Regarding SOAP Reciever with WS Security needed to be configured

Similar Messages

• How can we handle browser settings while dealing with the security ?

  Hi ,
  how can we handle browser settings while dealing with the security ?When we configured security in web.xml , during the first request the container is asking for the authentication credentials once they are provided it go's on. but when the user gives a fresh request from the second window within the same browser that time it is not asking for authentication. How can we overcome this.Is there anything to do with server configurations?
  How can we make the container no to keep the things or act like session?

  Ya... I am taking a small example need not happen always but a kind of possibility i am thinking off.
  once the user sign out and just left without closing the browser and a friend (suppose not a good friend ... just kidding...) of that user may open the same jsp or file .This time the security is breached. If that feature or property exists....
  I know what you might say ... the user will log-out before leaving where a programer might invalidate the session at the time of log out.
  Consider the case of a bad Programing or just a programer might forget to invalidate,At that time as a application administrator how can he solve that issue.
  Thanks.......
  Edited by: user8483670 on Jun 6, 2011 1:08 AM
  Edited by: user8483670 on Jun 6, 2011 1:09 AM

• SOAP Request with Web Service Security

  Hi masters of XI,
  the Oasis standard for web services security saids that exists three levels of security for web services, at higher level is Encryption, middle level is signature and at lower level is authentication with username and password inside the soap envelope.
  I need to do a SOAP Request signed with a X.509 certificate and username and password too in SAP PI 7.0 SP11. I can sign the request with X.509 certificate without problems but i can't authenticate the request with username and password in usernametoken element like saids the Oasis standard
  <wsse:Security>
  <wsse:UsernameToken>
  <wsse:Username>XXXX</wsse:Username>
  <wsse:Password>XXXXXXXXX</wsse:Password>
  </wsse:UsernameToken>
  </wsse:Security>
  How can we send UserNameToken's elements inside SOAP web service envelope
  signing with X.509 certificate also? There are any way to do it in the
  receiver agreement or receiver SOAP adapter?
  thanks.

  Hi,
  thank you very much for your answers.
  I have solved the SSL comunication and i can sign with X.509 certificates. My problem is that in the SOAP envelope of resquest signed only travels the X.509 certificate and I need to send the username security token (wsse:UsernameToken) also.
  <wsse:Security>
  <wsse:UsernameToken>
  <wsse:Username>XXXX</wsse:Username>
  <wsse:Password>XXXXXXXXX</wsse:Password>
  </wsse:UsernameToken>
  </wsse:Security>
  I can't find the solution to do it. The Netweaver documentation says that Netweaver is able to sign SOAP request with X.509 certificates and is able too for using UsernameToken as part of Oasis standard for web service security. In abap stack of NW you can assign a security profile to a web service call for signing the message or authenticate it with username/password inside SOAP envelope, but in java stack of XI i think that there is no way to do it.
  This is my Request:
  <?xml version="1.0" encoding="utf-8"?>
  <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
    <soapenv:Header>
      <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" soapenv:mustUnderstand="1">
        <wsse:BinarySecurityToken xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" wsu:Id="CertId-71968700">MIIHdTCCBl2gAwIBAgIQOq4nmg5zi4NGsIGjPUZVuTANBgkqhkiG9w0BAQUFADCCAT4xCzAJBgNVBAYTAkVTMTswOQYDVQQKEzJBZ...8d4pAJYk=</wsse:BinarySecurityToken>
        <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#" Id="Signature-104376803">
          <ds:SignedInfo>
            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
            <ds:Reference URI="#id-104309952">
              <ds:Transforms>
                <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
              </ds:Transforms>
              <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
              <ds:DigestValue>R6WE9gs+l496jHCgslgALWswEnE=</ds:DigestValue>
            </ds:Reference>
            <ds:Reference URI="#Timestamp-104310599">
              <ds:Transforms>
                <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
              </ds:Transforms>
              <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
              <ds:DigestValue>aiCTZ0WwiZQEv8zVmmf8GLu/bYA=</ds:DigestValue>
            </ds:Reference>
          </ds:SignedInfo>
          <ds:SignatureValue>YR9Q5oUA6kFFmPYOIOQPTOgTgapMbkmgdlDM/TZJ2CS8ENAntfsnmpEbpUgOPUVMkgaECog0OKvlADHP0HvJtPdm2NJljZNCCgrk3hlmmtkXkRauVuH5KRiHE5NeWT4+Uspp3ashebu0IuOO66zt4Q=</ds:SignatureValue>
          <ds:KeyInfo Id="KeyId-104377209">
            <wsse:SecurityTokenReference xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="STRId-104377346">
              <wsse:Reference URI="#CertId-71968700" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/>
            </wsse:SecurityTokenReference>
          </ds:KeyInfo>
        </ds:Signature>     
        <wsu:Timestamp xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="Timestamp-104310599">
          <wsu:Created>2008-01-16T21:28:44.081Z</wsu:Created>
          <wsu:Expires>2008-01-16T21:33:44.081Z</wsu:Expires>
        </wsu:Timestamp>
      </wsse:Security>
    </soapenv:Header>
  And this is the request I need:
  <?xml version="1.0" encoding="utf-8"?>
  <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
    <soapenv:Header>
      <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" soapenv:mustUnderstand="1">
        <wsse:BinarySecurityToken xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" wsu:Id="CertId-71968700">MIIHdTCCBl2gAwIBAgIQOq4nmg5zi4NGsIGjPUZVuTANBgkqhkiG9w0BAQUFADCCAT4xCzAJBgNVBAYTAkVTMTswOQYDVQQKEzJBZ...8d4pAJYk=</wsse:BinarySecurityToken>
        <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#" Id="Signature-104376803">
          <ds:SignedInfo>
            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
            <ds:Reference URI="#id-104309952">
              <ds:Transforms>
                <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
              </ds:Transforms>
              <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
              <ds:DigestValue>R6WE9gs+l496jHCgslgALWswEnE=</ds:DigestValue>
            </ds:Reference>
            <ds:Reference URI="#Timestamp-104310599">
              <ds:Transforms>
                <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
              </ds:Transforms>
              <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
              <ds:DigestValue>aiCTZ0WwiZQEv8zVmmf8GLu/bYA=</ds:DigestValue>
            </ds:Reference>
          </ds:SignedInfo>
          <ds:SignatureValue>YR9Q5oUA6kFFmPYOIOQPTOgTgapMbkmgdlDM/TZJ2CS8ENAntfsnmpEbpUgOPUVMkgaECog0OKvlADHP0HvJtPdm2NJljZNCCgrk3hlmmtkXkRauVuH5KRiHE5NeWT4+Uspp3ashebu0IuOO66zt4Q=</ds:SignatureValue>
          <ds:KeyInfo Id="KeyId-104377209">
            <wsse:SecurityTokenReference xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="STRId-104377346">
              <wsse:Reference URI="#CertId-71968700" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/>
            </wsse:SecurityTokenReference>
          </ds:KeyInfo>
        </ds:Signature>
  <!-- THIS IS THE PART I NEED -->
  <wsse:UsernameToken xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="UsernameToken-104312926">
          <wsse:Username>xxxxxxx</wsse:Username>
          <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText"/>
        </wsse:UsernameToken>
  <!--  -->
  <wsu:Timestamp xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="Timestamp-104310599">
          <wsu:Created>2008-01-16T21:28:44.081Z</wsu:Created>
          <wsu:Expires>2008-01-16T21:33:44.081Z</wsu:Expires>
        </wsu:Timestamp>
      </wsse:Security>
    </soapenv:Header>

• Need info regarding Oracle UCM Accounts and Security Groups behaviour

  Need information regarding Oracle UCM Accounts and Security Groups behaviour.
  Oracle UCM version: 11.1.1.5.0
  Steps:
  1. Log in with "weblogic" user and created a content with id "content1"
  2. Applied "@acc1(R)" and "TestGroup1" to the cotent created in step 1
  3. Log out
  4. Log in as "acc1user1", the user is not able to see the "content1"
  5. Log out
  6. Log in as "role1user1", the user is not able to see the "content1"
  Account and Group information:
  1. User "acc1user1" is part of "@acc1(R)"
  2. User "role1user1" is part of "role1(R)" and is mapped to "TestGroup1" in UCM
  Expected:
  Both "acc1user1" and "role1user1" should be able to see "content1" as they have at least Read permission.
  Please help me understand why the users are not able to see the content.

  ACLs, like Accounts, are optional security setting which may add on some extra functionality to mandatory security groups. Likewise, the resulting permission is taken as an intersection of SG and ACLs.
  But in the second part the number of set of users is huge (approx say 600)I don't get this completely. Does this mean that those "sets of users" (users who see the same data) are distinct and that there is 600 of such groups?
  If you read thoroughly the manual I sent earlier, there is a recommendation that there should be maximum 50 security groups, and you should use accounts, should this number be exceeded. This means you could have all the documents in one security group (and have one common role with Read permission), but combine it with accounts. ACLs are not a good choice here - their performance and manageability is much worse than of accounts. ACLs are primarily used if you expect security settings to change during the lifetime (e.g. a project manager adds temporarily rights to access an item to another user, and revokes it when the user finishes his or her work).
  Note that accounts as well as permissions of users within accounts can also be mapped externally (from LDAP/AD) and it usually follows some kind of org chart.
  I'd feel more comfortable not to speak about users, security groups, roles, etc., but about some real-life objects and scenarios.

• Howto proces SOAP Header with security info

  My incoming Soap messages contain security info in the soapenv:Header part.
  However, I only need the contents of the Body element.
  If I do NOT handle the Soap Message, then an Exception is thrown: something like: 'Do not know how to handle MustUnderstand'.
  So something must be done with the Security info in the header, but I do not know how. Do I have to remove the header completely in the Soap handler, after checking the singning? If somebody can point me to some examples of Soap header processing for this case it would be helpful.
  kind regs.
  Harry

  Hi Harry
  The header in Soap Messages is optional. Is is used to carry security information, that is security on the level of the Soap message. So when the header of an incoming Soap message is 'handled', the header is of no use any longer and can (must) be discarded. Indeed discarded, because the rest of the handlers don't expect a header in the Soap message. They extract the 'contents' from the body of the Soap message, and deliver that to you backend system.
  I will describe the header handling in the webservice: to get access to the Soap message in your code, you have to write a 'handler' Class. This Class should implement the Handler Interface or extend the abstract GenericHandler Class. To handle only the incoming Soap messages, the 'Requests', the method 'handleRequest' should be implemented. This handleRequest method has 1 parameter (mc) with type MessageContext. This parameter contains the original Soap message in Object format. You can access the original header information via:
  SOAPMessageContext smc = (SOAPMessageContext)mc;
  SOAPMessage message = smc.getMessage();
  SOAPPart part = message.getSOAPPart();
  SOAPEnvelope envelope = part.getEnvelope();
  SOAPHeader header = envelope.getHeader();
  With: Iterator iterator = header.getChildElements();
  you can navigate through the header elements and do whatever you like. If you decide that security info in this header does not match the contents of the body for instance, you can issue an Exception and log it.
  After processing the header you have to discard it with:
  header.detachNode(); and let your handleRequest method return 'true'.
  The rest of the webservice processing takes the contents from the body element, and delivers that to your application.
  To let you webservice make use of your Handler, you have to name it in the web-services.xml as follows:
  <webservices>
  <handler-chains>
  <handler-chain name="myChain">
  <handler class-name="a.b.c.MyHandler" />
  </handler-chain>
  </handler-chains>
  <web-service name="MyService">
  <operations>
  <operation ... handler-chain="myChain" .... />
  </operations>
  When the webservice 'MyService' gets a request, the handler 'MyHandler' is automatically invoked. you can have more handlers in a chain. Also you can declare more chains in your <webservices> section and refer to them from the <operation> elements.
  Items of interest:
  javax.xml.rpc.handler.soap.*
  javax.xml.rpc.handler.*
  javax.xml.namespace.*
  javax.xml.soap.*
  May be this of use for you :).

• Extended SOAP Scenario with Security

  Hi All,
  Could anyone send me the step by step procedure for "Extended SOAP Scenario with Security"?
  Regards,
  Sai.

  Hello,
  Please use the search option on SDN.
  There are no step by step guides as such and you will have to combine multiple different activities to achieve this, including set up of Server SSL on XI and then set up of the SOAP adapter to use the certificates.
  Refer to the guides on SDN for these.
  Regards
  Bhavesh

• HT5699 The country I am living in is not on the Apple Contact Support list and I need help with my security questions.

  I am currently living in Tunisia but it's not on the Apple Contact Support list. I need help with my security questions which I cannot remember the answers. There is no link to send a reset email. What do I do?

  Click here and ask the iTunes Store staff for assistance.
  (114040)

• HT5312 i need help with the security questions is there some way to get you to remind me what they were from e-mail or other wise

  I need help with the security Questions is there some way to get you to remember them by e-mail of other wise

  Read the HT5312 page that you posted from, it has instructions for how to reset them i.e. if you have a rescue email address set up on your account then steps 1 to 5 half-way down that page should give you a reset link.
  If you don't have a rescue email address then you will need to contact iTunes Support / Apple in your country to get the questions reset.
  Contacting Apple about account security : http://support.apple.com/kb/HT5699
  When they've been reset (and if you don't already have a rescue email address) you can then use the steps half-way down the HT5312 page that you posted from to add a rescue email address for potential future use

• Is there really not an email address for tech support that you (or I, if absolutely need be) could forward my below email to?  ( I really do not want to waste time being put on hold on the phone.)  Issues times 3 - Regarding iPad 2 with IOS 7:  1.)  I can

  Is there really not an email address for tech support? ( I really do not want to waste time being put on hold on the phone.)
  However, I have 3 Issues Regarding iPad 2 with IOS 7:
  1.)  I can no longer open up the apps from the update page. (I used to be
  able to &amp; it was a quick way of making certain that I wanted to keep an app
  before I updated it.
  2.)  I have many apps that I have updated since installing the new
  operating system &amp; they now have "open" symbols next to them, but I don't
  know how to get them off of my update list (since that has already been
  done to them).
  3.)  My iPad has gotten stuck or frozen more in this last week since the
  new update then has in the last 2 years put together. (It seems to be stemming from the "Updates" page as sometimes  that page is just white &amp; will not open, even though everything else opens &amp; I have an internet connection.)

  Try this  - Reset the iPad by holding down on the Sleep and Home buttons at the same time for about 10-15 seconds until the Apple Logo appears - ignore the red slider - let go of the buttons. (This is equivalent to rebooting your computer.) No data/files will be erased. http://support.apple.com/kb/ht1430http://support.apple.com/kb/ht1430
   Cheers, Tom

• Is there any internet security needed for use with the ipad 2??

  is there any internet security needed for the ipad 2?  I.e. For when you're shopping online etc?

  You don't have to purchase a mouse. You already have one, it's wireless and the only one that will work on an iPad.
   Cheers, Tom

• Sender SOAP Adapter with HTTPs call

  Hello,
  Our scenarion is ..  we will have a sender SOAP adater .. but it needs to be called using HTTPs(SSL).
  Now considering we have the certificate generated and installed ..and that integration server is HTTPs enabled....What URL should the sending system call..?
  For normal HTTP call the inbound address for inbound Adapter is: http://host:port/XISOAPAdapter/MessageServlet?channel=party:service:channel
  For the case of HTTPs just changing the htttp to https and the port number in in the calling system will suffice? Or is there other configurations that needs to be done??
  Thanks and Regards,
  Himadri

  Hi Himadri,
  Firstly as suggested by others you can call using https and give the https port in the soap adapter servler URL. Secondly you need to do the following configurations:
  1) If its PI 7.0/3.0, deploy the latest version of the SAP Java cryptography toolkit.
  2) Configure SAP PI as the server for HTTPS calls. In short
        Using the SSL Provider service:
                              a.      Select whether the J2EE Engine should:
                                 ■      Request (but not require) that the user presents a client certificate for authentication.
                                 ■      Require that client certificates are to be used for authentication.
                              b.      Import the CAu2019s root certificate into the Trusted Certification Authorities list. (Choose Add.) using the following For all the steps, link is mentioned below for XI 3.0, you can find similar ones for PI 7.0
  http://help.sap.com/saphelp_nw04/helpdata/en/f1/2de3be0382df45a398d3f9fb86a36a/content.htm
  3) If you want to enable client authentication then you would need to add the client certificate in the TrustedCA keystore view of the SAP J2EE engine.
  4) In the SOAP Adapter sender channel, configure Inbound Security level as HTTPS or HTTPs with client authentication based on your scenario.
  Best Regards,
  Pratik

• Soap request with attachment --problem in deploye to jboss useing Jdevelope

  using Jdeveloper and oc4j application server i made two application.
  In application one i exposed a web service method.In this application their is a handler class which able to handle soap request and response with attachment.
  In application two a client is sends a soap request with attachment.
  If i deploye it in oc4j it is working fine. But if i Deploye to JBoss server [i made a jboss application server connection] and then trying to send the soap request with attachment from the client application i gets the following errors--
  Exception in thread "main" javax.xml.soap.SOAPException: java.security.PrivilegedActionException: javax.xml.soap.SOAPException: Message send failed: Connection refused
       at oracle.j2ee.ws.saaj.client.p2p.HttpSOAPConnection.call(HttpSOAPConnection.java:152)
       at etrans.TripBean.a.ClientGateWay.msgEnvelope(ClientGateWay.java:50)
       at etrans.TripBean.a.ClientGateWay.main(ClientGateWay.java:60)
  Caused by: java.security.PrivilegedActionException: javax.xml.soap.SOAPException: Message send failed: Connection refused
       at java.security.AccessController.doPrivileged(Native Method)
       at oracle.j2ee.ws.saaj.client.p2p.HttpSOAPConnection.call(HttpSOAPConnection.java:148)
       ... 2 more
  Caused by: javax.xml.soap.SOAPException: Message send failed: Connection refused
       at oracle.j2ee.ws.saaj.client.p2p.HttpSOAPConnection.post(HttpSOAPConnection.java:458)
       at oracle.j2ee.ws.saaj.client.p2p.HttpSOAPConnection$PriviledgedPost.run(HttpSOAPConnection.java:865)
       ... 4 more
  Caused by: java.net.ConnectException: Connection refused
       at java.net.PlainSocketImpl.socketConnect(Native Method)
       at java.net.PlainSocketImpl.doConnect(PlainSocketImpl.java:333)
       at java.net.PlainSocketImpl.connectToAddress(PlainSocketImpl.java:195)
       at java.net.PlainSocketImpl.connect(PlainSocketImpl.java:182)
       at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:366)
       at java.net.Socket.connect(Socket.java:516)
       at java.net.Socket.connect(Socket.java:466)
       at java.net.Socket.<init>(Socket.java:366)
       at java.net.Socket.<init>(Socket.java:208)
       at javax.net.DefaultSocketFactory.createSocket(SocketFactory.java:202)
       at HTTPClient.HTTPConnection.getSocket(HTTPConnection.java:3115)
       at HTTPClient.HTTPConnection.doConnect(HTTPConnection.java:3858)
       at HTTPClient.HTTPConnection.sendRequest(HTTPConnection.java:2921)
       at HTTPClient.HttpOutputStream.close(HttpOutputStream.java:421)
       at oracle.j2ee.ws.saaj.client.p2p.HttpSOAPConnection.sendMessage(HttpSOAPConnection.java:724)
       at oracle.j2ee.ws.saaj.client.p2p.HttpSOAPConnection.post(HttpSOAPConnection.java:373)
       ... 5 more
  Am i made any mistake to deploye to jboss or it is not possiable to access the web service in such way?
  please suggest me what is the procedure to recover from this.

  Hello,
  How do you package you WS client application to be deployed in JBoss?
  The JAX-RPC clients are not that portable you may need to recompile the client with JBoss WebService implementation/tools, and check that you do have the different deployment descriptors for the client too.
  Regards
  Tugdual Grall

• Soap response with envelope

  Hi
  My PI server is able to make a soap call to the SFDC ( webservice ) ...however the response that is received within PI
  has a SOAP envelope...and hence the response mapping is going in error....because the source data type in response mapping doesnot match with the soap response ( with envelope )
    <?xml version="1.0" encoding="UTF-8" ?>
  - <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns="urn:enterprise.soap.sforce.com">
  - <soapenv:Body>
  - <upsertResponse>
  - <result>
    <created>false</created>
    <id>a0UT0000004aeaMMAQ</id>
    <success>true</success>
    </result>
    </upsertResponse>
    </soapenv:Body>
    </soapenv:Envelope>
  how do i handle this

  Hi,
  I think there is an option while configuration of SOAP adapter, where you can define, not to keep SOAP envelop. Please check the option Conversion Parameters\Do Not Use SOAP Envelope and set it as per your requirement. That might solve the problem. Here is the link which can be helpful
  http://help.sap.com/saphelp_nw04/helpdata/en/29/5bd93f130f9215e10000000a155106/content.htm
  Alternatively you need a java mapping or XSLT mapping to remove the envelop.
  Here is the java mapping code to remove SOAP envelop
  import java.io.FileInputStream;
  import java.io.FileOutputStream;
  import java.io.InputStream;
  import java.io.OutputStream;
  import java.util.Map;
  import javax.xml.parsers.DocumentBuilder;
  import javax.xml.parsers.DocumentBuilderFactory;
  import javax.xml.transform.Transformer;
  import javax.xml.transform.TransformerFactory;
  import javax.xml.transform.dom.DOMSource;
  import javax.xml.transform.stream.StreamResult;
  import org.w3c.dom.Document;
  import org.w3c.dom.Element;
  import org.w3c.dom.Node;
  import org.w3c.dom.NodeList;
  import com.sap.aii.mapping.api.StreamTransformation;
  import com.sap.aii.mapping.api.StreamTransformationException;
  public class RemoveSoapEnvelop implements StreamTransformation{
  public void execute(InputStream in, OutputStream out)
  throws StreamTransformationException {
  try
       DocumentBuilderFactory factory=DocumentBuilderFactory.newInstance();
       DocumentBuilder builderel=factory.newDocumentBuilder();
       /*input document in form of XML*/
       Document docIn=builderel.parse(in);
       /*document after parsing*/
       Document docOut=builderel.newDocument();
       TransformerFactory tf=TransformerFactory.newInstance();
       Transformer transform=tf.newTransformer();
       Element root;
       Node p;
       NodeList l;
       int mm,n1;
       //if you need to include namespace use next two lines
       //root=docOut.createElement("ns0:upsertResponse");
       //root.setAttribute("xmlns:ns0","http://connectsystems.be/MAINFR/AccDocument");
       root=docOut.createElement("upsertResponse");
       p=docIn.getElementsByTagName("upsertResponse").item(0);
       l=p.getChildNodes();
       n1=l.getLength();
       for(mm=0;mm<n1;++mm)
            Node temp=docOut.importNode(l.item(mm),true);
            root.appendChild(temp);
       docOut.appendChild(root);
       transform.transform(new DOMSource(docOut), new StreamResult(out));
  catch(Exception e)
       e.printStackTrace();
  public void setParameter(Map arg0) {
  public static void main(String[] args) {
  try{
       RemoveSoapEnvelop genFormat=new RemoveSoapEnvelop();
       FileInputStream in=new FileInputStream("C:\\Apps\\my folder\\sdn\\sd2.xml");
       FileOutputStream out=new FileOutputStream("C:\\Apps\\my folder\\sdn\\removedEnvelop.xml");
       genFormat.execute(in,out);
  catch(Exception e)
  e.printStackTrace();
  input xml file sd2.xml
    <?xml version="1.0" encoding="UTF-8" ?>
  <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns="urn:enterprise.soap.sforce.com">
  <soapenv:Body>
  <upsertResponse>
  <result>
    <created>false</created>
    <id>a0UT0000004aeaMMAQ</id>
    <success>true</success>
    </result>
    </upsertResponse>
    </soapenv:Body>
    </soapenv:Envelope>
  Here is the output xml removedEnvelop.xml
    <?xml version="1.0" encoding="UTF-8" ?>
  <upsertResponse>
  <result>
    <created>false</created>
    <id>a0UT0000004aeaMMAQ</id>
    <success>true</success>
    </result>
    </upsertResponse>
  Helpful articles on java mapping for PI 7.1
  http://wiki.sdn.sap.com/wiki/display/XI/SampleJAVAMappingcodeusingPI7.1+API
  You can also try following XSLT mapping to get the same output as java mapping
  <xsl:stylesheet version="1.0"
  xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"
  xmlns:xsl="http://www.w3.org/1999/XSL/Transform"
  exclude-result-prefixes="SOAP-ENV">
  <xsl:output method="xml" version="1.0" encoding="UTF-8" indent="yes" />
  <xsl:template match="/">
  <xsl:for-each select="SOAP-ENV:Envelope/SOAP-ENV:Body">     
  <upsertResponse>
  <result>
       <xsl:variable name="var" select="normalize-space(.)"></xsl:variable>
       <xsl:variable name="tokenizedSample" select="tokenize($var,' ')"/>
      <created><xsl:value-of select="$tokenizedSample[1]"/></created>
      <id><xsl:value-of select="$tokenizedSample[2]"/></id>
      <success><xsl:value-of select="$tokenizedSample[3]"/></success>
  </result>
  </upsertResponse>
  </xsl:for-each>
  </xsl:template>
  </xsl:stylesheet>
  Other than these please refer to following links for further examples on the topic
  Remove SOAP-ENV tags from xml RECEIVER RESPONSE payload (XSL needed?)
  Remove SOAP Envelop using XSLT  mapping.
  Hope this helps your cause.
  regards
  Anupam

• Error in Soap Reciever Adapter?

  Hi all
  Please do suggest resolution of this error in SOAP Reciever adapter
  2006-07-04 04:50:47 Error SOAP: error occured: java.io.IOException: invalid content type for SOAP: TEXT/HTML
  2006-07-04 04:50:47 Error Exception caught by adapter framework: invalid content type for SOAP: TEXT/HTML
  2006-07-04 04:50:47 Error Delivery of the message to the application using connection AFW failed, due to: invalid content type for SOAP: TEXT/HTML.
  with regards
  subrato kundu

  Hi,
  Please look at this thread:
  DeliveryException:: invalid content type for SOAP: TEXT/HTML
  Regards
  Vijaya

• How to send SOAP Message with Oracle B2B

  Hi everyone,
  I need your help to send out from Oracle B2B a SOAP message with attachment of any type of file (image, pdf, etc.). Possibly using a SOA composite application or another way, it doesn't matter. I already create an ebMS partnership with a custom document protocol and I already create a working SOA composite application to send only text message to my trading partner. I have tried this solution: http://anuj-dwivedi.blogspot.it/2011/04/ebms-attachment-handling-in-oracle-b2b.html but it doesn't work for my case... It is to be noticed that I don't give any schema to my component in the SOA application explained firstly, and I select opaque as schema.
  Thanks to all, regards
  Nello

  Hi Anuj and thanks for your help,
  I need to send an ebXML message, with SOAP, and I try to send it with a .war application written in jsp connecting to http://10.85.28.24:8001/b2b/transportServlet to send the SOAP message. The errors reported is:
  javax.xml.soap.SOAPException: Unable to receive message. Received a response from url: http://10.85.28.24:8001/b2b/transportServlet with HTTP status 200 and SOAP content-type: null.
  the code I write is the following (to evaluate the two "null" in the super constructor)
  <%!
  public class EBMSSender extends SOAPRunner
  private String cpaId;
  private String service;
  private String action;
  private String mess;
  private ArrayList<String> allegati=null;
  public EBMSSender(String cpaId, String service, String action, String mess, ArrayList<String> file)
  super("http://10.85.28.24:8001/b2b/transportServlet","null", "null");
  this.cpaId = cpaId;
  this.service = service;
  this.action = action;
  this.mess=mess;
  this.allegati=file;
  @Override
  protected void prepareRequest(SOAPMessage soapMessage, SOAPBody soapBody) throws SOAPException
  soapBody.addChildElement(SOAPUtility.createElement("CPAId", getNsPrefix(), getNsURI(),"agr3"));
  soapBody.addChildElement(SOAPUtility.createElement("service", getNsPrefix(), getNsURI(),"OracleService"));
  soapBody.addChildElement(SOAPUtility.createElement("action", getNsPrefix(), getNsURI(),"Oracletohermesb"));
  soapBody.addChildElement(SOAPUtility.createElement("serviceType", getNsPrefix(), getNsURI(),"OracleServiceType"));
  soapBody.addChildElement(SOAPUtility.createElement("convId", getNsPrefix(), getNsURI(), "convId"));
  soapBody.addChildElement(SOAPUtility.createElement("fromPartyId", getNsPrefix(), getNsURI(), "Oracle"));
  soapBody.addChildElement(SOAPUtility.createElement("fromPartyType", getNsPrefix(), getNsURI(), "Name"));
  soapBody.addChildElement(SOAPUtility.createElement("toPartyId", getNsPrefix(), getNsURI(), "Hermes-b"));
  soapBody.addChildElement(SOAPUtility.createElement("toPartyType", getNsPrefix(), getNsURI(), "Name"));
  attach(soapMessage);
  protected void attach(SOAPMessage soapMessage)
  String h=mess;
  DataHandler dh;
  AttachmentPart ap = soapMessage.createAttachmentPart(h,"text/plain");
  soapMessage.addAttachmentPart(ap);
  if(allegati!=null)
  for(int i=0; i<allegati.size();i++)
  dh=new DataHandler(new FileDataSource(new File(allegati.get(i))));
  ap=soapMessage.createAttachmentPart(dh);
  ap.setContentType(new MimetypesFileTypeMap().getContentType(allegati.get(i)));
  ap.setContentLocation(allegati.get(i));
  soapMessage.addAttachmentPart(ap);
  @Override
  protected void processFault(SOAPFault soapFault) throws SOAPException{}
  @Override
  protected Object processResponse(SOAPMessage responseMessage,SOAPBody responseBody) throws SOAPException
  SOAPElement messageId = SOAPUtility.getChild(responseBody, "message_id", getNsURI());
  return null;
  %>
  The code works fine on the other trading partner side to send ebXML message to Oracle B2B. Apart from this solution (however,it would be my favorite), I find your blog and I try to implement your solution. It works: it sends files with only text payload to the other trading partner without any problem, but if I try to send for example an image in byte array written in a file .txt, the ebxml file received has the byte array with wrong characters. it may be that I have not provided the xsd schema? in case if I wanted to send an ebXML message with text and attachments, what xsd schema do I need to provide?
  or is there another way to implement a SOA composite application to send SOAP messages with attachments?
  Thank for your help!, regards
  Nello