Using OWSM to secure Services based on http binding

Hi,
We are using OWSM Gateway in DMZ as a proxy server to communicate with systems beyond the firewall. We have two specific requirements:
1) The BPEL/ESB services should invoke http POST/GET services on the third party systems which are located beyond the firewall.
2) Third party services uses http POST/GET to access the BPEL/ESB services.
My queries are:
Are these possible with OWSM?
For reqmnt 1, when we tried with OWSM we are getting the following error
"No policies found for service "SID0003001/servletclasstest?Locality=Chennai.Make sure the service is registered correctly and gateway policies are up to date"
Can any one help us out with solution. We are running on tight timelines any help is highly appreciated

Have you resolved your issue. I am in the same situation. Can you please let me know how you have resolved your issue.

Similar Messages

  • Difference between Direct binding ,  Web service Adapter and HTTP Binding

    Can any one help what is the differnce between
    *1) Direct binding*
    *2) Webservice Adapter*
    *3) HTTP Binding*
    I am trying to use the above service adapters as references in BPEL.
    I had invoked a web service hosted in OSB from BPEL via web service adapter and was successful
    On going through few docs came through the other two service adapters but was not able to figure out what exactly is the differnce .
    I learnt +"*Direct binding*"+ can be used to call OSB+ . How does it vary from Webservice Adapter+

    hi Eric ,
    Thanks for clarification ..
    OSB does not generate WSDL and web service adapter in BPEL mandates WSDL .
    I had to create WSDL separately and then feed into Web service adapter in BPEL to call OSB Proxy service. Though successful , felt its not an better approach.
    Please advice is there any way thatWSDL is generated in OSB itself . .if i try to create webservice on Proxy service the wsdl resulted from it has only binding and porty type .
    Is it the same case for ++Direct binding++ .I assume it should not be the case

  • Call HTTP POST Service from SOA HTTP Binding (one - way)

    Hi All
    Why doesn't HTTP Binding support one-way Reference (It only allows request-response in outbound mode)? I need to call a one way HTTP post service from BPEL.
    How can i achieve this with HTTP-Binding. This one way HTTP POST service is on OSB. Please help!
    Thanks!

    Look at 10g samples under tutorials/702.bindings.

  • Service Callout to HTTP Post Business Service?

    Hi,
    I have created a "Business Service" with following config,
    1) Any XML Service
    2) Prtocol- HTTP
    3) HTTP Request Method- Post.
    I have created a Proxy Service , which is "Any XML Service" based on HTTP ptotocol.
    inside the message flow of proxy service i am routing to the Above Business Service passing query parameter. The business service returns an XML.
    How do i make a service callout to the business service assing a query string?
    I need this functionality to work because i have to call multiple business service (endpoint is a jsp which accepts query string) inside a proxy service and retreive xml from response , merge them and send it back to the client(invoking proxy service).
    Thanks,
    Anup

    Hi Gregory,
    In fact when i used route node to invoke a business service i modified "URL dynamically by setting the value in the pipeline variable $outbound", it worked here.
    Same i tried on Service Callout, it did not work. Also when we create a service callout action it expects us to select either "confugure soap body" or "configure payload document" followed by
    1) Request Document variable
    2) Response Document variable.
    What parameter should i set for above fields?
    Thanks,
    Anup

  • CKIP / LEAP on Secure Services Client 5.1.0.39

    Hello,
    I am in the middle of converting over to a LWAPP infrastructure as well as converting over to using the Cisco Secure Services Client.
    Because I have a very large number of IOS based AP's still in service that are running LEAP with CKIP, I have a need to simultaneously support both the LWAPP infrastructure and the old IOS based infrastructure at the same time (at least for now).
    I have the SSC working fine with my LWAPP WPA2/PEAP infrastructure, however I cannot get it to work on the old IOS LEAP/CKIP infrastructure. There do not appear to be any CKIP options in the SSC, and I have tried all of the other options (including all of the TKIP options) and none seem to work.
    So my question is, does the SSC v. 5.1.0.39 (the latest version) not support CKIP, or am I missing something.
    Thanks for any advice.
    Neil

    After getting no response here I opened up a TAC case with this exact same question.
    Per the TAC: CKIP is not supported in the CSSC.

  • Securing Web Services based on simple Java Classes

    Hi @all!
    We`ve got the following problem.
    There`s a .NET client calling our Web services deployed on Bea Weblogic 8.1 (without
    SP).
    The Web Services are generated by the ANT task servicegen. They are based on simple
    Java classes containing the service methods as public members.
    Is there a possibility to secure these methods without using the console menu
    item "Define Security Policy" ?
    We can`t use this menu because it has got a javascript bug with methods returning
    an array.
    Thanks in advance for help.
    Michael

    Hi Michael,
    Could you use transport level security, SSL [1]?
    I'm not sure what limitation you are experiencing with the console? Is
    there a traceback? Have you contacted customer support on this issue?
    Thanks,
    Bruce
    [1]
    http://edocs.bea.com/wls/docs81/webserv/security.html#1053203
    Michael Albrecht wrote:
    >
    Hi @all!
    We`ve got the following problem.
    There`s a .NET client calling our Web services deployed on Bea Weblogic 8.1 (without
    SP).
    The Web Services are generated by the ANT task servicegen. They are based on simple
    Java classes containing the service methods as public members.
    Is there a possibility to secure these methods without using the console menu
    item "Define Security Policy" ?
    We can`t use this menu because it has got a javascript bug with methods returning
    an array.
    Thanks in advance for help.
    Michael

  • SErvice based invoice using bapi

    Hi Gurus,
    I am creating an invoice for a services based PO.
    PO contains 1 item with 2 services.
    A Service entry sheet is also created for the same.
    now I want to post the invocie for this service entry sheet.
    but it says an error "Enter a reference to a valid goods receipt (line 000001) ".
    Pleaes let me know how should I give the inputs to the BAPI.
    Regards,
    Renuka

    Hi Renuka,
    Which BAPI are you using?
    Regards,
    Ajay

  • Extract account Based COPA from R/3 using Business Object data services

    Hello,
    We have a requirement to extract Account Based COPA from SAP R/3 to Teradata using Business Objects data services.
    I have read couple of white papers which give information on Rapid Marts( which are built in packages) already available for some applications like inventory, GL, AP, AR etc. But I could not find anything for COPA.
    Would anyone give me any information on how to use BO data services for COPA?
    Also if there is no rapid mart available for COPA, does anyone know how to create custom data marts in BO Data services?
    Is there any document available on this?
    Please respond as soon as possible.
    Thanks.

    Hi,
    this forum is for the SAP Integration Kit. Would suggest you post your question into the EIM area for Data Services.
    Ingo

  • Weblogic.security.service.NotYetInitializedException using JMX

    Hi there,
    I'm trying to use JMX to add a notification listener to listen for attribute changes to a WLS 8.1 MBean. My code when setting up the listener is as so:
    String url = "t3://localhost:7001";
    String serverName = "Server1";
    String userName = "weblogic";
    String password = "weblogic";
    MBeanHome home = null;
    RemoteMBeanServer rmbs = null;
    Environment env = new Environment();
    env.setProviderUrl(url);
    env.setSecurityPrincipal(userName);
    env.setSecurityCredentials(password);
    try {
         Context ctx = env.getInitialContext();
         home = (MBeanHome) ctx.lookup(MBeanHome.ADMIN_JNDI_NAME);
    } catch (NamingException e) {
         e.printStackTrace();
    rmbs = home.getMBeanServer();
    WLListener listener = new WLListener();
    WebLogicObjectName mbeanName = new WebLogicObjectName("examplesServer", "Server", "examples");
    rmbs.addNotificationListener(mbeanName, listener, null, null);This seems to work fine, I do not get any error messages. As you can see I'm using the server started through the examples, and I'm adding a notification listener to the ServerMBean.
    My notification listener code is as so:
    public void handleNotification(Notification notification, Object arg1) {
         AttributeChangeNotification changedAttrib = (AttributeChangeNotification) notification;
         try {
              System.out.println("Changed value from: " + changedAttrib.getOldValue() + " to " + changedAttrib.getNewValue());
         } catch (Exception ex) {
              ex.printStackTrace();
    public boolean isNotificationEnabled(Notification arg0) {
         return true;
    }Only when a notification happens and I call getOldValue() I get:
    weblogic.security.service.NotYetInitializedException: [Security:090392]SecurityServiceManager not yet initialized.
         at weblogic.security.service.SecurityServiceManagerDelegateImpl.getSecurityService(SecurityServiceManagerDelegateImpl.java:156)
         at weblogic.security.service.SecurityServiceManager.getSecurityService(SecurityServiceManager.java:175)
         at weblogic.management.internal.SecurityHelper.getRoleManager(SecurityHelper.java:402)
         at weblogic.management.internal.SecurityHelper.access$100(SecurityHelper.java:54)
         at weblogic.management.internal.SecurityHelper$IsAccessAllowedPrivilegeAction.run(SecurityHelper.java:493)
         at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
         at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:118)
         at weblogic.management.internal.SecurityHelper.isAccessAllowed(SecurityHelper.java:393)
         at weblogic.management.internal.AttributeChangeNotification.getOldValue(AttributeChangeNotification.java:136)
         at com.xxxx.password.PasswordBme$WLListener.handleNotification(PasswordBme.java:76)
         at com.xxxx.password.PasswordBme$WLListener_WLSkel.invoke(Unknown Source)
         at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:477)
         at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:420)
         at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
         at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:144)
         at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:415)
         at weblogic.rmi.internal.BasicExecuteRequest.execute(BasicExecuteRequest.java:30)
         at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:219)
         at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:178)Is there a step I'm missing out? The entry for this message in the documentation suggests calling BEA support.

    Hi there,
    I'm trying to use JMX to add a notification listener to listen for attribute changes to a WLS 8.1 MBean. My code when setting up the listener is as so:
    String url = "t3://localhost:7001";
    String serverName = "Server1";
    String userName = "weblogic";
    String password = "weblogic";
    MBeanHome home = null;
    RemoteMBeanServer rmbs = null;
    Environment env = new Environment();
    env.setProviderUrl(url);
    env.setSecurityPrincipal(userName);
    env.setSecurityCredentials(password);
    try {
         Context ctx = env.getInitialContext();
         home = (MBeanHome) ctx.lookup(MBeanHome.ADMIN_JNDI_NAME);
    } catch (NamingException e) {
         e.printStackTrace();
    rmbs = home.getMBeanServer();
    WLListener listener = new WLListener();
    WebLogicObjectName mbeanName = new WebLogicObjectName("examplesServer", "Server", "examples");
    rmbs.addNotificationListener(mbeanName, listener, null, null);This seems to work fine, I do not get any error messages. As you can see I'm using the server started through the examples, and I'm adding a notification listener to the ServerMBean.
    My notification listener code is as so:
    public void handleNotification(Notification notification, Object arg1) {
         AttributeChangeNotification changedAttrib = (AttributeChangeNotification) notification;
         try {
              System.out.println("Changed value from: " + changedAttrib.getOldValue() + " to " + changedAttrib.getNewValue());
         } catch (Exception ex) {
              ex.printStackTrace();
    public boolean isNotificationEnabled(Notification arg0) {
         return true;
    }Only when a notification happens and I call getOldValue() I get:
    weblogic.security.service.NotYetInitializedException: [Security:090392]SecurityServiceManager not yet initialized.
         at weblogic.security.service.SecurityServiceManagerDelegateImpl.getSecurityService(SecurityServiceManagerDelegateImpl.java:156)
         at weblogic.security.service.SecurityServiceManager.getSecurityService(SecurityServiceManager.java:175)
         at weblogic.management.internal.SecurityHelper.getRoleManager(SecurityHelper.java:402)
         at weblogic.management.internal.SecurityHelper.access$100(SecurityHelper.java:54)
         at weblogic.management.internal.SecurityHelper$IsAccessAllowedPrivilegeAction.run(SecurityHelper.java:493)
         at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
         at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:118)
         at weblogic.management.internal.SecurityHelper.isAccessAllowed(SecurityHelper.java:393)
         at weblogic.management.internal.AttributeChangeNotification.getOldValue(AttributeChangeNotification.java:136)
         at com.xxxx.password.PasswordBme$WLListener.handleNotification(PasswordBme.java:76)
         at com.xxxx.password.PasswordBme$WLListener_WLSkel.invoke(Unknown Source)
         at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:477)
         at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:420)
         at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
         at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:144)
         at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:415)
         at weblogic.rmi.internal.BasicExecuteRequest.execute(BasicExecuteRequest.java:30)
         at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:219)
         at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:178)Is there a step I'm missing out? The entry for this message in the documentation suggests calling BEA support.

  • How to Use JDeveloper to Secure and Test a Web Service

    When I try this tutorial "http://www.oracle.com/technology/products/jdev/howtos/1013/wssecure/10gwssecurity_howto.html", I get this exception:
    javax.xml.rpc.soap.SOAPFaultException: The security token could not be authenticated or authorized
         at oracle.j2ee.ws.client.StreamingSender._raiseFault(StreamingSender.java:578)
         at oracle.j2ee.ws.client.StreamingSender._sendImpl(StreamingSender.java:400)
         at oracle.j2ee.ws.client.StreamingSender._send(StreamingSender.java:113)
         at client.proxy.runtime.MyWebService1SoapHttp_Stub.echoMe(MyWebService1SoapHttp_Stub.java:78)
         at com.cmaxwell.secure.MyWebService1SoapHttpPortClient.echoMe(MyWebService1SoapHttpPortClient.java:42)
         at com.cmaxwell.secure.MyWebService1SoapHttpPortClient.main(MyWebService1SoapHttpPortClient.java:31)
    Process exited with exit code 0.
    What am I doing wrong?

    Username and password are "albert" as it is written in the part "Run the Client". The version of JDeveloper is "10.1.3.4.0.4270". The exception scenarios do not help me in this case. I get the exception on this line:
    myPort.echoMe("testing secure service");

  • RESTful service response using HTTP binding

    Hi all,
    I use a restful service and consume it using a HTTP binding adapter in my BPEL process. While sending response, the reponse is sent in xml format. But i want it just to be string. For example, i dont want the reponse to be like this "<Test>Firstname Lastname</Test>". I want it like "Firstname Lastname".
    In oracle docs its given, for HTTP binding reponse, its always XML. Has anyone achieved sending response without xml tags and their namespaces?
    Thanks,
    Terry

    Thank you for the reply
    I am able to contact the same endpoint from SoapUI and also the browser. As far as I know there is no proxy that is required but I will still go ahead and ask the provider.
    And do you have any clue why I am getting the error in Jdev when I compile the project?
    And another thing that I would like to mention is that the WSDL that the HTTP Binding adapter created is incomplete as in it does not have the <wsdl:service> tag, is that something that I should be looking out for?
    This is what my WSDL (generated by HTTP Binding Adapter) looks like
    <?xml version="1.0" encoding="UTF-16"?>
    <wsdl:definitions
    name="Get"
    targetNamespace="http://xmlns.oracle.com/pcbpel/adapter/http/ProcessProject/GetContact/Get"
    xmlns:tns="http://xmlns.oracle.com/pcbpel/adapter/http/ProcessProject/GetContact/Get"
    xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
    xmlns:msg_in_out="http://TargetNamespace.com/http"
    xmlns:plt="http://schemas.xmlsoap.org/ws/2003/05/partner-link/">
    <plt:partnerLinkType name="Request_Response_plt">
    <plt:role name="Request-Response_role">
    <plt:portType name="tns:Request_Response_ptt"/>
    </plt:role>
    </plt:partnerLinkType>
    <wsdl:types>
    <schema xmlns="http://www.w3.org/2001/XMLSchema">
    <import namespace="http://TargetNamespace.com/http" schemaLocation="xsd/Get.xsd"/>
    </schema>
    </wsdl:types>
    <wsdl:message name="root_msg_in">
    <wsdl:part name="root" element="msg_in_out:root"/>
    </wsdl:message>
    <wsdl:message name="root_msg_out">
    <wsdl:part name="root" element="msg_in_out:root"/>
    </wsdl:message>
    <wsdl:portType name="Request_Response_ptt">
    <wsdl:operation name="Request-Response">
    <wsdl:input message="tns:root_msg_in"/>
    <wsdl:output message="tns:root_msg_out"/>
    </wsdl:operation>
    </wsdl:portType>
    </wsdl:definitions>
    Thanks
    Edited by: user1165407 on Aug 1, 2012 3:54 PM

  • Service Based Revenue Recognition - Prov Account Missing when using WBS

    Hi,
    I´ve activated RR functionality using service based and aceptance date.
    I've followed the intructions from the best practices documents and the notes:
    Note 820417 u2013 IMPLEMENTATION GUIDE FOR REVENUE RECOGNITION
    Note 1172799 u2013 NEW VERSION OF BEST PRACTICES FOR REVENUE RECOGNITION
    Note 678260 CONSTRAINTS
    Note 777996 u2013 ACCOUNT SETTINGS FOR  REVENUE RECOGNITION PROCESS     
    Note 779366 u2013 REVENUE RECOGNITION IN THE SD MODULE
    Note 1166848 u2013 CUSTOMIZING SETTINGS
    Note 782758 u2013 PREREQUISITS FOR USING REVENUE RECOGNITION
    Note 835367 - Activating SAP ERP SD revenue recognition
    Note 1000830 - Revenue recognition through incoming invoice (third-party
    Note 1025066 - Revenue recognition by proof of delivery (POD)
    Note 1120297 - Revenue recognition by acceptance date
    Note 1125456 - Revenue recognition due to customer-specific event
    We are implementing SD, FI (using New Gral Ledger), PS, CO and MM in a company that sells projects. Therefore we're posting everything to the WBS elements.
    We need to post the revenue values to the WBS elements too.
    The problem is that when we create a sales order for RR indicating a WBS element and try to save it, the system activates the incompletion log saying that the provision account is missing, despite the account is in VKOA.
    The strange thing is that if we use a material with profit center (without any WBS or order indication in the sales order) all the revenue recognition process runs perfectly (we save the order, VBREVK is fullfiled, VF44 is run and the invoice is done correctly).
    Does anybody know why when using a WBS element in the sales order, SAKN2 field is not fullfiled and the incompletion log is activated???
    Is it a program error? Or are we doing something wrong?
    Quick responses will be apreciated since we need to move on within two weeks!
    Thanks in advance!
                                     María del Valle Pintor.
    Moderator: This thread has been locked due to crossposting.
    Please do not post the same question in different forums.

    sap note 883544

  • Invoking secured service using BPEL partner link -  basic authentication

    HI,
    We are invoking a secured service using partner link. The below property is defined in bpel.xml (basicHeaders property is created on partnerlink)
    <property name="basicHeaders">credentials</property>
    My concern is how the basicusername and basicpassword is sent to the secured webservice?
    is it sent in the calling uri ?
    I don't think it will be sent under soap header..
    Please anyone confirm.
    Thanks
    Phani

    Hi
    I am having trouble making the BPEL and Systinet to work together. I have Systinet and BPEL installed separately on 2 different servers. I deployed my web services and registered them in UDDI. I created a new BPEL process and added a partner link to refer to one of the web service I have registered in UDDI. When I create the partner link, it is forcing me to give the wsdl and it also gives an error message " There are no partner link types defined in current wsdl. Do you want create that will by default create partner link type for you?". If I say "NO' then deployment fails. If I say "Yes", then it creates a new wsdl file on the local server etc and gives "<Faulthttp://schemas.xmlsoap.org/soap/envelope/>
    <faultcode>soapenv:Server.userException</faultcode>
    <faultstring>com.oracle.bpel.client.delivery.ReceiveTimeOutException: Waiting for response has timed out. The conversation id is 75164a0815ea471a:-3be8c246:117cc377894:-537b. Please check the process instance for detail.</faultstring>". Any help is appreciated.

  • Invoking Secured Services from BPEL - Build scripts

    We are using SOA Suite 10.1.3.4 and JDeveloper 10.1.3.4 for BPEL process development. We are invoking secure web services from BPEL. In order to do this, we have imported the server certificates in the keystore of Oracle SOA Suite. These certificates are also imported into JDev keystore. In DEV environment, I have deployed the BPEL process from JDeveloper and the tested the https web service invocation. It works fine.
    When taking this to PROD environment, we need to provide deployment scripts to the release team. Should the scripts contain any properties specific to SSL configuration? I want the deployment to happen the same way JDeveloper deploys BPEL process by makign use of SSL Certs in its keystore. What is the way to achieve this?
    Thanks

    Hi
    You can deploy BPEL to BPEL process manager using ANT or Jdeveloper . I prefer ANT to deploy to prod.
    Coming to security impmentation, you can use OWSM (Oracle Websevices manager) to assign security key before invoking secured webservice.
    In OWSM follow the brief steps below.
    1. create gateway
    2. create service which points to secured webservice
    3. create pipeline templates with assigning security key , before that import key store to your server
    4. assign above pipeline template to service
    5. now get the URL of service created.
    In Jdev:
    6.In BPEL process create partner link with above Service URL in step5 ( instead of directly pointing to secured webservice from BPEL, go thru OWSM)
    7. use ANT or JDeveloper to deploy BPEL process to Prod.
    Before deploying to PROD you need to above steps 1 to 5 on PROD OWSM
    for more details on OWSM please see following link:
    http://download.oracle.com/docs/cd/B31017_01/integrate.1013/b31008/toc.htm
    Thanks
    Seshagiri.Rayala
    http://soabpel.wordpress.com/

  • How to create a Service based on complex query

    Hi,
    I'm using JDev 11.1.2.2.0 for developing fusion based application based on EJB3.0 and JPA. I search on net and got a link for sample application as shown below:
    http://www.oracle.com/webfolder/technetwork/tutorials/obe/jdev/obe11jdev/ps1/ejb/ejb.html#t2s1
    But above application is based on "Entities based on Tables" but my requirement to build a service based on query which contains multiple tables which means I want to create a generic one...
    please let me know what I need to change or please provide any link for docs.

    Hi Desmukh,
    I want to create a wsdl for complex queries based on ADF fusion applicaiton using EJB3.0 and JPA...!
    the link which you provided 'entity with tables' which is restricting for my requirement but I want similar implementation for complex queries :(

Maybe you are looking for