Web Service Login

Similar Messages

• Exception when trying to use web service login method

  Hi all,
  we've installed Discoverer, upgraded OAS to version 10.1.2 and installed the web service patch successfully. I can get the list of web service methods through
  http://app1.localdomain:7778/discoverer/wsi
  We've also created a bipublisher user in oiddas, and got it's guid. When I try to use the login method of the web services I get this exception:
  <?xml version='1.0' encoding='UTF-8'?>
  <SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema">
  <SOAP-ENV:Body>
  <SOAP-ENV:Fault>
  <faultcode>SOAP-ENV:Server.Exception:</faultcode>
  <faultstring>oracle.discoverer.applications.ws.util.DiscovererWSException: An error occurred during SSOUsername/GUID lookup.</faultstring>
  <faultactor>/discoverer/wsi</faultactor>
  </SOAP-ENV:Fault>
  </SOAP-ENV:Body>
  </SOAP-ENV:Envelope>Does anyone have a clue what the problem is? I should also mention that after my DBA's advice we didn't upgrade the infrastructure instance, only the middle tier discoverer installation and then installed the repository upgrade.
  A few months back on a test installation I had tried to switch to SSO and then reverted back and managed to connect without SSO enabled.
  Edited by: dvm on Nov 11, 2008 7:22 AM

  Well... this is definitelly not a requirement.
  The code snippet came from the test (junit) for something which is much bigger. And of course the 1-char long table name has nothing to do with desing. At all.
  We have a system where a user defines (named) xml structures, so to say. The structures are then "translated" into DB entities. So the result DB schema is fully auto-generated. The system supports 4 different SQL dialects. Oracle is just one of them.
  Having restrictions like "name of a structure must be at least two characters" is no problem. But I still can`t believe Oracle has such a limitation. It does not sound logical (to me at least). And I had a hope may be someone has an explanation for that thing.
  The code above works just fine if I do not request certain columns back after the statement is executed. (e.g. without the second parameter).
  But anyway... I would post a bug for this, if I knew where to post it to :)
  Thanks.

• Web service login operation that will return a session id.

  posted Today 9:42:22 AM private message
  Quote
  Hi,
  I am very new to web services I just started on this technology a couple of days ago. My manager requires me to create a web service and expose the login(user, password) and logout(sessionid) methods. The login must return session id when user and password authentication is successful.
  I've been circling around the internet for a couple days already looking for a tutorial on how to implement this methods and I'm now frustrated.
  I would appreciate it very much if someone can provide a link to a tutorial that has similar functionality with my web service.
  Thanks.
  Regards,
  winllen

  posted Today 9:42:22 AM private message
  Quote
  Hi,
  I am very new to web services I just started on this technology a couple of days ago. My manager requires me to create a web service and expose the login(user, password) and logout(sessionid) methods. The login must return session id when user and password authentication is successful.
  I've been circling around the internet for a couple days already looking for a tutorial on how to implement this methods and I'm now frustrated.
  I would appreciate it very much if someone can provide a link to a tutorial that has similar functionality with my web service.
  Thanks.
  Regards,
  winllen

• Actuate Web Service Login Error

  Hi All,
  Please help us on the following error :
  SBL-EAI-04308: Operation 'login' of Web Service 'http://schemas.actuate.com/actuate7/wsdl.ActuateAPI' at port 'ActuateSoapPort' failed with the following explanation: "Soap Server error.".
  what is the solution for this error ?
  Regards,
  Asif

  Asif,
  There are some possible causes and solutions for this error, one of them is reported in Doc ID 529361.1 on support.oracle.com. You can find other causes/solutions by performing a search with SBL-EAI-04308 and report keywords on support.oracle.com.
  Hope it helps,
  Wilson

• Web services login from python

  As described in a previous post, I'm trying to develop a thin client in python on a Raspberry PI that gets data from a Web Services program. I wrote a simple "Hello World" vi that requires authorization. If I access the URL from IE, Safari, etc, it gives me the Silverlight login screen, and then it works. If I write a simple client using the HTTP Get vi, it works. If I access the URL from Python:
  r = requests.get("http://127.0.0.1:8001/DISE/hello"
  auth=('username', 'password'))
   I get 404. I've Read The Fine Manual. Suggestions?

  It seems to me that the responders to the OP do not, in fact, understand the issue at play here.
  NI has two pieces of security for the web services: digital signing and authentication.  The digitial signing is documented and the OP knows how to do this in python.  The authentication is not documented anywhere I know of.  The fact that it works in the browser does not mean anything.  What happens with a browser request for a service which requires authentication is that the response is a new page with a Silverlight app to perform the authentication with the NI-auth service.   The question the OP has is what goes on inside that Silverlight app?  That was written by NI, not the browser developers, so it could be answered by the folks at NI and this is as good a place as any to request that info.  The VIs referenced by the OP recreate the same functionality, presumably by calling into a CLFN.
  In the meantime, here is some information that may or may not be of use.  I used to use web services now and then, but issues like this (and the use of silverlight) drove me away eventually.
  The NI-auth server apparently uses the SRP protocol to validate username/password combinations.  You send a GET request to hostort/login?username=user.  The response has a header which is something like 'X-NI-AUTH-PARAMS' with the server parameters for the SRP protocol in base-64 encoding.  Then you send a POST request back to the login uri with the client parameters inside the body and the content type is 'application/x-www-form-urlencoded'  If all goes well the final response from the server has a cookie which you can use in further requests.
  You will have to play a bit to determine some details like which hash function is used inside the SRP protocol.  The beauty of python is that hashlib, srp, and request modules are already there for you.
  If you get it sorted out, let me know.  I figured out enough to do some spoofing, I am curious to fill in the missing gaps.  I'll try to dig into my old code some more for details.

• How to keep alive a session in Web Services?

  I have to do my project, that will be including some following features:
  1. Login to Application through Web Services method. For example:
  http://mydomain.com/web-services/Login?WSDL
  2. After logging in, use mySms method to send message to Cellphone through Web Services! For example:
  http://mydomain.com/web-services/mySms?WSDL
  My questions are:
  1. How can I keep alive the session after logging in the application in Web Services? In Web, I can use "Session".
  2. If someone has not logged in the Application, he/she could not use mySms method for sending Sms. How can I do that?
  3. I know, when I invoke a Web Services, one JavaBean has been called, and this bean is persistence with his own states. It means, if I set value to parameters of this bean, these values are persistence for invoked methods by other persons.
  For example:
  mySms bean has a private field "jid" inited with NULL value.
  Person A invoked mySms.
  Then, A set jid of mySms to value "A".
  Person B invoked mySms. B got jid value. He receive the result value is "A".
  The question is, how can I set mySms bean so that mySms bean is not persistence?
  Thanks many!

  Hi,
  I can right away answer your FIRST Question.
  Since WebServices are PURELY Based on SOAP which is in tern based on HTTP, they rely on a Stateless protocol.
  I am sure you know that the HTTP is the STATELESS Protocol and so you can not maintain Session and so EACH Http REQUEST is considered as a SEPERATE REQUEST.
  Now, still you want to maintain the Session in WebServices,
  The simple answer is PASSING PARAMETERS.
  Just Maintain your Session on Client (If you are using JSPs or Servlets to CAll WEBSERVICES then maintain Session through your HTTPSession) and each time you Invoke WebService PASS ON REQUIRED Parameters.
  This Approach is Exactly like your URL REWriting OR your Parameters Passing through QUERY STRINGS.
  I hope you got what I am saying!
  Take care,
  Himanshu/

• SOAP Web Service +  Custom Login Module issue

  Hi Guys,
  We faced an authentication issue in our project. Could you please give any advice how the issue could be resolved.
  Environment: A simple SOAP Web Service on top of POJO class created in a Web Application. The web application deployed to the SAP NetWeaver 7.10 Application Server in the Enterprise Application Archive.
  Configuration:
        Single Service Administration Application(NetWeaver Administration -> SOA Management -> Application and Scenario Communication -> Single Service Administration)
         The web service endpoint has authentication configured to use User ID/Password HTTP Authentication.
      Authentication Application(NetWeaver Administration-> Configuration Management->Security->Authentication)
        The application(<vendorName>/<earName>*<vendor>~<webAppName>) has Authentication Stack configured to use our custom login module.
  Issue:  BasicPasswordLoginModule used by the J2EE when we are trying to execute the web service using Web Service Navigator(checked in debug mode). It seems that we missed something in configuration.
  Idea: The main Idea is to use our custom login module when we are executing a web service.
  Could you help me to resolve the issue.
  Thanks,
  Dmitry
  Edited by: Dmitry Eidin on Jul 17, 2009 3:46 PM

  > The web service endpoint has authentication configured to use User ID/Password HTTP Authentication.
  That's the point.

• LV2012 Web Services w/ NI Auth login not working w/ static files in Firefox 19

  Hi!
  I followed this procedure to password protect my web service and the static files. 
  http://digital.ni.com/public.nsf/allkb/DF41D5DA8EEB4840862577D90058C208
  When testing it out with my web service it seems to work fine on any web browser.  http://localhost:8080/add/add/1/2 first will present a login.  Once the user is logged in the page refreshes and the results of the operation are shown.  http://localhost:8080/logout works as well.
  I followed the procedure in the FAQ to include an index.html file.
  http://www.ni.com/white-paper/7747/en#toc15
  When I try to access the page (via http:localhost:8080/add/web/index.html) I'm greeted with the National Instruments login screen.  I enter my credentials and in Chrome and Internet Explorer the screen refreshes and I see my html file.  In Firefox it hangs for awhile on the authentication screen and then reloads back to the authenticaiton screen (as if the username and password did not take).
  Attached are my files.  If you want to try and recreate this please follow this procedure:
  * Unzip the attached project to a folder
  * Open the project in LabVIEW 2012
  * Check the properties of the web service to ensure that the build paths are correct
  * Follow the procedure above for setting up NI Auth on your web service and adding the "testpermission2" permission.  Be sure to remove "Everyone" from that "testpermission2" or you will never see a login prompt.
  * Build/Deploy the web service
  * open http://localhost:8080/logout to ensure that you are not currently authenticated
  * open http://localhost:8080/add/add/1/2 and login, observe behavior
  * open http://localhost:8080/add/web/index.html you should still be logged in so you will see the "Hello World!" just fine
  * open http://localhost:8080/logout to log back out
  * open http://localhost:8080/add/web/index.html and see if you are able to login.
  I've tried disabelling my plugins in Firefox and still have this problem.  I'm really scratching my head on how to overcome this other than throwing away NI Auth and use something else.  My web service is going to run off of a static front end driven by javascript and html.  So the access point will be the html file.  I need to have some username and password scheme worked out.  I also need to be able to see what user is currently logged in with my Web Service VIs (does anyone know if that is possible with NI Auth)? 
  The other BIG issue I have with NI Auth is that it requires Silverlight.  So much for mobile support, eh?  Anyone know of a good plug-and-play alternative so I don't have to reinvent the wheel?  I guess I could impliment some kind of token system on my web service side.
  In the meantime, getting NI Auth to properly work with Firefox would help.
  Thanks for your input,
  -Nic
  Attachments:
  Example Web Service.zip ‏15 KB

  Disclaimer: I in no way mean to bash NI and I have used NI Auth myself in the past
  If you are going to go to the trouble of abstracting NI Auth, I would recommend instead investing your time in your own authentication scheme (or implementing a standard scheme in LV).
  NI Auth is great and works for low security applications where you just don't want people fooling around with your application who shouldn't be.
  However, NI Auth is really not that secure.  If I remember correctly, the username is transmitted in plain text and I don't think the encryption algorithm is that sophisticated.  It is nice that it's already integrated into LV, but there really are very few features at this time.
  If you want something to be really secure, you need to take measures beyond what NI Auth provides and before you go to the work of building abstraction on top of a basic and somewhat shaky protocol, I'd seriously consider implementing a more stable base.
  <insert 2 cents complete>
  Chris
  Certified LabVIEW Architect
  Certified TestStand Architect

• WEB Service Session - Login

  Hello Experts,
  I have to consume a BOBJ Web Service Session in SAP Netweawer.
  Hello,
  We have SAP NetWeaver 2004s and BusinessObjects Enterprise 12.0.
  I've created an proxy object on the SAP Netweaver side in the following way :
  se80->Create->Enterprice Service->Service-Consumer->URL/HTTP Destination-> URL = http://<host>:8080/dswsbobje/services/Session?wsdl
  Then I've created an Port using soamanager.
  I't seems to be working, becouse methods like : getServerInfo, getServerInfoDetails are working ok.
  Now I have a problem with the method Login. As parameter for this method I see only structure CREDENTIAL, which have only one field CONTROLLER (PRXCTRLTAB).
  I've expected to have in the Parameters for this method a structure EnterpriceCredential with fields like username, password and so on - but its not.
  Could You help me ?
  Greetings
  Wojciech
  Here my coding :
  REPORT  ztest.
  DATA text TYPE string.
  DATA : lr_proxy TYPE REF TO zsco_session_port.  " its my session proxy object
  DATA : oref   TYPE REF TO cx_root.
  TRY.
      CREATE OBJECT lr_proxy
        EXPORTING
          logical_port_name = 'LP1'.
    CATCH cx_ai_system_fault INTO oref.
      text = oref->get_text( ).
  ENDTRY.
  DATA get_server_info_in TYPE zsget_server_info_soap_in.
  DATA get_server_info_out TYPE zsget_server_info_soap_out.
  THIS IS WORKING WELL
  TRY.
      CALL METHOD lr_proxy->get_server_info
        EXPORTING
          input  = get_server_info_in
        IMPORTING
          output = get_server_info_out.
    CATCH cx_ai_system_fault  INTO oref..
    CATCH zscx_dswsexception  INTO oref..
    CATCH cx_ai_application_fault  INTO oref..
  ENDTRY.
  break-point.
  AND THIS IS ENDINNG WITH EXCEPTION
  TRY.
      CALL METHOD lr_proxy->login
        EXPORTING
          input  = login_in
        IMPORTING
          output = login_out.
    CATCH cx_ai_system_fault INTO oref.
      text = oref->get_text( ).
  _ CATCH zscx_dswsexception INTO oref.   this exeption is being called_
      text = oref->get_text( ).
    CATCH cx_ai_application_fault INTO oref.
      text = oref->get_text( ).
  ENDTRY.

  Hello,
  I struggle with exactly the same problem accessing the login webservice of the BOE server. Unfortunately the previous answer did not help me since I don't understand it
  Anyone able to enlighten me?
  Edit: Nevermind, I just found out by myself.
  Thanks,
  Sebastian
  Edited by: Sebastian Solzbacher on Nov 25, 2011 9:43 AM

• Parameters and database login with Web Services SDK

  I need to know how to do the two most common report tasks through the Web Services interface to Crystal Reports Server 2008:
  How do I get a list of a report's parameters and set the parameter's values?
  How do I set the database login information?
  I have considerable experience with writing custom web interfaces for Business Objects Enterprise with .NET, but now we're supposed to use web services instead of Enterprise services, especially when writing Windows forms apps. The official line is that writing thick client apps using Enterprise services is "possible but not supported." I can't seem to find the equivalent to the .Parameters property in Web Services.
  The tutorials for Web Services aren't much help. The BIPlatform examples show how to schedule a report without parameters and without setting the database login, but this isn't much help in the real world. The ReportEngine tutorial was apparently written by someone else, and is little or no help.
  This seems like such a simple question, but I have wasted an entire day and am no closer to the answer.

  I think the following resources will help:
  https://wiki.sdn.sap.com/wiki/display/BOBJ/GettingStartedwiththeWebServicesSDK
  http://help.sap.com/businessobject/product_guides/xir2PP/en/qaaws.pdf
  http://devlibrary.businessobjects.com/BusinessObjectsXIR2SP2/en/en/WS_SDK/wssdk_server/default.htm
  Also, see this forum thread:
  Web Services SDK secLDAP
  Ludek

• JAAS Login Module using Deployable Web Service proxy

  Hi,
  We've created a JAAS Login Module that calls a deployable web service proxy to validate users on Netweaver Portal 2004 SP19. To do this the following steps were taken:
  1) created a deployable web proxy named 'SGU_proxy' and uploaded it to server. This project created 2 files: 'SGU_proxy.ear' (the one uploaded) and 'SGU_proxyClientAPI.jar'.
  2) created a Java project named 'AgregacaoLoginModule' with a single class to authenticate users, this is the class that calls the web service with the username and password. This project references the deployable web proxy project (Properties > Java Build Path > Projects > checkbox marked next to project SGU_proxy).
  3) exported the Java project class, not including the 'SGU_proxyClientAPI.jar'.
  4) created a 'J2EE Server Component' > 'Library' project named 'AgregacaoLoginModuleJ2EE'.
  On the 'provider.xml' file added 2 jars: 'AgregacaoLoginModule.jar' and 'SGU_proxyClientAPI.jar'. References were made to the standard portal libraries. No references were made to the proxy 'SGU_proxy' or the 'AgregacaoLoginModule' project.
  The library was uploaded to the server, everything was ok and no errors were reported.
  The login module was configured on the server and is called when users try to acess Portal server.
  The problem is that when trying to authenticate users: after getting a reference to the proxy using jndi I get a ClassCastException. Note that this proxy is used in a WebDyn Pro application and is working fine.
  The web service client proxy generated the interface 'pt.agregacao.ws.sgu.Servicos' and from jndi I get 'class pt.agregacao.ws.sgu.ServicosImpl'. So this seems to be ok, why the exception?
  Is it necessary to had a reference to 'SGU_proxy' on the 'AgregacaoLoginModuleJ2EE' project? If so, how?
  Thanks in advance.
  Alvaro

  Hi,
  We've created a JAAS Login Module that calls a deployable web service proxy to validate users on Netweaver Portal 2004 SP19. To do this the following steps were taken:
  1) created a deployable web proxy named 'SGU_proxy' and uploaded it to server. This project created 2 files: 'SGU_proxy.ear' (the one uploaded) and 'SGU_proxyClientAPI.jar'.
  2) created a Java project named 'AgregacaoLoginModule' with a single class to authenticate users, this is the class that calls the web service with the username and password. This project references the deployable web proxy project (Properties > Java Build Path > Projects > checkbox marked next to project SGU_proxy).
  3) exported the Java project class, not including the 'SGU_proxyClientAPI.jar'.
  4) created a 'J2EE Server Component' > 'Library' project named 'AgregacaoLoginModuleJ2EE'.
  On the 'provider.xml' file added 2 jars: 'AgregacaoLoginModule.jar' and 'SGU_proxyClientAPI.jar'. References were made to the standard portal libraries. No references were made to the proxy 'SGU_proxy' or the 'AgregacaoLoginModule' project.
  The library was uploaded to the server, everything was ok and no errors were reported.
  The login module was configured on the server and is called when users try to acess Portal server.
  The problem is that when trying to authenticate users: after getting a reference to the proxy using jndi I get a ClassCastException. Note that this proxy is used in a WebDyn Pro application and is working fine.
  The web service client proxy generated the interface 'pt.agregacao.ws.sgu.Servicos' and from jndi I get 'class pt.agregacao.ws.sgu.ServicosImpl'. So this seems to be ok, why the exception?
  Is it necessary to had a reference to 'SGU_proxy' on the 'AgregacaoLoginModuleJ2EE' project? If so, how?
  Thanks in advance.
  Alvaro

• Web services manager control login problem

  hi,
  I have installed SOA suite using Advanced installation type.
  After installation I am able to login into BPEL Console and it's working fine , but unable to login into web services manager control(http://localhost:8888/ccore) with oc4jadmin user...
  I found below errors in ccore.log file
  2008-10-03 09:33:45,879 INFO [AJPRequestHandler-HTTPThreadGroup-54] userregistry.UsersTable - isValidUserPassword() failed for oc4jadmin
  2008-10-03 09:33:45,879 INFO [AJPRequestHandler-HTTPThreadGroup-54] sampledb.LocalDBAuthProvider - The error in authenticate for user : oc4jadmin
  2008-10-03 09:33:45,879 SEVERE [AJPRequestHandler-HTTPThreadGroup-54] uibeans.LoginBean - Error when authenticating user. Invalid user id or password
  2008-10-03 10:17:30,744 SEVERE [AJPRequestHandler-HTTPThreadGroup-54] userregistry.UsersTable - isActiveUser() failed for oc4jadmin
  com.cfluent.utils.db.DBException: ORA-01017: invalid username/password; logon denied
       at com.cfluent.utils.db.DBContext.getConnection(DBContext.java:95)
       at com.cfluent.db.userregistry.UsersTable.isActiveUser(UsersTable.java:2599)
       at com.cfluent.db.userregistry.UsersTable.isValidUserPassword(UsersTable.java:2996)
       at com.cfluent.accessprovider.sampledb.LocalDBAuthProvider.authenticate(LocalDBAuthProvider.java:61)
       at com.cfluent.access.AccessSessionFactory.isAuthenticated(AccessSessionFactory.java:137)
       at com.cfluent.access.AccessSessionFactory.createSession(AccessSessionFactory.java:92)
       at com.cfluent.webui.uibeans.LoginBean.authenticateUser(LoginBean.java:31)
       at com.cfluent._coresv._Login._jspService(_Login.java:354)
       at com.orionserver.http.OrionHttpJspPage.service(OrionHttpJspPage.java:59)
       at com.evermind.server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:64)
       at oracle.i18n.servlet.filter.ServletFilter.doFilter(ServletFilter.java:130)
       at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:621)
       at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:368)
       at com.evermind.server.http.HttpRequestHandler.doProcessRequest(HttpRequestHandler.java:866)
       at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:448)
       at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:302)
       at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:190)
       at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260)
       at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303)
       at java.lang.Thread.run(Thread.java:595)
  Caused by: java.sql.SQLException: ORA-01017: invalid username/password; logon denied
       at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:125)
       at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:316)
       at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:277)
       at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:272)
       at oracle.jdbc.driver.T4CTTIoauthenticate.receiveOauth(T4CTTIoauthenticate.java:647)
       at oracle.jdbc.driver.T4CConnection.logon(T4CConnection.java:308)
       at oracle.jdbc.driver.PhysicalConnection.<init>(PhysicalConnection.java:361)
       at oracle.jdbc.driver.T4CConnection.<init>(T4CConnection.java:151)
       at oracle.jdbc.driver.T4CDriverExtension.getConnection(T4CDriverExtension.java:32)
       at oracle.jdbc.driver.OracleDriver.connect(OracleDriver.java:595)
       at java.sql.DriverManager.getConnection(DriverManager.java:525)
       at java.sql.DriverManager.getConnection(DriverManager.java:171)
       at org.apache.commons.dbcp.DriverManagerConnectionFactory.createConnection(DriverManagerConnectionFactory.java:48)
       at org.apache.commons.dbcp.PoolableConnectionFactory.makeObject(PoolableConnectionFactory.java:290)
       at org.apache.commons.pool.impl.GenericObjectPool.borrowObject(GenericObjectPool.java:771)
       at org.apache.commons.dbcp.PoolingDriver.connect(PoolingDriver.java:175)
       at java.sql.DriverManager.getConnection(DriverManager.java:525)
       at java.sql.DriverManager.getConnection(DriverManager.java:171)
       at com.cfluent.utils.db.DBContext.getConnection(DBContext.java:86) ...
  can any one help me resolve this problem..

  You need to enable JSSO if you want the oc4jadmin password to be in scync with the other AS products. If you just want to login with oc4jadmin you perform the following steps. PLease note that if you change the passord in EM you will have to make these changes again to keep the password the same. JSSO is a cleaner solution.
  To change the default password for the user "admin", follow these steps:
  - delete admin user
  - add admin user back
  - add admin user to the super user group "su1-grp"
  1. Go to OC4J_HOME/owsm/bin directory and modify manageUserGroups.properties
  user_id=admin
  user_name=admin user
  user_password=yourNewPassword
  user_email=[email protected]
  group_id=su1-grp
  group_desc=super user group
  2. Delete the existing admin user by executing
  wsmadmin manageUserGroups deleteUser
  4. Add the admin user again by executing
  wsmadmin.bat manageUserGroups addUser
  5. Add admin user to super user group
  wsmadmin.bat manageUserGroups addUserGroup
  The admin user password is changed.

• Autentication error in Web Service after Login Module

  Hi Experts,
  I am getting a failed autentication when i try to access a web service. This is my scenario:
  I have developed my own login module using JAAS. When i call a web service, the login module is executed, then it validate the credencials and make the authetication true. After that the web service is called. The web Service is mark as user/password authetication. But i always get this error:
  Authentication for web service UtilityService, configuration UtilityService using security policy BASIC___ws failed: Login failed.. (See SAP Note 880896 for further info).
  Just for you know, the credentials taht i use in login modulo isn't the user of UME. I use user store in another user store. I fthe credential is correct pass to the Principal an user of UME. To login stack is right when pass to login module:
  LOGIN.OK
  User: tecbmmab
  IP Address: 192.168.14.48
  Authentication Stack: tridmen.com.br/pegasus~ear*pegasus
  Login Module                                                               Flag        Initialize  Login      Commit     Abort      Details
  1. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule   SUFFICIENT  ok          false      false                
  2. br.com.tridmen.login.ERPCEHeaderLoginModule                             REQUISITE   ok          true       true                 
          #1 Client = 800
          #2 Destination_reference = CUSTOM_DEST
          #3 SysId = DE1
          #4 SysNum = 00
          #5 TargetHost = tecs220
          #6 TrATicket = TRATICKETCTRL
  Central Checks                                                                                true
  After this, the error mention above, of web service happen.
  As my knowledge, when i call the web service i already have the session autenticate with login module. But this is not happen.
  Could someone help with this question?
  Best regards
  Marcos Brandã

  Hi,
  in what order did you specify your login modules? In that error message it looks like it's in wrong order. Your custom module should be first with SUFFICIENT and then standard user name/password with REQUISITE.
  Cheers

• Save cookie/session after login on web service client

  I am calling a web service that has a login method. It sets a session id in
  a cookie. Every subsequent call fails and says I'm not logged in. How do I
  save their cookie or session ID such that the server thinks I'm logged in?
  Here's the client code (I used clientgen to create jar from wsdl);
  DatashareManager dsm = new DatashareManager_Impl();
  WebServiceContext wsContext = dsm.context();
  WebServiceSession session = (WebServiceSession)wsContext.getSession();
  DatashareManagerSoap dsmsoap = dsm.getDatashareManagerSoap();
  String result = dsmsoap.login("username", "password"); // this works
  EResult result2 = dsmsoap.deleteReusableList(1, "bob"); // this fails 'Not
  logged in'

  That sounds like a difficult one to implement because you'll essentially need to intercept the AppsLogin servlet (or AppsLocalLogin.jsp) to conditionally redirect the user somewhere else - and that would be an intrusive (and not recommended) customization.
  Some possible alternatives:
  1. Rather than publish http://hrlive.myintranet.local:8000/OA_HTML/AppsLogin as the URL that you users connect to, publish something like http://hrlive.myintranet.local:8000/OA_HTML/XxLogin.jsp instead. That could be a custom JSP that asks the user to agree to the disclaimer and, when they agree, store that agreement in a cookie and then redirect to AppsLogin.
  That's not quite the same because you're asking the user to agree before they login. It also means that they can navigate direct to AppsLogin and bypass the disclaimer (unless you customize AppsLogin to verify the cookie).
  2. Assign all users a default 'Disclaimer' responsibility with a single function (such as an EIT, or a custom OA Framework page) that allows the user to agree to agree to the disclaimer. Then once they've agreed to it have some process that automatically grants them their real responsibilities and revokes the Disclaimer responsibility. For example, if you used an EIT that could be an API User Hook.
  One problem with this approach is that you'll need to clear cache through Functional Administrator before the new responsibilities are visible so you'll either need to find a way of doing that programatically or ask the user to wait until tomorrow (assuming you do a nightly web server bounce).

• BOBJ WEB Service Session - Login

  Hello Experts,
  I have to consume a BOBJ Web Service Session in SAP Netweawer.
  Hello,
  We have SAP NetWeaver 2004s and BusinessObjects Enterprise 12.0.
  I've created an proxy object on the SAP Netweaver side in the following way :
  se80->Create->Enterprice Service->Service-Consumer->URL/HTTP Destination-> URL = http://<host>:8080/dswsbobje/services/Session?wsdl
  Then I've created an Port using soamanager.
  I't seems to be working, becouse methods like : getServerInfo, getServerInfoDetails are working ok.
  Now I have a problem with the method Login. As parameter for this method I see only structure CREDENTIAL, which have only one field CONTROLLER (PRXCTRLTAB).
  I've expected to have in the Parameters for this method a structure EnterpriceCredential with fields like username, password and so on - but its not.
  Could You help me ?
  Greetings
  Wojciech
  Here my coding :
  REPORT ztest.
  DATA text TYPE string.
  DATA : lr_proxy TYPE REF TO zsco_session_port. " its my session proxy object
  DATA : oref TYPE REF TO cx_root.
  TRY.
  CREATE OBJECT lr_proxy
  EXPORTING
  logical_port_name = 'LP1'.
  CATCH cx_ai_system_fault INTO oref.
  text = oref->get_text( ).
  ENDTRY.
  DATA get_server_info_in TYPE zsget_server_info_soap_in.
  DATA get_server_info_out TYPE zsget_server_info_soap_out.
  THIS IS WORKING WELL
  TRY.
  CALL METHOD lr_proxy->get_server_info
  EXPORTING
  input = get_server_info_in
  IMPORTING
  output = get_server_info_out.
  CATCH cx_ai_system_fault INTO oref..
  CATCH zscx_dswsexception INTO oref..
  CATCH cx_ai_application_fault INTO oref..
  ENDTRY.
  break-point.
  AND THIS IS ENDINNG WITH EXCEPTION
  TRY.
  CALL METHOD lr_proxy->login
  EXPORTING
  input = login_in
  IMPORTING
  output = login_out.
  CATCH cx_ai_system_fault INTO oref.
  text = oref->get_text( ).
  _ CATCH zscx_dswsexception INTO oref. this exeption is being called_
  text = oref->get_text( ).
  CATCH cx_ai_application_fault INTO oref.
  text = oref->get_text( ).
  ENDTRY.

  Hello,
  I struggle with exactly the same problem accessing the login webservice of the BOE server. Unfortunately the previous answer did not help me since I don't understand it
  Anyone able to enlighten me?
  Edit: Nevermind, I just found out by myself.
  Thanks,
  Sebastian
  Edited by: Sebastian Solzbacher on Nov 25, 2011 9:43 AM