors.
  There is nothing in the EAP logs that is obvious too:
  "USIL01PMPTST01","IAS",07/11/2014,11:59:44,1,"SANDBOX\test","SANDBOX\test",,,,,,"10.120.133.10",5,0,"10.120.133.10","Canopy_AP",,,18,,,,5,"PEAP_TEST",0,"311 1 10.120.133.1
  07/11/2014 00:05:57 4927",,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"PEAP_TEST_CONNECTION",1,,,,
  "USIL01PMPTST01","IAS",07/11/2014,11:59:44,11,,"SANDBOX\test",,,,,,,,0,"10.120.133.10","Canopy_AP",,,,,,,5,"PEAP_TEST",0,"311 1 10.120.133.1 07/11/2014 00:05:57 4927",30,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"PEAP_TEST_CONNECTION",1,,,,
  "USIL01PMPTST01","IAS",07/11/2014,11:59:44,1,"SANDBOX\test","SANDBOX\test",,,,,,"10.120.133.10",5,0,"10.120.133.10","Canopy_AP",,,18,,,,5,"PEAP_TEST",0,"311 1 10.120.133.1
  07/11/2014 00:05:57 4928",,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"PEAP_TEST_CONNECTION",1,,,,
  "USIL01PMPTST01","IAS",07/11/2014,11:59:44,11,,"SANDBOX\test",,,,,,,,0,"10.120.133.10","Canopy_AP",,,,,,,5,"PEAP_TEST",0,"311 1 10.120.133.1 07/11/2014 00:05:57 4928",30,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"PEAP_TEST_CONNECTION",1,,,,
  "USIL01PMPTST01","IAS",07/11/2014,11:59:44,1,"SANDBOX\test","SANDBOX\test",,,,,,"10.120.133.10",5,0,"10.120.133.10","Canopy_AP",,,18,,,,11,"PEAP_TEST",0,"311 1 10.120.133.1
  07/11/2014 00:05:57 4929",,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"PEAP_TEST_CONNECTION",1,,,,
  "USIL01PMPTST01","IAS",07/11/2014,11:59:44,3,,"SANDBOX\test",,,,,,,,0,"10.120.133.10","Canopy_AP",,,,,,,11,"PEAP_TEST",23,"311 1 10.120.133.1 07/11/2014 00:05:57 4929",,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"PEAP_TEST_CONNECTION",1,,,,
  So, basically, the sequence is this:
  request , challenge, request , challenge, request, reject
  Any idea what might be happening?
  Thank you.

  Hi,
  Have you installed certificates on the NPS server properly? Have you selected the proper certificate in the properties of PEAP?
  Here is an article about the Certificate requirements of PEAP,
  Certificate requirements when you use EAP-TLS or PEAP with EAP-TLS
  http://support.microsoft.com/kb/814394
  If your certificate matches the requirement, you may try to reinstall the certificate by export and import.
  To export a certificate, please follow the steps below,
  Open the Certificates snap-in for a user, computer, or service.
  In the console tree under the logical store that contains the certificate to export, click
  Certificates.
  In the details pane, click the certificate that you want to export.
  On the Action menu, point to
  All Tasks, and then click Export.
  In the Certificate Export Wizard, click No, do not export the private key. (This option will appear only if the private key is marked as exportable and you have access to the private key.)
  Provide the following information in the Certificate Export Wizard:
  Click the file format that you want to use to store the exported certificate: a DER-encoded file, a Base64-encoded file, or a PKCS #7 file.
  If you are exporting the certificate to a PKCS #7 file, you also have the option to include all certificates in the certification path.
  If required, in Password, type a password to encrypt the private key you are exporting. In
  Confirm password, type the same password again, and then click
  Next.
  In File name, type a file name and path for the PKCS #7 file that will store the exported certificate and private key. Click
  Next, and then click Finish.
  To import a certificate, please follow the steps below,
  Open the Certificates snap-in for a user, computer, or service.
  In the console tree, click the logical store where you want to import the certificate.
  On the Action menu, point to
  All Tasks, and then click Import to start the Certificate Import Wizard.
  Type the file name containing the certificate to be imported. (You can also click
  Browse and navigate to the file.)
  If it is a PKCS #12 file, do the following:
  Type the password used to encrypt the private key.
  (Optional) If you want to be able to use strong private key protection, select the
  Enable strong private key protection check box.
  (Optional) If you want to back up or transport your keys at a later time, select the
  Mark key as exportable check box.
  Do one of the following:
  If the certificate should be automatically placed in a certificate store based on the type of certificate, click
  Automatically select the certificate store based on the type of certificate.
  If you want to specify where the certificate is stored, select
  Place all certificates in the following store, click
  Browse, and choose the certificate store to use.
  If issue persists, you may try to re-issue the certificate.
  For detailed procedure, you may refer to the similar threads below,
  Having issues getting PEAP with EAP-MSCHAP v2 working on Windows 2008 R2
  http://social.technet.microsoft.com/Forums/windowsserver/en-US/c66cf0a8-24dd-4ccd-b5bb-16bd28ad8d4c/having-issues-getting-peap-with-eapmschap-v2-working-on-windows-2008-r2?forum=winserverNAP
  Hope this helps.
  Steven Lee
  TechNet Community Support

• NullPointerException caused by the use of the addDoubleField method

  I develop most of my programs in BreezySwing GUI because I like the simplicity of it compared to AWT. I recently bought a new computer that I wanted to make Java equipped; just like my other two computers. I will get back to that later.
  Before I got a new computer, I made all of my programs on the first computer successfully. One of my most significant ones is a multiple conversion program developed in BreezySwing. After I made it, I wanted to make it runnable on my other computer. Using the BreezySwing jar file, the application's class file, an installed JDK, and a batch file, I now know how to make my programs work on new computers.
  Things changed when I tried to put my program on my newest computer. I moved all the necessary files (except the JDK and BreezySwing; which I downloaded again) from the original computer to my newest one. The first two computers had JDK version 7 while the newest one got JDK version 14. I made all the necessary changes to the batch file for the program (such as changing the classpath for the JDK and the class directory). However, upon running this program, Java throws a NullPointerException. This exception does not occur on either of my two other computers.
  Right away, I was determined to find the cause. I have no idea why the exception occurs, but I do know what part of the code causes the exception. By commenting out parts of a test program, I managed to find out that the use of the addDoubleField method causes the exception because it is thrown when not commented out, but it is not thrown when commented out. Here is the code for the test program:
  application: DFTest.class
  import javax.swing.*;
  import BreezySwing.*;
  class DFTest extends GBFrame {
  JTextField txtFld = addTextField("abcdefg",1,1,1,1);
  DoubleField valueFld = addDoubleField(0.0 ,2,1,1,1); /*this line causes the NullPointerException*/
  static public void main(String[] args){
  DFTest obj = new DFTest();
  obj.setSize(300,100);
  obj.setVisible(true);
  }Both my conversion program and this program use the addDoubleField method. I also tested the BreezySwing variable type DoubleField by seperating it from addDoubleField with a constructor. Java did not throw an exception for the DoubleField variable type.
  What do I need to do to get my programs working again?

  I will give one last detailed synopsis of the problem that I am having. I will do my best to include every detail and make the explanation as useful as possible.
  About a year ago I became interested in Java programming. I was learning it at school but I wanted to continue with it on my own as well. The first time I installed Java was on my first computer. I will call this computer Computer A. The first thing I did was download the JDK that was available at the time. It ended up being jdk1.6.0_07. Then I downloaded JCreator IDE because it was the same IDE that I was familiar with in the classroom. The classroom textbook was The Fundamentals of Java, by Lambert and Osborne. This textbook uses the add-on package BreezySwing which is available from their website. I downloaded whatever version or update that was available at the time. Computer A still has that same download.
  In the classroom I became very familar with BreezySwing to the point where I could use all the methods for it comfortably. During the school year, I ended up using about five different computers. There were no problems with them as far as odd errors go. Every time there was an error, it was clearly the fault of the programmer and easily fixable.
  Back to Computer A: Since almost all of the programs I wanted to write used BreezySwing, it had to be set up properly. After some instructions were given to me from my teacher, I created the PATH environment variable and set it to the location of the BreezySwing documentation; which on Computer A was:
  'C:\Program Files\Java\jdk1.6.0_07\bin'
  Every kind of program that I made on Computer A works perfectly; including my test program mentioned earlier:
  application: DFTest.class
  import javax.swing.*;
  import BreezySwing.*;
  class DFTest extends GBFrame {
  JTextField txtFld = addTextField("abcdefg",1,1,1,1);
  DoubleField valueFld = addDoubleField(0.0 ,2,1,1,1);
  static public void main(String[] args){
  DFTest obj = new DFTest();
  obj.setSize(300,100);
  obj.setVisible(true);
  }By now I was getting good at making programs. Some of them I found very useful, so I wanted to make them into some type of executable file. I became familiar with all of them including .jar and .exe. However, the only one that worked for me was the batch file. I also liked its simplicity. I quickly became good at using them to execute Java bytecode.
  The next thing I wanted to do was put the useful programs I had made on a computer that was in the other room. This computer will be called Computer B. Computer B is much older than Computer A, but still a Windows.
  I knew this computer first needed Java installed on it, so I returned to the Sun download site. This time, the newest Java JDK download was jdk1.6.0_13. I also downloaded jre6 and NetBeans IDE to see if I liked it better than JCreator and to have the option to develop Java on Computer B. Next, I had to download BreezySwing again to Computer B.
  A very odd thing occurred next:
  Upon trying to extract the files of BreezySwing to the proper directory 'C:\Program Files\Java\jdk1.6.0_13\bin', a message came saying that every file in BreezySwing required a password. It also said that all the files in the 'bin' folder (of jdk1.6.0_13) were read-only and it would not let any files be placed there. I still do not know why I did not have this issue with Computer A. I did not know what to do for weeks.
  In the end, I had to copy jdk1.6.0_07 from Computer A to Computer B. It already had BreezySwing in it. However, I was unable to set up NetBeans to work with BreezySwing. Part of the problem was that Computer B is too old and slow for such an advanced program like NetBeans. It was at this point that I started using batch and command prompt entirely to execute all the programs I made or used on Computer B.
  Just like I expected, every type of program I made or put on Computer B worked perfectly.
  About a month ago, I got a third computer; Computer C. By now I knew what I wanted in it so again I returned to the Sun download site. This time, I downloaded jdk1.6.0_14 and nothing else. Both Computer A and Computer B also had jre6; but not Computer C because I saw no need for it if I already had the JDK. I also did not bother with IDEs for Computer C; I just used notepad and command prompt to develop programs.
  The first program I put on Computer C was the one that I had made on Computer A. I already got it to work on Computer B, so I used that knowledge to do everything correctly for Computer C. The program would be executed by batch file which would tell the computer it was interacting with:
  1. The directory of the .class file
  2. The directory of the JDKs bin folder
  3. To include BreezySwing.jar in the execution path (needed to recognize all the methods used in the program)
  Everything about the batch files was correct. An error in the batch file would clearly cause an error not Java related; but rather cmd.exe related.
  After placing the .class file into the directory of all my other .class files (and BreezySwing)
  'C:\Documents and Settings\Java Applications\classes+src',
  I changed the information in the batch file to match the jdk update and match the correct class directory. Upon double clicking the batch file, a NullPointerException was thrown.
  Jump ahead to my test program; DFTest.class. After creating several other test programs to try to isolate the cause of the exception, this is what I found:
  When I attempt to execute the following code (after successful compilation):
  application: DFTest.class
  import javax.swing.*;
  import BreezySwing.*;
  class DFTest extends GBFrame {
  JTextField txtFld = addTextField("abcdefg",1,1,1,1);
  DoubleField valueFld = addDoubleField(0.0 ,2,1,1,1);
  static public void main(String[] args){
  DFTest obj = new DFTest();
  obj.setSize(300,100);
  obj.setVisible(true);
  }My message is too long so I will continue...

• OWSM customize policy step sign message

  Hi,
  is it possible to customize the OWSM policy step "sign message" ?
  - to set the attribute mustUnderstand of the element wsse:Security to 0 (default is 1)
  - to add the timestamp wsu:Expires to the security header (in addition to the wsu:Created timestamp)
  Bye,
  Markus

  Hi Vikas,
  Thanks for the reply.
  I suspect that the "fiddling with the Outgoing Transport Protocol that is between OWSM Gateway and actual service" as mentioned in my original post is probably the same as "creating a custom transport messenger between gateway and service" as mentioned by you.
  Any pointers to get me going, e.g. what interfaces te implement, classes to extend, how to register and manage with OWSM?
  Thanks and best regards,
  Sjoerd

• Reason Code:23 Reason: An error occurred during the Network Policy Server use of the Extensible Authentication Protocol EAP

  I get the above described error when trying to connect to NPS 2012 with a Windows XP machine
  I successfully connecting to that server with an Android phone.
  I started examining the problem and saw the following:
  1. The android phone uses some cipher suites that are not supported in Windows XP and the one that theserver selects in  the Server Hello message is Cipher Suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA 0xc014
  2. With the WINXP the selected cipher suite is Cipher Suite: TLS_RSA_WITH_AES_256_CBC_SHA 0x0035 and it fails with the above error.
  3. Next step I did was to restrict the NPS to use only the Cipher Suite: TLS_RSA_WITH_AES_256_CBC_SHA 0x0035 and not to my surprise the Android phone could not connect and I was getting the same error as with the WINXP.
  Any solution to this prpoblem?

  Hi and thanks for replying
  I do not believe there is a problem with the certificate as it uses the same certificate in both authentication processes - the failed one using the TLS_RSA_WITH_AES_256_CBC_SHA
  cipher suit and the successfull one using TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
  cipher suit - so I believe the reason lies elsewhere.
  Please check it and try to produce a solution for it.
  Thanks

• JSF 2 composite comp. backing class: what can I use for the decode method?

  Hello, everybody!
  I want to convert a JSF 1.2 custom component to a JSF 2.0 composite component. This JSF 1.2 custom component uses a renderer where I take some actions in the decode method. So, I would like to know what I could use to replace the well known decode method when writing a backing class for a JSF 2.0 composite component.
  Thank you.
  Marcos
  Edited by: Marcos_AntonioPS on May 21, 2010 11:59 AM

  Let's try with org.havi.ui.HStaticText

• SCCM 2012 Endpoint applies two policies "Default Policy & Custom policy" without using merge

  Hi All,
  Am facing an issue deploying endpoint policies @ the configuration manager, as for some device collection it applies the default policy without being deployed or merged with any other policy.
  below is snapshot from policies on SCCM & policies applied on one of the clients.
  Thanks

  That's default behavior. The default policy will always be aplied without the need to be specifically deployed. If you look at the applied settings you should see that the settings are merged were applicable. See for a nice explanation:
  http://blogs.technet.com/b/mspfe/archive/2013/11/13/system-center-configuration-manager-2012-scep-policy-behavior.aspx
  My Blog: http://www.petervanderwoude.nl/
  Follow me on twitter: pvanderwoude

• ** OWSM Custom Step: Accessing OWSM Monitor Metrics Programmatically ?? **

  Hi all,
  I have posted this in the SOA Forum with no response, so trying my luck here.
  I would like to programmatically access the OWSM monitor metrics, specifically the Service Statistics (Traffic Analysis and Latency Variance).
  Is there any way to programmatically query the current Stats for the service protected by OWSM policies?
  I would like create a custom policy step that interrogates the current OWSM Monitor status of the Service, and then actions it accordingly.
  I have looked in the Extensibility Guide, but documentation is not very clear.
  I have found classes in com.cfluent.coreman.sdk.* and com.cfluent.webui.uibeans.opcockpit.* which seem useful, but no documentation is available as these APIs do not appear to be published.
  Any help would be greatly appreciated.

  I've come across the following Beans which look like they provide the details I need:
  com.cfluent.webui.uibeans.opcockpit.ServiceLatencyBean;
  com.cfluent.webui.uibeans.opcockpit.MessageTrafficBean;
  Has anyone used these and tried to access data via these beans directly?

• Retrieve Client IP Address in a Oracle WebServices Manager Custom Policy

  Hi everybody,
  For some reasons i had to implement a custom policy in the OWSM, to restrict the access to webservices by Client IP Addresses. I´ve been following the examples for custom policies mentioned in the books: "Oracle Web Services Manager, Oracle Web Services Manager" by Sitaraman Lakshminarayanan, and the "Oracle® Web Services Manager Extensibility Guide 10g (10.1.3.3.0)" by Oracle. I followed the examples mentioned in those books to implement my Custom policy, the policy is successfully deployed to OWSM and it works, only by the issue that when i want to retrieve the Client Ip address it returns null, and following the example by the Oracle Guide, the HttpServletRequest its also returns null, im desperated because in every site that i finally find some info about it, quotes any of these 2 examples in those books, and mine doesnt work! this is the code of the custom policy, i´ve combined the 2 aproaches:
  package project1;
  import com.cfluent.ccore.util.logging.ILogger;
  import com.cfluent.ccore.util.logging.Level;
  import com.cfluent.ccore.util.logging.LogManager;
  import com.cfluent.pipelineengine.container.MessageContext;
  import com.cfluent.policysteps.sdk.AbstractStep;
  import com.cfluent.policysteps.sdk.Fault;
  import com.cfluent.policysteps.sdk.IMessageContext;
  import com.cfluent.policysteps.sdk.IResult;
  import com.cfluent.policysteps.sdk.InvocationStatus;
  import com.cfluent.policysteps.sdk.Result;
  import java.util.HashMap;
  import java.util.Iterator;
  import java.util.Vector;
  import javax.servlet.http.HttpServletRequest;
  public class CustomPolicy extends AbstractStep {
  private static String CLASSNAME = CustomPolicy.class.getName();
  private static ILogger LOGGER = LogManager.getLogger(CLASSNAME);
  private String allowedIpAddress = null;
  private String allowedRoleName = null;
  private String protectedServiceMethodName = null;
  public CustomPolicy() {
  public void init() throws IllegalStateException {
  // nothing to initialize
  public void destroy() {
  * This is the main method which will validate that the request is coming from
  * the correct IP Address and has permission to access the specified metod.
  public IResult execute(IMessageContext messageContext) throws Fault {
  LOGGER.entering(CLASSNAME, "execute");
  Result result = new Result();
  result.setStatus(IResult.FAILED); //initialize result
  String processingStage = messageContext.getProcessingStage();
  LOGGER.log(Level.INFO, "Processing stage is " + processingStage);
  HttpServletRequest httpServletRequest = (HttpServletRequest)
  messageContext.getProperty("javax.servlet.request");
  String remoteAddr = httpServletRequest.getHeader("Host");
  LOGGER.log(Level.SEVERE, "Dir IP:"+remoteAddr);
  String remoteHost = httpServletRequest.getRemoteHost();
  LOGGER.log(Level.INFO, "ADDR" + remoteAddr+ "HOST"+remoteHost);
  boolean isRequest =
  (IMessageContext.STAGE_REQUEST.equals(messageContext.getProcessingStage()) ||
  IMessageContext.STAGE_PREREQUEST.equals(messageContext.getProcessingStage()));
  //Execute the step Only when its a Request pipeline else return success
  if (!isRequest) {
  result.setStatus(IResult.SUCCEEDED);
  return result;
  MessageContext msgCtxt = (MessageContext)messageContext;
  String _MethodName = msgCtxt.getRequest().getMethodName();
  LOGGER.log(Level.INFO,
  "Writing Allowed IP Addr before creating SOAP header " +
  allowedIpAddress);
  LOGGER.log(Level.INFO,
  "Writing Remote IP Addr before creating SOAP header " +
  msgCtxt.getRemoteAddr());
  /*LOGGER.log(Level.INFO,
  "Writing Remote IP Addr before creating SOAP header " +
  remoteAddr);*/
  String cadTempo = allowedIpAddress;
  Vector vect = new Vector();
  for (int i = 0; i < allowedIpAddress.length(); i++) {
  if (cadTempo.indexOf(",") != -1) {
  //vect.add(cadTempo.substring(0, cadTempo.indexOf(",") - 1));
  vect.add(cadTempo.substring(0, cadTempo.indexOf(",")));
  cadTempo =
  cadTempo.substring(cadTempo.indexOf(",") + 1, cadTempo.length());
  LOGGER.log(Level.INFO,
  "AQUI111");
  } else {
  if (!cadTempo.equalsIgnoreCase("")) {
  vect.add(cadTempo);
  LOGGER.log(Level.INFO,
  "AQUI222");
  break;
  for(int i=0;i<vect.size();i++){
  String temp = (String)vect.get(i);
  if (temp.equals(msgCtxt.getRemoteAddr()) &&
  _MethodName.equals(protectedServiceMethodName)) {
  LOGGER.log(Level.INFO,
  "AQUI333");
  result.setStatus(IResult.SUCCEEDED);
  break;
  } else {
  msgCtxt.getInvocationStatus().setAuthorizationStatus(InvocationStatus.FAILED);
  LOGGER.log(Level.INFO,
  "AQUI444");
  /*if(allowedIpAddress!=null){
  result.setStatus(IResult.SUCCEEDED);
  /*if (allowedIpAddress.equals(msgCtxt.getRemoteAddr()) &&
  _MethodName.equals(protectedServiceMethodName)) {
  result.setStatus(IResult.SUCCEEDED);
  } else {
  msgCtxt.getInvocationStatus().setAuthorizationStatus(InvocationStatus.FAILED);
  // Set the result to SUCCESS
  //result.setStatus(IResult.SUCCEEDED);
  return result;
  public String getIpAddress() {
  return allowedIpAddress;
  public void setIpAddress(String IpAddress) {
  this.allowedIpAddress = IpAddress;
  LOGGER.log(Level.INFO, "IP Address is.. " + allowedIpAddress);
  public String getServiceMethodName() {
  return protectedServiceMethodName;
  public void setServiceMethodName(String serviceMethodName) {
  this.protectedServiceMethodName = serviceMethodName;
  public String getRoleName() {
  return allowedRoleName;
  public void setRoleName(String roleName) {
  this.allowedRoleName = roleName;
  And the xml:
  <csw:StepTemplate xmlns:csw="http://schemas.confluentsw.com/ws/2004/07/policy"
  name="Custom authenticate step" package="project1"
  timestamp="Oct 31, 2005 05:00:00 PM" version="1"
  id="0102030405">
  <csw:Description>Custom step that authenticates the user against the
  credentials entered here. This step requires Extract
  credentials to be present before it in the request pipeline.</csw:Description>
  <csw:Implementation>project1.CustomPolicy</csw:Implementation>
  <csw:PropertyDefinitions>
  <csw:PropertyDefinitionSet name="Basic Properties">
  <csw:PropertyDefinition name="Enabled" type="boolean">
  <csw:Description>If set to true, this step is enabled</csw:Description>
  <csw:DefaultValue>
  <csw:Absolute>true</csw:Absolute>
  </csw:DefaultValue>
  </csw:PropertyDefinition>
  </csw:PropertyDefinitionSet>
  <csw:PropertyDefinitionSet name="Custom Access Rules">
  <csw:PropertyDefinition name="IpAddress" type="string" isRequired="true">
  <csw:DisplayName>IpAddress</csw:DisplayName>
  <csw:Description>IP Address that is allowed access</csw:Description>
  <csw:DefaultValue>
  <csw:Absolute>192.168.0.1</csw:Absolute>
  </csw:DefaultValue>
  </csw:PropertyDefinition>
  <csw:PropertyDefinition name="ServiceMethodName" type="string"
  isRequired="true">
  <csw:DisplayName>ServiceMethodName</csw:DisplayName>
  <csw:Description>Service Method Name that is Protected (Secured)</csw:Description>
  <csw:DefaultValue>
  <csw:Absolute>getTime</csw:Absolute>
  </csw:DefaultValue>
  </csw:PropertyDefinition>
  </csw:PropertyDefinitionSet>
  </csw:PropertyDefinitions>
  </csw:StepTemplate>
  Please any tip or idea is welcome, thanks in advance for the help.
  Carlos.

  Hi again
  copied your code for testing. And it works fine.
  So both the code and policy-step definition is fine, log output below.
  What is your log output?
  Using soapui to send the request will give the ip of my localhost, using the test client will give the ip of the server, because that is the actual client.
  I guess the server ip is 192.168.0.1 in your case, as you are testing from test console.
  <b>anyway, results from SOAPUI:</b>
  2009-05-19 09:52:15,096 FINE [HTTPThreadGroup-4] CSWComponent - Executing policy step. Policy='SID0003004', Step Name='Custom Policy Step', Step Class='com.*.soa.wsm.CustomPolicy'
  2009-05-19 09:52:15,096 FINER [HTTPThreadGroup-4] wsm.CustomPolicy - com.*.soa.wsm.CustomPolicy execute:ENTERING
  2009-05-19 09:52:15,096 INFO [HTTPThreadGroup-4] wsm.CustomPolicy - Processing stage is Request
  2009-05-19 09:52:15,096 SEVERE [HTTPThreadGroup-4] wsm.CustomPolicy - Dir IP:hostname.domain:8890
  2009-05-19 09:52:15,096 INFO [HTTPThreadGroup-4] wsm.CustomPolicy - ADDRhostname.domain:8890HOST10.47.89.116
  2009-05-19 09:52:15,096 INFO [HTTPThreadGroup-4] wsm.CustomPolicy - MethodName=getHostNameElement
  2009-05-19 09:52:15,096 INFO [HTTPThreadGroup-4] wsm.CustomPolicy - Writing Allowed IP Addr before creating SOAP header 10.47.89.116, 192.168.0.1
  2009-05-19 09:52:15,096 INFO [HTTPThreadGroup-4] wsm.CustomPolicy - Writing Remote IP Addr before creating SOAP header 10.47.89.116
  2009-05-19 09:52:15,096 INFO [HTTPThreadGroup-4] wsm.CustomPolicy - AQUI111
  2009-05-19 09:52:15,096 INFO [HTTPThreadGroup-4] wsm.CustomPolicy - AQUI222
  2009-05-19 09:52:15,097 INFO [HTTPThreadGroup-4] wsm.CustomPolicy - AQUI333
  2009-05-19 09:52:15,097 FINER [HTTPThreadGroup-4] agent.Agent - com.cfluent.agent.Agent intercept:ENTERING
  <b>But if I use the test client the remote IP would be 10.47.137.50 and execution fails, as code is written</b>
  <i>
  2009-05-19 09:54:12,266 INFO [HTTPThreadGroup-4] wsm.CustomPolicy - Writing Allowed IP Addr before creating SOAP header 10.47.89.116, 192.168.0.1
  2009-05-19 09:54:12,266 INFO [HTTPThreadGroup-4] wsm.CustomPolicy - Writing Remote IP Addr before creating SOAP header 10.47.137.50
  2009-05-19 09:54:12,267 INFO [HTTPThreadGroup-4] wsm.CustomPolicy - AQUI111
  2009-05-19 09:54:12,267 INFO [HTTPThreadGroup-4] wsm.CustomPolicy - AQUI222
  2009-05-19 09:54:12,267 INFO [HTTPThreadGroup-4] wsm.CustomPolicy - AQUI444
  2009-05-19 09:54:12,267 INFO [HTTPThreadGroup-4] wsm.CustomPolicy - AQUI444
  2009-05-19 09:54:12,267 FINE [HTTPThreadGroup-4] CSWComponent - Step execution failed: Policy=[SID0003004] Pipeline=[Request] Step Name=[Custom Policy Step] Step Class=[com.tandberg.soa.wsm.CustomPolicy]
  2009-05-19 09:54:12,267 FINER [HTTPThreadGroup-4] common.PrepareForServiceStep - Step PrepareForServiceStep called
  </i>

• Reload source file after custom build step

  Hello,
  I use a source code generator that creates c-code (i.e. hello.c) from some kind of definition file.
  I want the generator to create hello.c on each build, so i have decided to put a batch (that calls the generator) into the "custom build step" of my project.
  This way the generator is called before each build.
  Unfortunatly CVI does not reload the changed hello.c after it has been modified/overwritten by the batch... the build is done with the previous version of hello.c. Not until the build is finished CVI recognizes that hello.c has been modified and prompts "Update Window from Disk", then I have to run a second build in order to get the changes of hello.c applied.
  How can I accomplish to have only build process that first calls the generator and then compiles the project (with modified hello.c)?
  Thanks

  The problem happens because you have the file open in CVI. If a file is opened in CVI, then CVI uses the contents that are available in the opened window and not the contents on disk. Also, once CVI starts a build it does not monitor changes to the file on disk - consider what should happen if the file on disk changes while it is being compiled. So while the custom build step does overwrite the file on disk, CVI uses the contents that are in the source window for the compilation. To avoid this problem, make sure the file is not opened in CVI when you build - this will make CVI load and compile the file from disk after the custom build step overwrites it.