Securing webservice call from to siebel

Similar Messages

• Need help regarding configuring the WebService Call from RTD to Siebel

  Hi All,
  Can someone help me with the information on how do i configure a Webservice Call from RTD to Siebel?
  Any high-level or granular details on this would be very helpful as I am new working on this product. How can a jax-ws be utilized to achieve the same?
  Thanks in advance.
  Best Regards,
  Hariharan

  If you actually need a portal service though, this will not work. However, you could have the portal service return a Document object, which is basically the text of the HTML file you want to display. Then, when calling the portal service, you can simply output the text to the IPortalComponentResponse object
  I hope this helps
  Darrell

• Webservice call from PCo; FaultException: Authorization fail

  Hi,
  I am making a ME Webservice call from PCo.
  I have configured Destination System, added a service in Configuration tab.
  Using 'Test request message', i tested the call with all required inputs, the object is created in ME system.
  When the same service is triggered from PLC > PCo, the call fails and i see the following message in Log tab.
  UserName/password is correct..
  All the required systems are running.
  Log:
  ME Dispatcher Could not dispatch Message [id = 75c405c5-24d4-4f70-b19a-87f6b6ae0413].
  FaultException: Authorization failed. Please check security log for details.
  Server stack trace:
     at System.ServiceModel.Channels.ServiceChannel.HandleReply(ProxyOperationRuntime operation, ProxyRpc& rpc)
     at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
     at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs)
     at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
     at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)
  Exception rethrown at [0]:
     at SAP.Manufacturing.Connectivity.WSDestination.WSDestination.Send(Guid notificationID, Dictionary`2 requestValues)
     at SAP.Manufacturing.Connectivity.WSDestination.WSDestination.Send(NotificationMessage message)
     at SAP.Manufacturing.Connectivity.Dispatcher.ProcessMessage(NotificationMessage message, DestinationBase destination)
     at SAP.Manufacturing.Connectivity.Dispatcher.DispatchMessageExecute(Message message, Boolean unlockMessage, Boolean& stopDispatcher)
  Am I missing anything?
  Version:
  ME: 6.1.4.9
  PCo:  2.3
  Thanks,

  Hello Shridhar, I guess you can  use use different user for authentication and user data inside XML request.
  In MII, I have used MESYS for authentication and other user name inside the request XML. But you need to make sure user name inside XML has ME_Integrator role.
  <me:UserId>USERID</me:UserId>
  Hope this helps.
  Thanks
  Hari

• Issue in Calling https webservice calls from Weblogic

  Hi,
  My application is hosted on the weblogic server.
  I am trying to call http basic authenticated webservice from my application.
  But I am not able to access it. I am getting error.
  Exception occured while calling WS : 2 counts of InaccessibleWSDLException.
  com.sun.xml.ws.wsdl.parser.InaccessibleWSDLException: 2 counts of InaccessibleWSDLException.
  java.io.FileNotFoundException: Response: '401: Unauthorized' for url: 'https://somehost/ws/xyz.wsdl'
  java.io.FileNotFoundException: Response: '401: Unauthorized' for url: 'https://somehost/ws/xyz.wsdl?wsdl'
  I have added the code to authenticate the request. But it seems that it is not working from weblogic.
  class MyAuthenticator extends Authenticator {
  @Override
  protected PasswordAuthentication getPasswordAuthentication() {
  PasswordAuthentication pwa = new PasswordAuthentication(
  "uname",
  "pwd".toCharArray());
  return pwa;
  Authenticator authenticator = new MyAuthenticator();
  Authenticator.setDefault(authenticator);
  PaymentService webForm=new PaymentService(wsURL, getDefaultQName(PaymentService.class)); ---> Exception occurs here.
  PaymentWebForm sessionService=webForm.getPaymentSoap11();
  response=sessionService.getSession(wfSessionRequest);
  Please help. This is not working only from weblogic however if I execute it from standalone Java client then it worked without any issue.
  Is there any configuration needs to be done in Weblogic for secure webservice calls? Please advise.
  Thanks,
  -Pankaj Chomal

  The same probolem happened in my side.
  1.web.xml
  <security-role>
  <description>role for acess the WS api</description>
  <role-name>Admin</role-name>
  </security-role>
  <security-constraint>
  <web-resource-collection>
  <web-resource-name>web service api</web-resource-name>
  <url-pattern>/ws/*</url-pattern>
  </web-resource-collection>
  <auth-constraint>
  <role-name> Admin</role-name>
  </auth-constraint>
  <user-data-constraint>
  <transport-guarantee>NONE</transport-guarantee>
  </user-data-constraint>
  </security-constraint>
  <login-config>
  <auth-method>BASIC</auth-method>
  </login-config>
  2.weblogic.xml have you done?
  <security-role-assignment>
  <role-name>Admin</role-name>
  <principal-name>Administrators</principal-name> //weblogic server group
  </security-role-assignment>
  3.1 calling in a Main method , it works!
  Authenticator.setDefault(new Authenticator() {
       protected PasswordAuthentication getPasswordAuthentication() {
       return new PasswordAuthentication("wsuser", "12345678".toCharArray());
  HrWebService hws = new HrWebServiceService().getHrWebServicePort();
  System.out.println("Result:====="+ hws.getEmpInfoByQryContent("100384"));
  com.jl.ws.hello.AuthHello ah = new AuthHelloImplService().getAuthHelloImplPort();
       System.out.println(ah.say("Edward"));
  3.2 each method as following(including the method above mentioned) called failed in a jsp page, any good idea?
  method a:
  javax.security.auth.Subject mySubject = weblogic.security.services.Authentication.login(
            new weblogic.security.URLCallbackHandler("wsuser", "12345678"));
  weblogic.servlet.security.ServletAuthentication.runAs(mySubject, request);
  method b:
  javax.security.auth.callback.CallbackHandler handler = new weblogic.security.URLCallbackHandler("wsuser", "12345678");
  javax.security.auth. Subject mySubject = weblogic.security.services.Authentication.login(handler);
  weblogic.servlet.security.ServletAuthentication.runAs(mySubject, request);
  method c:
  weblogic.servlet.security.ServletAuthentication.login("wsuser", "12345678", request,response);
  4. excpeiton message
  javax.xml.ws.WebServiceException: Failed to access the WSDL at: http://localhost:7001/jlerp/ws/hr/hrSearch?wsdl. It failed with:
       Response: '401: Unauthorized' for url: 'http://localhost:7001/jlerp/ws/hr/hrSearch?wsdl'.
       at com.sun.xml.ws.wsdl.parser.RuntimeWSDLParser.tryWithMex(RuntimeWSDLParser.java:172)
       at com.sun.xml.ws.wsdl.parser.RuntimeWSDLParser.parse(RuntimeWSDLParser.java:153)
       at com.sun.xml.ws.client.WSServiceDelegate.parseWSDL(WSServiceDelegate.java:284)
       at com.sun.xml.ws.client.WSServiceDelegate.(WSServiceDelegate.java:246)
       at com.sun.xml.ws.client.WSServiceDelegate.(WSServiceDelegate.java:197)
       at com.sun.xml.ws.client.WSServiceDelegate.(WSServiceDelegate.java:187)
       at weblogic.wsee.jaxws.spi.WLSServiceDelegate.(WLSServiceDelegate.java:73)
       at weblogic.wsee.jaxws.spi.WLSProvider$ServiceDelegate.(WLSProvider.java:515)
       at weblogic.wsee.jaxws.spi.WLSProvider.createServiceDelegate(WLSProvider.java:103)
       at weblogic.wsee.jaxws.spi.WLSProvider.createServiceDelegate(WLSProvider.java:95)
       at weblogic.wsee.jaxws.spi.WLSProvider.createServiceDelegate(WLSProvider.java:71)
       at javax.xml.ws.Service.(Service.java:56)
       at com.jl.ws.hr.HrWebServiceService.(HrWebServiceService.java:53)
       at com.jl.ws.HrSearchClient.hell0(HrSearchClient.java:32)
       at jsp_servlet._de._jsp.__dejjuserlist._jspService(__dejjuserlist.java:136)
       at weblogic.servlet.jsp.JspBase.service(JspBase.java:35)
       at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
       at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
       at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3650)
       at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
       at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2268)
       at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2174)
       at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1446)
       at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
       at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
  Caused by: java.io.FileNotFoundException: Response: '401: Unauthorized' for url: 'http://localhost:7001/jlerp/ws/hr/hrSearch?wsdl'
       at weblogic.net.http.HttpURLConnection.getInputStream(HttpURLConnection.java:474)
       at weblogic.net.http.SOAPHttpURLConnection.getInputStream(SOAPHttpURLConnection.java:37)
       at java.net.URL.openStream(URL.java:1010)
       at com.sun.xml.ws.wsdl.parser.RuntimeWSDLParser.createReader(RuntimeWSDLParser.java:842)
       at com.sun.xml.ws.wsdl.parser.RuntimeWSDLParser.resolveWSDL(RuntimeWSDLParser.java:289)
       at com.sun.xml.ws.wsdl.parser.RuntimeWSDLParser.parse(RuntimeWSDLParser.java:138)
       at com.sun.xml.ws.client.WSServiceDelegate.parseWSDL(WSServiceDelegate.java:284)
       at com.sun.xml.ws.client.WSServiceDelegate.(WSServiceDelegate.java:246)
       at com.sun.xml.ws.client.WSServiceDelegate.(WSServiceDelegate.java:198)
       at com.sun.xml.ws.client.WSServiceDelegate.(WSServiceDelegate.java:190)
       at weblogic.wsee.jaxws.spi.WLSServiceDelegate.(WLSServiceDelegate.java:62)
       at weblogic.wsee.jaxws.spi.WLSProvider$ServiceDelegate.(WLSProvider.java:515)
       at weblogic.wsee.jaxws.spi.WLSProvider.createServiceDelegate(WLSProvider.java:103)
       at weblogic.wsee.jaxws.spi.WLSProvider.createServiceDelegate(WLSProvider.java:95)
       at weblogic.wsee.jaxws.spi.WLSProvider.createServiceDelegate(WLSProvider.java:71)
       at javax.xml.ws.Service.(Service.java:56)
       at com.jl.ws.hr.HrWebServiceService.(HrWebServiceService.java:54)
       at com.jl.ws.HrSearchClient.hell0(HrSearchClient.java:32)
       at jsp_servlet._de._jsp.__dejjuserlist._jspService(__dejjuserlist.java:138)
       ... 10 more
  any info is thankful.
  Edited by: EdwardXiao on Jan 8, 2013 10:48 PM

• Secured JDBC call from PI

  Hi,
  Please let me know the possibilities of secured JDBC call from PI. In JDBC adapter configuration, is it possible to achieve secured connection to Database server?
  I saw few similar threads in Forums but did not get much information.
  Thanks,
  Geetha

  ?Please let me know the possibilities of secured JDBC call from PI. In JDBC adapter configuration, is it possible to achieve secured connection to Database server?
  Yes, it is absolutely possible to secure the jdbc connection to database server.  You might have to do few things...
  Please follow this link
  http://wiki.sdn.sap.com/wiki/display/XI/EncryptioninscenariosinvolvingJDBCAdapterwithOracleDatabase
  You can encrypt  all the connection parameters including user name and password  between jdbc adapter and database server.  Use advance tab and do the recommended changes given in the above link.Similarly on the database server you have to do the same. You might have to take help from dba to set the similar settings on the database level too.

• Endeca webservice call from different Application.

  I am trying to call the Endeca (v2.2.2) Webservice, using the client generated class file from the wsdl file (conversation.wsdl) and pass the query to get the result. Steps so far did
  •     Use apache cxf codegen plugin 2.7.0 to generate the client classes using the above wsdl.
  •     Written junit test case for client class and send the query to server. I can connect to the server but getting back the ConversationFault: Sequence has length 0 but must have length 1
  •     The only method I can use to call from the client is conversationPort.query(request), which is generated by cxf wd12java
  •     Following is the line of code from the client class
  ContentElementConfig config = new ContentElementConfig();
  config.setHandlerFunction("AS select max(p_common_date_epoch) as 'MaxDate' where Social_Media_Type = 'Twitter' group by interaction_author_username, interaction_text, interaction_link, Klout_Score, Followers_Count, DocumentSentiment, calculated_entity_sentiment, SalienceSentiment order by MaxDate desc, Followers_Count desc page (0,50)");
  Request request = new Request();
  request.setState(null);
  request.getContentElementConfig().add(config);
  Client Call: Results results = webServiceClient.readQueryResults(request); // this method internally calls conversationPort.query(request).
  Any thoughts or recommendation please advise.
  Edited by: user4993272 on May 9, 2013 10:57 AM

  Hi,
  i have two application take as App1 and App2 .i want to make a webservice call from App1 to App2 . through this webservice call i will pull the data from App2 and populate the data inside a .jspx file.
  i am not understanding how i will do that.
  A service wont allow you to access the live instance of an application and instead create its own data session. So while you can query data that belongs to App2, you wont be able e.g. to access a users uncommitted data changes
  Frank

• Fedex webservice call from OOD env

  Hi all,
  I am trying to make fedex webservice call from OOD apps env.But i am getting below error.Same code with same data works fine from jdeveloper project.
  Is any setup requried to make to work from application.Is OOD is having any restrictions in calling webservice.
  Please suggest to fix this issue.
  Thanks,
  ashok
  AxisFault
  faultCode: {http://schemas.xmlsoap.org/soap/envelope/}Server.userException
  faultSubcode:
  faultString: java.net.ConnectException: Connection timed out
  faultActor:
  faultNode:
  faultDetail:
       {http://xml.apache.org/axis/}stackTrace:java.net.ConnectException: Connection timed out
       at java.net.PlainSocketImpl.socketConnect(Native Method)
       at java.net.PlainSocketImpl.doConnect(PlainSocketImpl.java:333)
       at java.net.PlainSocketImpl.connectToAddress(PlainSocketImpl.java:195)
       at java.net.PlainSocketImpl.connect(PlainSocketImpl.java:182)
       at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:366)
       at java.net.Socket.connect(Socket.java:519)

  If your code works from JDeveloper and does not works when you deploy the code in an app server, and fails with connection timeout, the issue may be related to the way you have setup your proxy in JDeveloper, which need to be replicated in the JVM running your code in the middle tier.
  A good place to start is the proxy setting in JDeveloper, under Tools >> Prefernces >> Web Browser and Proxy.
  Best,
  - Eric

• Webservice call from one application to another application

  Hi all,
  I am new in ADF and using jdeveloper version 11.1.1.0.0. Now I am working in an application where my steps are as follows,
  i have two application take as App1 and App2 .i want to make a webservice call from App1 to App2 . through this webservice call i will pull the data from App2 and populate the data inside a .jspx file.
  i am not understanding how i will do that.
  please give your useful comments.

  Hi,
  i have two application take as App1 and App2 .i want to make a webservice call from App1 to App2 . through this webservice call i will pull the data from App2 and populate the data inside a .jspx file.
  i am not understanding how i will do that.
  A service wont allow you to access the live instance of an application and instead create its own data session. So while you can query data that belongs to App2, you wont be able e.g. to access a users uncommitted data changes
  Frank

• Session between multiple Webservice calls from PI7.0

  Hello XI SDNers,
  I am unable to overcome my Webservice session problem using SOAP (Axis) adapter. My scenario is as follows:
  I am calling a external Webservice deployed in Axis webservice engine from PI7.0, during my first call:  I call synchronous "Login" webservice and I became the response "User is Logged in"
  during my second synchronous call "GetItem", the webservice returns "The user doesn't have valid session". The two synchronous calls are executed from same scenario one after another!
  I lost my session after the "Login". Is there any way in PI 7.0 to maintain the session?
  Note: I tried the same scenario using XML SPY SOAP client, it is working!!!  it is maintaining the session between multiple webservice calls.
  Is there any suggestions to overcome this problem?
  Thanks and regards,
  Satish.

  Hi Satish,
     We are working on the same sort of scenarios, where we have to call more than one webservice in a sequential fashion using the same session id details.
      What we did was we built new xsds adding session details node using the webserive request and response xsds. And we are maintaining a sessions table which contains session id and  status fields in PI. So we send webservice request with the session id details. We wrote an UDF to get the session details from PI and set the status field as busy so that no other request uses the same session details.
     Webserive response again contains the sessions details which can be used for the next webservice request.
    Finally after all the calls set back the status to Active in PI table.
  Webservice Calls From a User Defined Function
  /people/bhavesh.kantilal/blog/2006/11/20/webservice-calls-from-a-user-defined-function
  Hope this helps.
  Thanks,
  Vijaya.

• "Error attempting to read file" at Webservice call from Adobe Form.

  Hi Experts,
  We have designed a Webservice form a Function Module in ECC 6.0, In the soamanager transaction the webservice works fine. But at the time of call from the Adobe form, it gives an error stating that "Error attempting to read from file" and then the URL of the Webservice to be excuted.
  and if i attempt to open that file, it gives me this error:
  - <soap-env:Envelope xmlns:soap-env="http://schemas.xmlsoap.org/soap/envelope/">
    <soap-env:Header />
  - <soap-env:Body>
  - <soap-env:Fault>
    <faultcode>soap-env:Server</faultcode>
    <faultstring xml:lang="en">SRT: Wrong Content-Type and empty HTTP-Body received</faultstring>
  - <detail>
  - <ns:SystemFault xmlns:ns="http://www.sap.com/webas/710/soap/runtime/abap/fault/system/">
    <Host>undefined</Host>
    <Component>COREMSG</Component>
  - <ChainedException>
    <Exception_Name>CX_SOAP_CORE</Exception_Name>
    <Exception_Text>SRT: Wrong Content-Type and empty HTTP-Body received</Exception_Text>
    </ChainedException>
    </ns:SystemFault>
    </detail>
    </soap-env:Fault>
    </soap-env:Body>
    </soap-env:Envelope>
  In case I give my user the "SAP_ALL" role, this all works fine, so i think it is somewhere related to a missing role to be assigned.
  any clues..??
  any help would be appreciated, Please help..
  Thanks,
  Amita

  Hi Juergen,
  I am using it as a WSDL based data connection.
  How do i check this WSDL through a web browser? I have checked it through SICF Transaction code, It gives the output in explorer as given in the first post of this thread..
  Please help me resolving this issue, i feel that this issue is somewhere related to the role assignment of the user as if i provide this user an authorization of SAP_ALL then everything starts working fine, but after removing SAP_ALL this error is encountered, do u hav any pin points on this??
  Thanks
  Amita

• Webservice call from WDJ component using SSO

  Hi All,
  I need to call a webservice from a WD Java component.
  Now this is an 3rd party external WS (not an ABAP one)
  That 3rd partysystem is a web based system with user accounts with password
  The userid of portal is the same as the userid of the 3rd party system.
  The requirement is that all WS calls from WDJ to the WS should use the individual account of the 3rd party to call the WS function... in other words not use a common service user..
  So
  portal login  = user1/pass123
  3rdpartylogin = user1/abc123
  When WDJ component invokes WS method during authentication it should use 3rdparty login userid i.e. user1 to invoke method
  Have any of you worked on soemthing similar ?
  Prem

  Still to be tried out

• Webservice call from outlook

  Hi,
  I need your suggestions on web services call from outlook.
  I have a requirement like where user will send a mail from outlook and it should trigger web-service in SAP.
  Also i dont want this webservice to be exposed for internet since both exchange server and sap application server are on same network.
  Please suggest me is their is any way to get it done.
  Thanks,
  Rahul

  Hello Shridhar, I guess you can  use use different user for authentication and user data inside XML request.
  In MII, I have used MESYS for authentication and other user name inside the request XML. But you need to make sure user name inside XML has ME_Integrator role.
  <me:UserId>USERID</me:UserId>
  Hope this helps.
  Thanks
  Hari

• Securing Procedure Called from URL

  Hello all,
  I've read-up on creating procedures that can be called directly via a URL (ie. http://localhost:8080/apex/myschema.helloworld) by granting execute to anonymous and adding "MYSCHEMA.HELLOWORLD" to wwv_flow_epg_include_mod_local. I have a test procedure running.
  My question is, does anyone have any suggestions on how one might do this securely? Specifically I'm thinking I'd like to use one of these procedures to generate an XML stream of location information into a Google Map on one of my pages. As long as a user is in the app, I'm good because I know the user logged-in to get there. My concern is that some smart guy would get hold of the URL, pop it in the address bar and now has all the location data which may be sensitive.
  Couple things I tried:
  - granting execute to just apex_public_user incorrectly thinking that's what an ApEx application runs as (I forgot it runs as anonymous which is the same as someone who isn't logged in at all)
  - checking the value of v('APP_SESSION') inside the procedure, thinking if there's a session then the user must have logged-in - but it comes back null whether called from inside or outside the application. I suspect that when calling the procedure via a URL even from inside the app (like thru an iframe in an HTML region), it must kick off a new session.
  Any thoughts or suggestions, even something other than using a direct procedure call at all? My main priority is doing this securely.

  Hi,
  I have had similar requirements. I'm not sure I've solved it properly yet, but here's the sort of thing I did:
  1 - I updated the procedure to receive a parameter - this will be the ID of the user
  2 - In my database, I created a table that holds nothing but the IDs and a datetime value.
  3 - When the page loads that the user uses to get to this procedure, I update datetime value for the record for that user to, say, now + 1 minute
  4 - When called, the procedure then checks the ID in that table to see if the datetime value is &gt; now - if it is, then the download proceeds, otherwise, nothing
  You could probably also do something with a random number created when the page loads. Pass this as another parameter and check it in the process.
  Andy

• BRM Webservice call from BPM as an automated activity in CE 7.2

  Dear All,
  A simple BRM ruleset is created and published as a webservice. The WSDL is available at NWA ->SOA Management-> Application and Scenario Communication-> Single Service Administration.
  The webservice test in WSNAVIGATOR provides the expected results.
  In the BPM process flow, an automated activity has been created for the webservice call. This activity contains the 'Service Interface' and 'Service Reference' of the imported WSDL.
  Issue:
  When the process is started, the BRM webservice call results in error. The error is not visible in the log but the process flow shows a green symbol on the automatic activity, thereby indicating that the webservice call does not end and the process remains in 'In progress' state.
  Can you please provide your inputs?
  Thanks,
  Pritish

  Dear All,
  The issue is resolved with the help of following document.
  http://www.sdn.sap.com/irj/scn/index?rid=/library/uuid/9009be68-1e9a-2c10-fd91-8f5fcb00474c.
  Regards,
  Pritish

• XML as result from webService call from JSP

  I have a jsp page, where I will invoke a WebService call, which will return
            a big XML object back to me, of which I need to select few key-value pair as
            display item in a table only as result.
            Any idea how to achieve this,
            Thanks & have a nice day!
            Vikky

  I have a jsp page, where I will invoke a WebService call, which will return
            a big XML object back to me, of which I need to select few key-value pair as
            display item in a table only as result.
            Any idea how to achieve this,
            Thanks & have a nice day!
            Vikky