OWSM custom step
I am creating a OWSM custom step for validating 'XML Signature Verification'. The step provided by the tool has some limitations (if otherwise please correct me).
Only one certificate can be configured and the certificates need to be provided in jks file store.
My requirements are a bit different. I am using both username token as well as XML signatures. Using the username I will retrieve the certificate from the LDAP or database. But my question is how do I verify the XML signature. Can I extend the step already provided in OWSM?
I have already written a custom step that retrieves the certificate from the database using the username.
Thanks,
Sashwat
I've come across the following Beans which look like they provide the details I need:
com.cfluent.webui.uibeans.opcockpit.ServiceLatencyBean;
com.cfluent.webui.uibeans.opcockpit.MessageTrafficBean;
Has anyone used these and tried to access data via these beans directly?
Similar Messages
-
OWSM Custom Step to modify SOAPBody
We're trying to write a custom step that takes a username out of a WS-SECURITY header and forces it into an element in our SOAPBody.
My code to pull the name from the header works fine, so does my code to iterate through the body to find the element I want to modify. But then what? setObjectValue doesn't seem to work. I also know that I've got to use setDirty, but when I run it on my soapbodyelement then most of the body disappears from the soap message.
try {
org.apache.axis.message.SOAPEnvelope env = soapMessage.getAxisMessage().getSOAPEnvelope();
env.setDirty(true);
SOAPBody soapBody = (SOAPBody)env.getBody();
soapBody.setDirty(true);
java.util.Iterator iterator = soapBody.getChildElements();
while (iterator.hasNext()) {
SOAPBodyElement bodyElement = (SOAPBodyElement)iterator.next();
java.util.Iterator childIterator = bodyElement.getChildElements();
while (childIterator != null && childIterator.hasNext()) {
MessageElement childElement = (MessageElement)childIterator.next();
if (childElement.getName() == "usernamein1") {
log("Hey, I found the username 1 paramenter");
log("old child element value" + childElement.getValue());
childElement.setObjectValue("eureeka");
((org.apache.axis.message.MessageElement)childElement).setDirty(true);
logSOAPMessage(soapMessage);
I've seen the thread and blog post about adding a new header and I've done that. But I can't seem to affect the body, except to destroy it.
So again, my goal is to take a WS-SECURITY username and force it in to a particular body element so that my web service (which is a pl/sql stored procedure) can know who it is talking to for auditing purposes. Help!I was never able to find out exactly why the problem occurs with setDirty(true) on an existing SOAPBodyElement in the message, but I did find a way to circumvent the problem.
Basically what I did was to create a new SOAPBodyElement with the same Name, add that as a child to the SOAPBody, add the children of the old SOAPBodyElement to the new one, and detach the old SOAPBodyElement. Using setDirty(true) on the new element did not drop the content.
SOAPEnvelope senv = msg.getAxisMessage().getSOAPEnvelope();
SOAPBody sBody = (SOAPBody) senv.getBody();
SOAPBodyElement serviceRequestOld = senv.getFirstBody();
SOAPBodyElement serviceRequest = (SOAPBodyElement) sBody.addBodyElement(serviceRequestOld.getElementName());
ArrayList<MessageElement> serviceRequestChildrenOld = serviceRequestOld.getChildren();
for (MessageElement oldMessageElement : serviceRequestChildrenOld) {
serviceRequest.addChild(oldMessageElement);
serviceRequestOld.detachNode();
// modify children as needed
// setDirty(true) on changed elements and all the way up the hierarchy
serviceRequest.setDirty(true);
sBody.setDirty(true);
senv.setDirty(true);
This was helpful:
http://www.oracle.com/technetwork/articles/jones-owsm-101767.html -
OWSM Custom Step SOAPMessage Class Problem
I have SOA Suite installed on several different machines. All have BPEL, ESB, and OWSM installed. I have a BPEL process that calls a web service hosted on a remote machine that uses a OWSM client agent to do "security stuff". I have a custom OWSM step that does the "security stuff". On one machine everything works as it should. On another machine, I am getting the following error in the execute() method of my custom step implementation:
java.lang.UnsupportedOperationException: getSOAPBody must be overridden by all subclasses of SOAPMessage:
at my.custom.step.CustomStep(CustomStep:83)
at com.cfluent.pipelineengine.container.DefaultPipeline.execute(DefaultPipeline.java:124)
at com.cfluent.pipelineengine.container.DefaultPipeline.execute(DefaultPipeline.java:97)
at com.cfluent.pipelineengine.container.DefaultPolicy$DeferredPipeline.execute(DefaultPolicy:63)
at com.cfluent.pipelineengine.container.DefaultPolicy$DeferredPipeline.access$300(DefaultPolicy:18)
<snipped>
Here's the snippet of code from the execute() method of the custom step:
SOAPMessage soapMsg = messageContext.getRequestMessage();
if ( soapMsg.getSOAPBody().hasFault()) // !!!!!!!!!!!!!!!!!!!!!!!! Here's where the error is occurring
When I log out soapMsg.getClass().getName() I get "org.apache.axis.Message".
Now, when I execute the same piece of code on another machine, it works fine and the class for SOAPMessage
is oracle.j2ee.ws.saaj.soap.soap12.Message12.
Any idea why the class difference? Is there some SOAPFactory configuration value somewhere?
Thanks in advance.mrmora,
After opening a Service Request and communicating with one of Oracle's reps, I was told that the HttpServletRequest (and I guess other client info) is never available for either the Server Agent or Client Agent.
I created a Gateway, instead, and and I'm now getting the HttpServletRequest and the client's IP. Both of these codes now work:
HttpServletRequest request = (HttpServletRequest)messageContext.getProperty("javax.servlet.request");
String clientIP = httpSrvltRqst.getRemoteHost();
=====
String clientIP = ((MessageContext)messageContext).getRemoteAddr();
Thanks. -
OWSM Custom Step - Determine Remote Address
I'm working on a custom step that provides custom metrics for some of our web services (BPEL). The only thing that I haven't been able to figure out is the remote address.
The heart of my code is:
public IResult execute(IMessageContext messageContext) throws Fault {
Result result = new Result();
result.setStatus(IResult.FAILED);
boolean isRequest = (IMessageContext.STAGE_REQUEST.equals(messageContext.getProcessingStage()) || IMessageContext.STAGE_PREREQUEST.equals(messageContext.getProcessingStage()));
if (!isRequest) {
result.setStatus(IResult.SUCCEEDED);
return result;
try {
log(messageContext);
result.setStatus(IResult.SUCCEEDED);
} catch (Exception ex) {
messageContext.getInvocationStatus().setErrorMessage(ex.getMessage());
generateFault(ex.getMessage());
return result;
private void log(IMessageContext messageContext) throws Exception {
String client = null;
try {
client = ((MessageContext) messageContext).getRemoteAddr();
// HttpServletRequest httpServletRequest = (HttpServletRequest) messageContext.getProperty("javax.servlet.request");
// if (httpServletRequest != null) {
// client = httpServletRequest.getHeader("Host");
} catch (Exception ex) {
String msg = "Unable to extract the client IP address.";
throw new Exception (msg);
<continue capturing metrics and log to the database>
The problem is, client is always null. I've tried both techniques I've found online and neither of them seem to produce any results. Could there be some server configuration that is preventing this information from be sent to OWSM?mrmora,
After opening a Service Request and communicating with one of Oracle's reps, I was told that the HttpServletRequest (and I guess other client info) is never available for either the Server Agent or Client Agent.
I created a Gateway, instead, and and I'm now getting the HttpServletRequest and the client's IP. Both of these codes now work:
HttpServletRequest request = (HttpServletRequest)messageContext.getProperty("javax.servlet.request");
String clientIP = httpSrvltRqst.getRemoteHost();
=====
String clientIP = ((MessageContext)messageContext).getRemoteAddr();
Thanks. -
OWSM custom step & web service proxy
Hello!
I'm writing custom step, in which I want to call methods from another web services. So I generated in JDev (i'm using 10g) Web Service Proxy, I have all needed classes generated,
and I want to use it in my custom step (i.e. invoke some method). But when I try to build .jar I get errors like this:
[javac] C:\Documents and Settings\admin\Pulpit\My Dropbox\my_apps\Laboratoria\PEP\src\pep\proxy\runtime\PDPConnectorPortBinding_Stub.java:61: cannot find symbol
[javac] symbol : method setProperty(java.lang.String,java.lang.Object)
[javac] location: class javax.xml.soap.SOAPMessage
[javac] _state.getMessageContext().getMessage().setProperty("DimeEncode",_getProperty(ClientConstants.DIME_ENCODE_MESSAGES_WITH_ATTACHMENTS));
what is the problem? some classes incompatiblity? I tried to use jdk 1.5 and 1.6...
Best regards,
MichalHi,
Are you accessing teh WSDl from a deployed service ? If yes, when providing the Web Service URL, did you extend the URL with ?WSDL ?
Frank -
** OWSM Custom Step: Accessing OWSM Monitor Metrics Programmatically ?? **
Hi all,
I have posted this in the SOA Forum with no response, so trying my luck here.
I would like to programmatically access the OWSM monitor metrics, specifically the Service Statistics (Traffic Analysis and Latency Variance).
Is there any way to programmatically query the current Stats for the service protected by OWSM policies?
I would like create a custom policy step that interrogates the current OWSM Monitor status of the Service, and then actions it accordingly.
I have looked in the Extensibility Guide, but documentation is not very clear.
I have found classes in com.cfluent.coreman.sdk.* and com.cfluent.webui.uibeans.opcockpit.* which seem useful, but no documentation is available as these APIs do not appear to be published.
Any help would be greatly appreciated.I've come across the following Beans which look like they provide the details I need:
com.cfluent.webui.uibeans.opcockpit.ServiceLatencyBean;
com.cfluent.webui.uibeans.opcockpit.MessageTrafficBean;
Has anyone used these and tried to access data via these beans directly? -
OWSM - Build a Pause into a Custom Step
Hi,
We have been experiencing an EOF error in BPEL process on response step of remote Web Service invocation. The invocation is in a loop which will retrieve data from 3rd party web service until no data left to return, so could run through 100 invocations in quick succession. We are using a clustered 10.1.3.4 environment. I cannot replicate this in our UAT environment which is exactly the same build as our Production. Never get the error, no matter how big the payload in response or frequency of invocations. It shares the same environment, config, firewalls..etc. I have set the Disable Keep Alives which is still not resolving the issue. The problem is intermittant and only seems to occur on request/response steps taking over 3 seconds. We have had all the firewall policies checked on our side and on 3rd parties side, with not timeout policies found. In order to try and replicate the issue, I was hoping to build a wait into the reponse of message via OWSM custom step. However, no matter what I try, OWSM just ignores this and keeps processing.
Used a template with a variable for sleep time in milliseconds to deploy custom step, which appears in policies and the variable can be assigned a value like 5000 (5 seconds). Invocation runs fine with message being returned from BPEL process, just does not wait! Has anyone got any ideas on the initial issue or how to get the wait to work.
Thanks
Custom Step Code below:
import com.cfluent.policysteps.sdk.AbstractStep;
import com.cfluent.policysteps.sdk.Fault;
import com.cfluent.policysteps.sdk.IMessageContext;
import com.cfluent.policysteps.sdk.IResult;
import com.cfluent.policysteps.sdk.Result;
public class SleepStep extends AbstractStep {
public SleepStep() {
public IResult execute(IMessageContext messageContext) throws Fault {
IResult resultStatus = new Result();
resultStatus.setStatus(IResult.FAILED);
try {
//Getting the SOAPMessage object from the context
javax.xml.soap.SOAPMessage soapMessage = messageContext.getRequestMessage();
// Code to generate a specific wait time in milliseconds
long time = ((Long)messageContext.getProperty("time_to_sleep")).longValue();
long start,stop;
start=System.currentTimeMillis();
do{
stop=System.currentTimeMillis();
} while ((stop-start)<time);
resultStatus.setStatus(IResult.SUCCEEDED);
//Set the SOAP Request back into the context
messageContext.setRequestMessage(soapMessage);
} catch (Exception ex) {
String errMsg = ex.getMessage();
generateFault(errMsg);
return resultStatus;
} }So it is not possible to use setInterval() inside a for()
loop?
"kglad" <[email protected]> wrote in message
news:eth4g6$2np$[email protected]..
> you can't. use an onEnterFrame() or setInterval() loop. -
OWSM: Where to put additional jars for a custom step
I'm in the process of creating a custom step for OWSM. The step relies on some additional libraries that are not found on the server at the moment. Where do I put them so that my custom step will find them?
I'd like to avoid packaging them into the steps jar file if possible.You can put anywhere and probably create shared library in your server.xml and import them in following shared libraries:
oracle.wsm.policymanager
oracle.wsm.gateway
oracle.wsm.coreman
oracle.wsm.ccore
HTH,
Chintan -
OWSM: How to reference Custom Step properties/parameters?
Hi,
When you define a Custom Step via a XML file. You can define properties/parameters. In the sample files that comes with OWSM (CustomAuthenticationStep.xml) Username and Password are defined. My problem is that I cannot figure out how to reference these in the Java Step source. In the sample file CustomAuthenticationStep.java there are no references. There are two class variables called expectedUsername and expectedUserPassword, but they are never set in the source? There are nothing in the Extensibility Guide about this. Anybody know how it works?
Regards PeterI've made a couple of these now. It somehow walks through the xml file you upload and then the properties defined are matched with the appropriate get/set methods in the actual java code.
One example I had to make was to add HTTP Basic Auth headers to a request. Here is the section of the xml file.
<csw:PropertyDefinitionSet name="HTTP Basic Auth Params">
<csw:PropertyDefinition name="httpBasicAuthUsername" type="string" isRequired="true">
<csw:DisplayName>Username</csw:DisplayName>
<csw:Description>Http Basic Auth Username</csw:Description>
<csw:DefaultValue>
<csw:Absolute>USERNAME</csw:Absolute>
</csw:DefaultValue>
</csw:PropertyDefinition>
<csw:PropertyDefinition name="httpBasicAuthPassword" type="string" isRequired="true" displayType="password">
<csw:DisplayName>Http Basic Auth Password</csw:DisplayName>
<csw:Description>Password to access Private Key</csw:Description>
<csw:DefaultValue>
<csw:Absolute>PASSWORD</csw:Absolute>
</csw:DefaultValue>
</csw:PropertyDefinition>
</csw:PropertyDefinitionSet>
You then have these get/set methods at the bottom of the class I created.
public String gethttpBasicAuthUsername() {
return this._httpBasicAuthUsername;
public void sethttpBasicAuthUsername(String username) {
this._httpBasicAuthUsername = username;
public String gethttpBasicAuthPassword() {
return this._httpBasicAuthPassword;
public void sethttpBasicAuthPassword(String password) {
this._httpBasicAuthPassword = password;
Then I had this and the properties were available for use.
public class BasicAuthStep extends AbstractStep {
private String _httpBasicAuthUsername = null;
private String _httpBasicAuthPassword = null; -
OWSM 10g Custom step deployment
I try to deploy a custom step in OWSM 10g. Does anyone know where should I put the custom.jar and how to deploy it?
Put the JAR file in $ORACLE_HOME/owsm/lib/custom
Restart SOA Suite and away you go ... -
Custom Step for inserting SAML in OWSM
Hi All,
I am working on creating a custom step for SAML assertion in OWSM 10g.
I did the following things
1) Extented AbstractStep class, and Implemented its methods (init,destroy,execute...)
2) Compiled and created java archieve; placed in the custom folder of owsm
3) Created the step template xml with accordance to the class and imported it.
In the java class i used com.cfluent.policysteps.security.saml.InsertSAMLSVStep.
Can any one assist me in finding some documentation on the class?
Edited by: Justin Smith on Dec 1, 2010 4:08 AMI shud have posted this question in SOA Suite forum, but still, any feed back is welcomed. :)
-
OWSM Server Agent custom steps
Can someone please lead me to a document and/or provide instructions that detail how to configure a custom step (like the one in C:\product\10.1.3.1\OracleAS_1\owsm\samples\customsteps) into an existing server agent policy as one of the pipeline steps. It's not obvious which option it is in the "Step Template" drop-down menu; unless I'm missing something; I'm also thinking the custom step (code/package) itself is a template and needs to be configured so that it appears in the pipeline "Step Template" drop-down.
Thanks in advance!Found it.
http://www.oracle.com/technology/obe/fusion_middleware/owsm/custom%20steps/custom%20steps.htm -
OWSM: Modify SOAPMessage in custom step
I'm working on a custom step to provide web service authentication. For whatever reason, I've been told that to put the security token inside of of the SOAPBody and not in a header. Anyway, our request will look something like:
<SOAPBody>
<FooRequest>
<SecurityToken>'security token'</SecurityToken>
</FooRequest>
</SOAPBody>
I have no problems extracting the contents of <SecurityToken>. Once extracted, I run the token through some processing to return a username. At that point, I want to replace 'security token' with the 'username' I computed.
So my BPEL process will receive something like:
<SOAPBody>
<FooRequest>
<SecurityToken>'username'</SecurityToken>
</FooRequest>
</SOAPBody>
Problem is I don't see how to easily accomplish this. For whatever reason, my SOAPElement does not have the setValue function available. I've gone as far as detaching the element and then recreating it. But in doing so, I'm not able to get the namespaces and prefixes setup easily.
Any ideas?
I think I'm going to have to convince some people that it would be better to put the 'security token' in WS-Security's BinarySecurityToken and then adding the UsernameToken to the SOAPHeader.I'm working on a custom step to provide web service authentication. For whatever reason, I've been told that to put the security token inside of of the SOAPBody and not in a header. Anyway, our request will look something like:
<SOAPBody>
<FooRequest>
<SecurityToken>'security token'</SecurityToken>
</FooRequest>
</SOAPBody>
I have no problems extracting the contents of <SecurityToken>. Once extracted, I run the token through some processing to return a username. At that point, I want to replace 'security token' with the 'username' I computed.
So my BPEL process will receive something like:
<SOAPBody>
<FooRequest>
<SecurityToken>'username'</SecurityToken>
</FooRequest>
</SOAPBody>
Problem is I don't see how to easily accomplish this. For whatever reason, my SOAPElement does not have the setValue function available. I've gone as far as detaching the element and then recreating it. But in doing so, I'm not able to get the namespaces and prefixes setup easily.
Any ideas?
I think I'm going to have to convince some people that it would be better to put the 'security token' in WS-Security's BinarySecurityToken and then adding the UsernameToken to the SOAPHeader. -
Hi All,
I am working on creating a custom step for SAML assertion in OWSM 10g.
I did the following things
1) Extented AbstractStep class, and Implemented its methods (init,destroy,execute...)
2) Compiled and created java archieve; placed in the custom folder of owsm
3) Created the step template xml with accordance to the class and imported it.
In the java class i used com.cfluent.policysteps.security.saml.InsertSAMLSVStep.
Can any one assist me in finding some documentation on the class?I shud have posted this question in SOA Suite forum, but still, any feed back is welcomed. :)
-
How can I create a custom step that does nothing but make calls to a dll
What I'd like to end up with is a Custom step that
1. Takes several string parameters
2. Makes several calls to functions in a DLL
3. Returns and stores error codes returned from the function
I've been through the KB article "How Do I Make a Custom Step Type".
This got me about halfway there; while helpful, it didn't provide a
reference for some of the questions I had, specifically:
1. What sort of sequence action type should I start with (to use as a template)?
2. If I start with a "Call Executable", do I need to specify the module when I incorporate the step into the sequence?
3. How does one pass parameters in and out of a custom step type?
4. How does the step type report progress/errors to the report?
Thanks in advance.
MikeHi,
To interface to a DLL you will need to use either the DLL Adapter or the CVI Adapter, not the Call Executable adapter.
Have you been through the Using LabWindowsCVI with TestStand manual. This should answer all your questions, all the chapters are relevant.
Regards
Ray Farmer
Regards
Ray Farmer
Maybe you are looking for
-
Hi all, An invoice is posted with tax code I1 in header and for the expense item the tax code is "*". I drilled down on Purchase order in invoice, this shows I1 as the tax code for the expense item. When i tried to cancel this invoice in MR8M, system
-
I want to upgrade a SQL Server from 2008 R2 to 2012. When I run upgrade advisor, I get the following error messages: Rule "Valid Database compatibility level and successful connection" failed. The report server database is not a supported compatibil
-
TS4408 I can't get my contacts or pictures. phone broke
I can not get my contacts or pictures.
-
Has any one out there encountered the ksbsrv error :- 'no startup aknowledgement from forked process after 3 mins' on a windows RAC configuration using 9.2.0.5? We have had this error on one of our 4 nodes. This rendered the entire database unusable
-
Why is iTunes asking me for a credit card to purchase the update, when I've got an iTunes gift card already loaded?