Web Services Management tools
Given the capabilities of the WebLogic Enterprise Platform™ to build, deploy,
manage, and integrate enterprise-class Web Services, is there still a need for
Web Services Management tools like Talking Blocks, Interkeel, West Global, Infravio,
etc., or can the BEA product handle all of their functionality?
Given the limitations of Weblogic's web services the third party tools probably still
make sense. Try using a .NET client on a Weblogic Web Service for instance, it won't
work. This is not BEA's fault, but a problem nonetheless.
Ron wrote:
Given the capabilities of the WebLogic Enterprise Platform™ to build, deploy,
manage, and integrate enterprise-class Web Services, is there still a need for
Web Services Management tools like Talking Blocks, Interkeel, West Global, Infravio,
etc., or can the BEA product handle all of their functionality?
Similar Messages
-
Failed to Install the "Oracle Web Services Manager Configuration Assistant"
The installation of "Oracle Web Services Manager Configuration Assistant" was failed when I installed the "Oracle SOA Suite 10.1.3.1.0" ,and the failure information about the installation in the log show as follows, I need your help,thanks a lot!
start-olite:
Starting OLite in background ...
Running:D:\product\10.1.3.1\OracleAS_1\integration\esb\sql\other\wfeventc.sql
Exception in thread "main" oracle.tip.esb.install.exception.InstallationDBException: Failed to execute sql file"D:\product\10.1.3.1\OracleAS_1\integration\esb\sql\other\wfeventc.sql"
at oracle.tip.esb.install.db.RunSQLScript.runScript(Unknown Source)
at oracle.tip.esb.install.db.RunSQLScript.runScriptListInternal(Unknown Source)
at oracle.tip.esb.install.db.RunSQLScript.runScriptList(Unknown Source)
at oracle.tip.esb.install.db.NonOracleDB.runScripts(Unknown Source)
at oracle.tip.esb.install.db.OLite.install(Unknown Source)
at oracle.tip.esb.install.db.InstallerMain.main(Unknown Source)
Caused by: java.sql.SQLException: [POL-3023] ????????
at oracle.lite.poljdbc.LiteThinJDBCConnection.thinSQLError(Unknown Source)
at oracle.lite.poljdbc.LiteThinJDBCConnection.thinDriverConnect(Unknown Source)
at oracle.lite.poljdbc.LiteThinJDBCConnection.connect(Unknown Source)
at oracle.lite.poljdbc.LiteThinJDBCFactory.createConnection(Unknown Source)
at oracle.lite.poljdbc.POLJDBCConnection.<init>(Unknown Source)
at oracle.lite.poljdbc.OracleConnection.<init>(Unknown Source)
at oracle.lite.poljdbc.POLJDBCDriver.connect(Unknown Source)
at oracle.tip.esb.install.db.DriverManagerDataSource.getConnection(Unknown Source)
... 6 more
Java Result: 1
Importing Default System ...
${env.PCHOME}
stop-olite:
Stopping background OLite process ...
CA::DEBUG:******:Finished OLite Install ...
Finished Olite configuration ...
BUILD SUCCESSFUL
Total time: 12 seconds
Exit: 0
TASK: oracle.tip.esb.install.tasks.ConfigureOC4J
Configuring OC4J ...
id value is 2
id value is IASPT
process-type value is 1
id value is 3
id value is IASPT
id value is 3
id value is ASG
process-type value is 1
id value is 2
id value is ASG
id value is 1
id value is default_group
process-type value is 1
id value is 3
id value is home
process-type value is 1
process-type value is 2
process-type value is 1
final map size value is 2
id value is -Xrs -server -XX:MaxPermSize=128M -ms512M -mx1024M -XX:AppendRatio=3 -Djava.security.policy=$ORACLE_HOME/j2ee/home/config/java2.policy -Djava.awt.headless=true -Dhttp.webdir.enable=false
Jun 22, 2010 2:39:09 PM oracle.tip.esb.install.tasks.ConfigureOC4J getOpmnRequestPort
INFO: Port value is 6003
D:\product\10.1.3.1\OracleAS_1\jdk\bin\java -Dant.home=D:\product\10.1.3.1\OracleAS_1\ant -classpath D:\product\10.1.3.1\OracleAS_1\ant\lib\ant.jar;D:\product\10.1.3.1\OracleAS_1\ant\lib\ant-launcher.jar;D:\product\10.1.3.1\OracleAS_1\integration\esb\lib\ant-contrib-1.0b1.jar org.apache.tools.ant.Main -Dinstall.type=SoaBasic -Desb.home=D:\product\10.1.3.1\OracleAS_1\integration\esb -Doc4j.home.dir=D:\product\10.1.3.1\OracleAS_1 -Djava.home=D:\product\10.1.3.1\OracleAS_1\jdk -Doracle.home=D:\product\10.1.3.1\OracleAS_1 -Dhost.name=dpxc67-01 -Ddb.vendor=olite -Dimport.export.db_url=jdbc:polite4@localhost:1531:oraesb -Desb.appserver=ias_10.1.3 -Doc4j.design_time_host=dpxc67-01 -Doc4j.design_time_port=8888 -Dprimary.container=home -Dinstall.mode=OracleInstallerias_10.1.3_SoaBasic -Dsso=true -Dinstall.component=install-developer -Dias.name=soademo.dpxc67-01 -Denv.OC4J_STANDALONE_HOME=D:\product\10.1.3.1\OracleAS_1 -Dias_admin.password=*password cannot be displayed* -Denv.JAVA_HOME=D:\product\10.1.3.1\OracleAS_1\jdk -Denv.SERVER_ADMIN_PASSWORD=*password cannot be displayed* -Dopmn.requestport=6003 -Ddb.vendor=olite -Ddb.connect.string=jdbc:polite4@localhost:1531:oraesb -Ddb.username=system -Dias.virtual_host=dpxc67-01 -Denv.DB_USER=system -Denv.DB_URL=jdbc:polite4@localhost:1531:oraesb -Desb.oc4j.container=home -Denv.DB_PASSWORD=*password cannot be displayed* -Ddb.password=*password cannot be displayed* -e -buildfile esbinstall.xml deploy-applications
Buildfile: esbinstall.xml
Trying to override old definition of datatype echoproperties
common_update_server.xml:
Adding shared library apache.junit ...
Adding shared library oracle.db.lite ...
Adding shared library apache.commons 10.1.3 ...
Adding shared library apache.jdom ...
Adding shared library apache.slide ...
Running batch script by:
java admin_client.jar deployer:oc4j:opmn://dpxc67-01:6003/home -script D:\product\10.1.3.1\OracleAS_1\integration\esb\install\ant-tasks/esb_admin_client_script_sl.txt
publishSharedLibrary command was successful
publishSharedLibrary command was successful
publishSharedLibrary command was successful
publishSharedLibrary command was successful
publishSharedLibrary command was successful
publishSharedLibrary command was successful
update_server.xml:
Adding shared library oracle.esb ...
deployer.url: deployer:oc4j:opmn://dpxc67-01:6003/home
publishSharedLibrary command was successful
deploy-applications:
Deploying ESB design time ...
Binding ESB design time ...
Deploying ESB run time ...
Binding ESB runtime ...
Deploying orainfra.ear ...
Binding orainfra ...
Running batch script by:
java admin_client.jar deployer:oc4j:opmn://dpxc67-01:6003/home -script D:\product\10.1.3.1\OracleAS_1\integration\esb\install\ant-tasks/esb_deployapps.txt
10/06/22 14:39:20 Notification ==>Application Deployer for esb-dt STARTS.
10/06/22 14:39:20 Notification ==>Copy the archive to D:\product\10.1.3.1\OracleAS_1\j2ee\home\applications\esb-dt.ear
10/06/22 14:39:20 Notification ==>Initialize D:\product\10.1.3.1\OracleAS_1\j2ee\home\applications\esb-dt.ear begins...
10/06/22 14:39:20 Notification ==>Unpacking esb-dt.ear
10/06/22 14:39:21 Notification ==>Done unpacking esb-dt.ear
10/06/22 14:39:21 Notification ==>Unpacking esb_console.war
10/06/22 14:39:22 Notification ==>Done unpacking esb_console.war
10/06/22 14:39:22 Notification ==>Unpacking esb-jca-dt.rar
10/06/22 14:39:22 Notification ==>Done unpacking esb-jca-dt.rar
10/06/22 14:39:22 Notification ==>Initialize D:\product\10.1.3.1\OracleAS_1\j2ee\home\applications\esb-dt.ear ends...
10/06/22 14:39:22 Notification ==>Starting application : esb-dt
10/06/22 14:39:22 Notification ==>Initializing ClassLoader(s)
10/06/22 14:39:22 Notification ==>Initializing EJB container
10/06/22 14:39:22 Notification ==>Loading connector(s)
10/06/22 14:39:22 Notification ==>Starting up resource adapters
10/06/22 14:39:23 Notification ==>Warning. Unable to set up connection factory to location esb-dt for a resource adapter in {1}
10/06/22 14:39:23 Notification ==>Initializing EJB sessions
10/06/22 14:39:23 Notification ==>Committing ClassLoader(s)
10/06/22 14:39:23 Notification ==>Initialize esb_console begins...
10/06/22 14:39:23 Notification ==>Initialize esb_console ends...
10/06/22 14:39:23 Notification ==>Started application : esb-dt
10/06/22 14:39:23 Notification ==>Application Deployer for esb-dt COMPLETES. Operation time: 2875 msecs
10/06/22 14:39:23 Notification ==>Application Deployer for esb-rt STARTS.
10/06/22 14:39:23 Notification ==>Copy the archive to D:\product\10.1.3.1\OracleAS_1\j2ee\home\applications\esb-rt.ear
10/06/22 14:39:23 Notification ==>Initialize D:\product\10.1.3.1\OracleAS_1\j2ee\home\applications\esb-rt.ear begins...
10/06/22 14:39:23 Notification ==>Unpacking esb-rt.ear
10/06/22 14:39:23 Notification ==>Done unpacking esb-rt.ear
10/06/22 14:39:23 Notification ==>Unpacking provider-war.war
10/06/22 14:39:23 Notification ==>Done unpacking provider-war.war
10/06/22 14:39:23 Notification ==>Unpacking esb-jca-rt.rar
10/06/22 14:39:23 Notification ==>Done unpacking esb-jca-rt.rar
10/06/22 14:39:23 Notification ==>Initialize D:\product\10.1.3.1\OracleAS_1\j2ee\home\applications\esb-rt.ear ends...
10/06/22 14:39:23 Notification ==>Starting application : esb-rt
10/06/22 14:39:23 Notification ==>Initializing ClassLoader(s)
10/06/22 14:39:23 Notification ==>Initializing EJB container
10/06/22 14:39:23 Notification ==>Loading connector(s)
10/06/22 14:39:23 Notification ==>Starting up resource adapters
10/06/22 14:39:23 Notification ==>Warning. Unable to set up connection factory to location esb-rt for a resource adapter in {1}
10/06/22 14:39:23 Notification ==>Initializing EJB sessions
10/06/22 14:39:23 Notification ==>Committing ClassLoader(s)
10/06/22 14:39:23 Notification ==>Initialize provider-war begins...
10/06/22 14:39:23 Notification ==>Initialize provider-war ends...
10/06/22 14:39:23 Notification ==>Started application : esb-rt
10/06/22 14:39:23 Notification ==>Application Deployer for esb-rt COMPLETES. Operation time: 203 msecs
10/06/22 14:39:24 Notification ==>Application Deployer for orainfra STARTS.
10/06/22 14:39:24 Notification ==>Copy the archive to D:\product\10.1.3.1\OracleAS_1\j2ee\home\applications\orainfra.ear
10/06/22 14:39:24 Notification ==>Initialize D:\product\10.1.3.1\OracleAS_1\j2ee\home\applications\orainfra.ear begins...
10/06/22 14:39:24 Notification ==>Unpacking orainfra.ear
10/06/22 14:39:24 Notification ==>Done unpacking orainfra.ear
10/06/22 14:39:24 Notification ==>Unpacking orainfra.war
10/06/22 14:39:24 Notification ==>Done unpacking orainfra.war
10/06/22 14:39:24 Notification ==>Initialize D:\product\10.1.3.1\OracleAS_1\j2ee\home\applications\orainfra.ear ends...
10/06/22 14:39:24 Notification ==>Starting application : orainfra
10/06/22 14:39:24 Notification ==>Initializing ClassLoader(s)
10/06/22 14:39:24 Notification ==>Initializing EJB container
10/06/22 14:39:24 Notification ==>Loading connector(s)
10/06/22 14:39:24 Notification ==>Starting up resource adapters
10/06/22 14:39:24 Notification ==>Initializing EJB sessions
10/06/22 14:39:24 Notification ==>Committing ClassLoader(s)
10/06/22 14:39:24 Notification ==>Initialize orainfra begins...
10/06/22 14:39:24 Notification ==>Initialize orainfra ends...
10/06/22 14:39:24 Notification ==>Started application : orainfra
10/06/22 14:39:24 Notification ==>Application Deployer for orainfra COMPLETES. Operation time: 219 msecs
dehydrationStore:
Configuring data sources for olite dehydration store ...
${env.PCHOME}
install-developer:
design time host dpxc67-01
design time port 8888
primary container home
the host is dpxc67-01and the port is 8888
Exception in thread "main" oracle.tip.esb.install.exception.InstallationDBException: Connection Refused ""
at oracle.tip.esb.install.db.NonOracleDB.runConnectionTest(Unknown Source)
at oracle.tip.esb.install.db.NonOracleDB.load(Unknown Source)
at oracle.tip.esb.install.ESBInstaller.setupDB(Unknown Source)
at oracle.tip.esb.install.ESBInstaller.handleDesignTimeSpecificActions(Unknown Source)
at oracle.tip.esb.install.ESBInstaller.main(Unknown Source)
Caused by: java.sql.SQLException: [POL-3023] ????????
at oracle.lite.poljdbc.LiteThinJDBCConnection.thinSQLError(Unknown Source)
at oracle.lite.poljdbc.LiteThinJDBCConnection.thinDriverConnect(Unknown Source)
at oracle.lite.poljdbc.LiteThinJDBCConnection.connect(Unknown Source)
at oracle.lite.poljdbc.LiteThinJDBCFactory.createConnection(Unknown Source)
at oracle.lite.poljdbc.POLJDBCConnection.<init>(Unknown Source)
at oracle.lite.poljdbc.OracleConnection.<init>(Unknown Source)
at oracle.lite.poljdbc.POLJDBCDriver.connect(Unknown Source)
at oracle.tip.esb.install.db.DriverManagerDataSource.getConnection(Unknown Source)
... 5 more
Java Result: 1
Copying 1 file to D:\product\10.1.3.1\OracleAS_1\j2ee\home\lib\ext
set_app_sso_option:
Using sso=true. Redeploying esb-dt with sso
Copying 1 file to D:\product\10.1.3.1\OracleAS_1\j2ee\home\applications\esb-dt\META-INF
Copying 1 file to D:\product\10.1.3.1\OracleAS_1\j2ee\home\application-deployments\esb-dtIt could be due to system language setting -
install SOA Suite failed
Regards,
Anuj -
[ANN] Online seminar - Web services management and security seminar
Join us now (Thu 09:00am) for a live seminar about Web services management and security here:
http://www.oracle.com/technology/tech/java/newsletter/seminars.htmlI have got the following error when i run the WebServicesAssembler.jar
D:\Oracle\Oc4j\j2ee\home>java -jar d:/oracle/oc4j/webservices/lib/WebServicesAss
embler.jar -config etc/config.xml
Exception in thread "main" java.util.zip.ZipException: The system cannot find th
e path specified
at java.util.zip.ZipFile.open(Native Method)
at java.util.zip.ZipFile.<init>(ZipFile.java:105)
at java.util.jar.JarFile.<init>(JarFile.java:110)
at java.util.jar.JarFile.<init>(JarFile.java:52)
D:\Oracle\Oc4j\j2ee\home>java -jar WebServicesAssembler.jar -config etc/config.x
ml
Exception in thread "main" java.lang.InstantiationException: Unknown deployment
tag in JMS Web Service Example: <option>
at com.evermind.xml.XMLConfig.parseDeploymentMainNode(XMLConfig.java:293
at oracle.j2ee.ws.tools.WsAssemblerConfig.parseDeploymentMainNode(WsAsse
mblerConfig.java:68)
at com.evermind.xml.XMLConfig.parseRootNode(XMLConfig.java:268)
at com.evermind.xml.XMLConfig.init(XMLConfig.java:147)
at com.evermind.xml.XMLConfig.init(XMLConfig.java:88)
at oracle.j2ee.ws.tools.WsAssemblerConfig.init(WsAssemblerConfig.java:30
at oracle.j2ee.ws.tools.WsAssembler.main(WsAssembler.java:17) -
How to call a web service that is managed by web services manager from omni
Ok gurus... here is an interesting one for you.
We have a set of web services that are deployed to our server. We have Oracle Web Services Manager deployed to another server and is acting as a gateway to our web services.
We would like to call our web service and pass it the username and password that were specified in the omniportlet connection information screen. How do we go about doing this?
PS. We are using the latest version of portal (10.1.4).
Thanks for your help.
Cheers,
CoryJust a follow up. What I would like to do is to have omni portlet add standard header information for security such as the following:
<soap:Header>
<wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/200401-wss-wssecurity-secext-1.0.xsd">
<wsse:UsernameToken xmlns:wsse="http://docs.oasis-open.org/wss/200401-wss-wssecurity-secext-1.0.xsd">
<wsse:Username>theusername</wsse:Username>
<wsse:Password>thepassword</wsse:Password>
</wsse:UsernameToken>
</wsse:Security>
</soap:Header>
Any ideas on how to get omniportlet do this? Any ideas on where to look for the answer? Oracle dudes: Any plans to add this to future releases?
Thanks again folks :-)
Cory -
Confirming method to secure web services through oracle web service manager
Hi All,
I am just wondering about the method to secure web service through oracle web service manager.
I have a unsecure web service "helloworld" which is deployed on JWSDP1.6 toolkit.I want to secure it through oracle web service manager.
Inorder to secure this unsecure web service,I use gateway(web service manager for securing web service using message level security through certificate).
So when client want to access the helloworld service,it contacts the gateway securely and gateway intern connect to original web service after decrypting and verification of the signature.When gateway gets response from the web service,it signs the response message and then encrypt and passs on to the client.
So my question is,is it the right way to secure web service?
As I am getting the following fault exception :
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Body>
<SOAP-ENV:Fault>
<faultcode "http://schemas.oblix.com/ws/2003/08/Faults">c</faultcode>
<faultstring>Step execution failed with an exception
</faultstring>
<detail></detail>
</SOAP-ENV:Fault>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
I checked the log at :
C:\coresv_install_home\external\oc4j-10.1.2.0.0\j2ee\home\log\http-web-access
but there is no helpful information available.Thanks for any help.
KashHi Rajesh,
Thanks for your reply.I am using the following policy steps:
1)for Request (Decrypt and Verify signature).
2)for Response(Sign Message and Encrypt).
The configuration for Request is shown below:
Pipeline "Request"
Pipeline Steps:
Start Pipeline
Log
Decrypt and Verify Signature
Basic Properties Type Default Value
Enabled (*) boolean true true
XML Decryption Properties Type Default Value
Decryptor''s keystore location (*) string C:\Sun\jwsdp-2.0\xws-security\etc\server-keystore.jks
Decrypt Keystore Type (*) string jks jks
Decryptor''s keystore password string *******
Decryptor''s private-key alias (*) string s1as
Decryptor''s private-key password string *******
Enforce Encryption (*) boolean true true
XML Signature Verification Properties Type Default Value
Verifying Keystore location (*) string C:\Sun\jwsdp-2.0\xws-security\etc\server-truststore.jks
Verifying Keystore type (*) string jks jks
Verifying Keystore password string *******
Signer''s public-key alias (*) string xws-security-client
Enforce Signing (*) boolean true true
End Pipeline
And the configuration for Response is shown below:
Pipeline "Response"
Pipeline Steps:
Start Pipeline
Log
Sign Message and Encrypt
Basic Properties Type Default Value
Enabled (*) boolean true true
Signing Properties Type Default Value
Signing Keystore location (*) string C:\Sun\jwsdp-2.0\xws-security\etc\server-keystore.jks
Signing Keystore Type (*) string jks jks
Signing Keystore password string *******
Signer''s private-key alias (*) string s1as
Signer''s private-key password string *******
Signed Content (*) string BODY BODY
Sign XPATH Expression string
Sign XML Namespace string[]
Encryption Properties Type Default Value
Encryption Keystore location (*) string C:\Sun\jwsdp-2.0\xws-security\etc\server-truststore.jks
Encrypt Keystore Type (*) string jks jks
Encryption Keystore password string *******
Decryptor''s public-key alias (*) string xws-security-client
Encrypted Content (*) string BODY BODY
Encrypt XPATH Expression string
Encrypt XML Namespace string[]
End Pipeline
I checked the log again but nothing useful there,it is just giving the following values:
2006-08-14 16:32:50,372 INFO [Thread-21] mstore.OLiteMStore - SELECT MEASUREMENT_STR FROM MEASUREMENT_PERSISTED_STORE WHERE ID=? FOR UPDATE
2006-08-14 16:34:50,364 INFO [Thread-16] mstore.OLiteMStore - INSERT INTO MEASUREMENT_PERSISTED_STORE (ID,DEF_ID,CONTEXT_ID,PARENT_CONTEXT_ID,TIME,STORETIME,KEY0,KEY1,KEY2,KEY3,KEY4,KEY5,KEY6,KEY7,KEY8,KEY9,KEY10,KEY11,KEY12,KEY13,KEY14,KEY15,KEY16,KEY17,KEY18,KEY19,KEY20,KEY21,KEY22,KEY23,KEY24,KEY25,KEY26,KEY27,KEY28,KEY29,KEY30,KEY31,KEY32,KEY33,KEY34,KEY35,KEY36,KEY37,KEY38,KEY39,DBM0,MEASUREMENT_STR) VALUES(?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,'R',empty_clob())
2006-08-14 16:34:50,364 INFO [Thread-16] mstore.OLiteMStore - SELECT MEASUREMENT_STR FROM MEASUREMENT_PERSISTED_STORE WHERE ID=? FOR UPDATE
Any help would be appreciated.Thanks.
Kash -
Exception while accessing web service secure through web services Manager
Hi All,
I deployed sime Hello World web service on JWSDP1.6 and secure it through web service manager(gateway) using Certificate based security.But when I try to access this web service using JWSDP client,I got the following Error while monitoring the soap messages through TCP-Monitor:
/////////////////////////////////Request///////////////////////////////////////////////////////////////
POST /gateway/services/SID0003009 HTTP/1.1
Content-Type: text/xml; charset=utf-8
Accept: text/xml, text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2
Content-Length: 5631
SOAPAction: ""
User-Agent: Java/1.5.0_05
Host: ivy.cs.ucl.ac.uk:8082
Connection: keep-alive
<?xml version="1.0" encoding="UTF-8"?><env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/" xmlns:enc="http://schemas.xmlsoap.org/soap/encoding/" xmlns:ns0="http://hello.org/wsdl" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" env:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/"><env:Header>
<wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" env:mustUnderstand="1"><xenc:EncryptedKey xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<wsse:SecurityTokenReference>
<wsse:KeyIdentifier EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509SubjectKeyIdentifier">eN9famBBWzHNUIwWRhMPktcM+VQ=</wsse:KeyIdentifier>
</wsse:SecurityTokenReference>
</ds:KeyInfo><xenc:CipherData><xenc:CipherValue>MHjtgA4wOtvI1B+SuRVEmD07yE+jl6axd4XbJ0nvQ3EzSuVVoST9vHzURh+B47yj41187s8T+yjt
Bmpk9OB278Jghonkacv6r+q+LVlxRrQDudNGir7plzFeM6bUadMxf+FLgn5O0a44vU/tvy6V9+zi
yqFdhTvS21No/aW62No=</xenc:CipherValue></xenc:CipherData><xenc:ReferenceList><xenc:DataReference URI="#XWSSGID-1155126003241-1198323932"/></xenc:ReferenceList></xenc:EncryptedKey><wsse:BinarySecurityToken xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" wsu:Id="XWSSGID-11551260018331598979688">MIIC3TCCAkagAwIBAgIBATANBgkqhkiG9w0BAQQFADBJMQswCQYDVQQGEwJVUzEMMAoGA1UECBMD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=</wsse:BinarySecurityToken><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"><InclusiveNamespaces xmlns="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="wsse enc env ns0 xsd xsi"/></ds:CanonicalizationMethod><ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/><ds:Reference URI="#XWSSGID-1155126002593447652186"><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>UJ1kuwI+WuF/RkrQpZrj1GvraLI=</ds:DigestValue></ds:Reference><ds:Reference URI="#XWSSGID-1155126002602761294100"><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>sKG/z5OIGgqJ2nw7JtpXyJzr8pY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>SBc65VTG1xpEkRUTz70H0fVGIgoBJ0QnNad0k07RMSfw4vG1WHJdt19R05pO2AvU5aoYuBSaguJe
ZGEjmWzw8mnSWKBi+zeDMeJiwgqwW6HHHX9P7JDslxuTIqoJIVUbSjUTSVz6ww8siIK65quXdkMT
ZzLfp7Cd0gBuA3EEZpg=</ds:SignatureValue><ds:KeyInfo><wsse:SecurityTokenReference xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="XWSSGID-11551260025411896275738">
<wsse:Reference URI="#XWSSGID-11551260018331598979688" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/>
</wsse:SecurityTokenReference></ds:KeyInfo></ds:Signature><wsu:Timestamp xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="XWSSGID-1155126002602761294100"><wsu:Created>2006-08-09T12:20:02Z</wsu:Created><wsu:Expires>2006-08-09T12:20:07Z</wsu:Expires></wsu:Timestamp></wsse:Security></env:Header><env:Body xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="XWSSGID-1155126002593447652186"><xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" Id="XWSSGID-1155126003241-1198323932" Type="http://www.w3.org/2001/04/xmlenc#Content"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/><xenc:CipherData><xenc:CipherValue>XNqEzHNp47ILtOagAUNCXYkxOCWv4CjHqmZ7j6VKN/NO96ce4BsNSL6lKzqa9dPxHB1sTVGZQ8KA
COQ6DGwyWCP8ip+CU2hor3uUAml7nzHTx1LUw3Db+0p31VAT3EqKJA3aFy38GQrBTr9ojMOUA6tm
Cj71yucN3UCKRUl3RpE8qU68y7AwNxPsyAZeSa2AVm2cmWvSDZlxgMsx+JCEZaf3+D0o1zMp0Fxb
MSISPt/JrEolt1H5UM1AoFGU4QkckWrQNLPyEF9oxEgZ8oCE5U8v/YJwZIAHFrx67XfaLwQLjzXw
VPigsH9gLkfbP2BU8Vp31GsPwBZtUeNz9S35+CZPD7EiqoAB1QuAxZkJV7n00VChYH+scT64tNja
c81bcD8tf4sAr7toCMNDAU6+74+Qy0EyPqgwLtotDxErn4kF8e72cONMMQBQ91tQs+iI+D6C1I6+
f9UiSfgtm/MTuKQK1CRqarEtI9N6lpqVH8k7ulUwH/jFstihxmhMJ3aZY+qQgSwSs3pwSSim+e18
eR7dOEq4vG8ivKuGvTDO4sSV2RP/nL/3eXr0y7eM0kMFKwTUA4JqL4Y/l8Bo/rie/ZXkkbF6hwEu
dX1QmB0gf5k=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedData></env:Body></env:Envelope>
////////////////////////////////Response///////////////////////////////////////////////////////////////
HTTP/1.1 100 Continue
Server: Oracle Application Server Containers for J2EE 10g (10.1.2.0.0)
Date: Wed, 09 Aug 2006 12:28:47 GMT
HTTP/1.1 500 Internal Server Error
Date: Wed, 09 Aug 2006 12:28:47 GMT
Server: Oracle Application Server Containers for J2EE 10g (10.1.2.0.0)
Connection: Keep-Alive
Keep-Alive: timeout=15, max=100
Content-Type: text/xml
Transfer-Encoding: chunked
157
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"><SOAP-ENV:Body><SOAP-ENV:Fault><faultcode xmlns:p="http://schemas.oblix.com/ws/2003/08/Faults">c</faultcode><faultstring>Step execution failed with an exception</faultstring><detail></detail></SOAP-ENV:Fault></SOAP-ENV:Body></SOAP-ENV:Envelope>
0
So basically, what I am doing here as follows:
HelloClient(using JWSPD1.6)->gateway(web service manager for securing the web service using message level security through certificate )->helloservice(deployed using JWSDP1.6)
I would appreciate if someone could tell me the cause of this errror.Thanks.
Kashiftime to look into the gateway logs as stated by the fault ..
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"><SOAP-ENV:Body><SOAP-ENV:Fault><faultcode xmlns:p="http://schemas.oblix.com/ws/2003/08/Faults">c</faultcode><faultstring>Step execution failed with an exception</faultstring><detail></detail></SOAP-ENV:Fault></SOAP-ENV:Body></SOAP-ENV:Envelope>
looks like the cipher step might have failed -
Web Services Manager - register services
Hi all,
I have an OC4J Standalone(10.1.3), Web Services Manager(4.0.3) and OracleAS Service Registry(10.1.3).
I have a Web Service deployed in OC4J.
Then I register de WS in OWSM in a Gateway, but I cannot see the wsdl. The error is:
System does not support the specified encoding. Error processing resource 'http://10.10.10.10:3115/ccore/policyMgmt/registry/ShowWSDL.jsp?serviceId=SID0003005'.
When I tried to go to http://10.10.10.10:3115/firstGateway/services/SID0003005?wsdl, the page cannot be found.
When I test the WS in OC4J is everything ok.
Any idea??
the version of JDK is 1.4.2
Thank you in advance,
CDThe section in the doc you're quoting refers to integration with Oracle's Web Services Manager (WSM) which is another product. If you're deploying SPML web service to the app server (and without WSM), then you need to read the Deploying with ... section 12.3 where it has details about each app server. The endpoint URLs of a deployed service are:
Weblogic: /spmlws/OIMProvisioning
JBoss: /spmlws/services/HttpSoap11
Websphere, OC4J: /spmlws/HttpSoap11
Once you've deployed the SPML web service, run the sample client, you even get the source code so you can see exactly what's going on. If you want to generate Java classes from a WSDL using some web services toolkit, there's nothing that's stopping you from doing that, just grab a WSDL for the right app server. -
Errors when compiling the web service (SAP Web Service Design Tool)
After downloading and installing the SAP de Web Service Design Tool (for Crystal Reports Server) I created a connection, a simple query and was able to deploy a web services. I tested the web service with an Xcelsius dashboard within InfoView. Thereafter I created a second connection (other name but same ODBC connection / server) and created another simple query with two date(range) parameters and a group by year and month function in order to do a select count(). It executes fine, but when I try to publish the web service I get an error.
There are errors when compiling the web service.
Is does not say whatu2019s wrong or how I can solve this problem.
Who can help me?
Some notes:
1) Within expert mode I used a MONTH() SQL function which does not show in the normal mode.
2) It seams that the u2018administrationu2019 of Web Service Design Tool got u2018corruptedu2019 after only creating the two connections, queries and services mentioned above. I believe so because I could select one of two queries when I created the second service, but within the current connection I had only one query.
Thanks for any help,
Ron
ADDITIONAL INFO: The parameters seam to be the problem. After removing the parameters I can publish the service. But without parameters it is NO SOLOTION.
Edited by: RonKoudijs on Aug 26, 2010 6:28 PMHello Taylan,
I think the error that you received was due to packaging issues.I placed the
UtilClass.java file under a directory called data which was present under
the project directory.
When you want to access a java class, you can either place the compiled
class file in the WEB-INF/classes folder or you can place the java file
under the project directory.
I have attached the sample project that I created with your files.
Let me know if you have any other questions.
Thanks
Raj Alagumalai
WebLogic Workshop Support
"taylan" <[email protected]> wrote in message
news:3d6351b0$[email protected]..
>
I am trying to write a simpe web service in WebLogic Workshop, but havingan error
which I could not understand. Could you please help me? Thanks in advance.
Regards,
Taylan
My web service code is like belows:
import weblogic.jws.control.JwsContext;
import data.*;
public class WebService1
/** @jws:context */
JwsContext context;
* @jws:operation
public UtilClass testType(UtilClass tTest){
UtilClass returnObj=new UtilClass();
if(tTest.getName()!= null){
returnObj.setName(tTest.getName());
return returnObj;
and my UtilClass is placed in the data directory under the same directorywith
my web service code. It is a simpe class as belows:
package data;
public class UtilClass
private String name;
public void setName(String name){
this.name=name;
public String getName(){
return name;
However I got an error when I try to compile the webservice class. Theerror is
like belows:
File Line Message
WebService1.jws 0 Resource found on system classpath: data.UtilClass
Build complete - 1 error(s), 0 warning(s)
[ngroup.zip] -
Problem with signed SAML assertion and Web Services Manager
Folks,
I’m having some issues trying to generate a proper signed SAML assertion using JDeveloper 10.1.3. I am securing a java proxy class using the wizard as described in http://www.oracle.com/technology/products/jdev/howtos/1013/wssecure/10gwssecurity_howto.html .
On the OWSM side, I have a service that I am securing with SAML - Verify WSS 1.0 Token. If I set the "Allow signed assertions only" property to false I can complete the service call. However, when it is set to true I am receiving the following fault: javax.xml.rpc.soap.SOAPFaultException: SAML token verification failed.
When I examine the message going to OWSM in a packet analyzer, it is missing the signature in the SAML assertion. The <saml:Assertion> tags looks like:
<saml:Assertion MajorVersion="1" MinorVersion="1"
xmlns="urn:oasis:names:tc:SAML:1.0:assertion"
xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion"
AssertionID="yM0oqZgF0N1a1td6yzKgOQ22"
IssueInstant="2007-01-23T17:15:27Z"
Issuer="HealthMarkets_s3">
<saml:Conditions NotBefore="2007-01-23T17:15:27Z"
NotOnOrAfter="2007-01-24T17:15:27Z"/>
<saml:AuthenticationStatement AuthenticationInstant="2007-01-23T17:15:27Z"
AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:password">
<saml:Subject>
<saml:NameIdentifier Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">client_s3</saml:NameIdentifier>
<saml:SubjectConfirmation>
<saml:ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:sender-vouches</saml:ConfirmationMethod>
</saml:SubjectConfirmation>
</saml:Subject>
</saml:AuthenticationStatement>
</saml:AssertionI have selected the Sign Outbound Messages in step 3 of the Secure Web Proxy Wizard. This step uses the DSA-SHA1 algorithm.
Any help is greatly appreciated.
Thanks in advance,
JosephThanks for the response. I am not using any pages for this application yet... just calling the web service from SOAP UI or any Web Service testing tool causes the problem.
All that has to be done to replicate it is to build a simple EJB 3.0 JPA bean using the entities from tables wizard and then add named query as follows:
@NamedQuery(name = "BomHeader.findByDesc", query = "select o from BomHeader o where o.bomDesc like :p_bomDesc")
then build a session bean with the wizard that includes the JPA persistence unit and the entity and subsequently use the wizard to wrap the session bean in a web service.
The whole replication process should take 5 minutes if you have some database tables to work with. It breaks when the web service is called.
Thanks in advance -
Web services manager control login problem
hi,
I have installed SOA suite using Advanced installation type.
After installation I am able to login into BPEL Console and it's working fine , but unable to login into web services manager control(http://localhost:8888/ccore) with oc4jadmin user...
I found below errors in ccore.log file
2008-10-03 09:33:45,879 INFO [AJPRequestHandler-HTTPThreadGroup-54] userregistry.UsersTable - isValidUserPassword() failed for oc4jadmin
2008-10-03 09:33:45,879 INFO [AJPRequestHandler-HTTPThreadGroup-54] sampledb.LocalDBAuthProvider - The error in authenticate for user : oc4jadmin
2008-10-03 09:33:45,879 SEVERE [AJPRequestHandler-HTTPThreadGroup-54] uibeans.LoginBean - Error when authenticating user. Invalid user id or password
2008-10-03 10:17:30,744 SEVERE [AJPRequestHandler-HTTPThreadGroup-54] userregistry.UsersTable - isActiveUser() failed for oc4jadmin
com.cfluent.utils.db.DBException: ORA-01017: invalid username/password; logon denied
at com.cfluent.utils.db.DBContext.getConnection(DBContext.java:95)
at com.cfluent.db.userregistry.UsersTable.isActiveUser(UsersTable.java:2599)
at com.cfluent.db.userregistry.UsersTable.isValidUserPassword(UsersTable.java:2996)
at com.cfluent.accessprovider.sampledb.LocalDBAuthProvider.authenticate(LocalDBAuthProvider.java:61)
at com.cfluent.access.AccessSessionFactory.isAuthenticated(AccessSessionFactory.java:137)
at com.cfluent.access.AccessSessionFactory.createSession(AccessSessionFactory.java:92)
at com.cfluent.webui.uibeans.LoginBean.authenticateUser(LoginBean.java:31)
at com.cfluent._coresv._Login._jspService(_Login.java:354)
at com.orionserver.http.OrionHttpJspPage.service(OrionHttpJspPage.java:59)
at com.evermind.server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:64)
at oracle.i18n.servlet.filter.ServletFilter.doFilter(ServletFilter.java:130)
at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:621)
at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:368)
at com.evermind.server.http.HttpRequestHandler.doProcessRequest(HttpRequestHandler.java:866)
at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:448)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:302)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:190)
at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260)
at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303)
at java.lang.Thread.run(Thread.java:595)
Caused by: java.sql.SQLException: ORA-01017: invalid username/password; logon denied
at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:125)
at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:316)
at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:277)
at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:272)
at oracle.jdbc.driver.T4CTTIoauthenticate.receiveOauth(T4CTTIoauthenticate.java:647)
at oracle.jdbc.driver.T4CConnection.logon(T4CConnection.java:308)
at oracle.jdbc.driver.PhysicalConnection.<init>(PhysicalConnection.java:361)
at oracle.jdbc.driver.T4CConnection.<init>(T4CConnection.java:151)
at oracle.jdbc.driver.T4CDriverExtension.getConnection(T4CDriverExtension.java:32)
at oracle.jdbc.driver.OracleDriver.connect(OracleDriver.java:595)
at java.sql.DriverManager.getConnection(DriverManager.java:525)
at java.sql.DriverManager.getConnection(DriverManager.java:171)
at org.apache.commons.dbcp.DriverManagerConnectionFactory.createConnection(DriverManagerConnectionFactory.java:48)
at org.apache.commons.dbcp.PoolableConnectionFactory.makeObject(PoolableConnectionFactory.java:290)
at org.apache.commons.pool.impl.GenericObjectPool.borrowObject(GenericObjectPool.java:771)
at org.apache.commons.dbcp.PoolingDriver.connect(PoolingDriver.java:175)
at java.sql.DriverManager.getConnection(DriverManager.java:525)
at java.sql.DriverManager.getConnection(DriverManager.java:171)
at com.cfluent.utils.db.DBContext.getConnection(DBContext.java:86) ...
can any one help me resolve this problem..You need to enable JSSO if you want the oc4jadmin password to be in scync with the other AS products. If you just want to login with oc4jadmin you perform the following steps. PLease note that if you change the passord in EM you will have to make these changes again to keep the password the same. JSSO is a cleaner solution.
To change the default password for the user "admin", follow these steps:
- delete admin user
- add admin user back
- add admin user to the super user group "su1-grp"
1. Go to OC4J_HOME/owsm/bin directory and modify manageUserGroups.properties
user_id=admin
user_name=admin user
user_password=yourNewPassword
user_email=[email protected]
group_id=su1-grp
group_desc=super user group
2. Delete the existing admin user by executing
wsmadmin manageUserGroups deleteUser
4. Add the admin user again by executing
wsmadmin.bat manageUserGroups addUser
5. Add admin user to super user group
wsmadmin.bat manageUserGroups addUserGroup
The admin user password is changed. -
Oracle Web Service Manager Login failed
Hi ,
I had installed advance version of SOA 10.1.3.1 on windows xp. I abel to login to all component other than web service manager.I am using the oc4jadmin user id and its password to login.Please let me know what i have to do to fix it.
Regards,
PankajHi syed,
I completely agree to you. But I observed that after advanced installation of SOA suite, only OWSM uid & pwd defers from the default oc4jadmin uid & pwd like for other components.
We can configure that at later point of time. But by default, oc4jadmin credential will not work.
Cheers,
Abhi... -
Integration access manager and web services manager
Hi,
Can the SSO token sent by the access manager be used by the SOA suite web services manager ? I would assume that this is a trivial configuration.
Can anyone help with some ideas ?
Thanks,
MohanSOA Suite has Oracle Web Services Manger which can accept Oracle Access manger token. Instead of passing the obSSOCookie to all the services in SOA Suite ( in which case you are making the services available only to OAM authenticated users) you can create SAML token from your obSSOCookie and then send the SAML token to the SOA.
If you want to just pass obSSOCookie to SOA Suite/ Oracle WSM, yes it is straightforward. (you have to follow the steps in OWSM document)
Thanks
Ram -
Nyone who had success using sign-encrypt policy(oracle web service manager)
Hi All,
I could not succeed in using sign Message and Encrypt and decrypt and verify signature policy using oracle web services manager.So I would be grateful if somebody who had success in using it would shed light on its use.
Basically,I am using the following policy steps in securing a helloworld web service using gateway(oracle web services manager) :
1)for Request (Decrypt and Verify signature).
2)for Response(Sign Message and Encrypt).
The configuration for Request is shown below:
Pipeline "Request"
Pipeline Steps:
Start Pipeline
Log
Decrypt and Verify Signature
Basic Properties Type Default Value
Enabled (*) boolean true true
XML Decryption Properties Type Default Value
Decryptor''s keystore location (*) string C:\Sun\jwsdp-2.0\xws-security\etc\server-keystore.jks
Decrypt Keystore Type (*) string jks jks
Decryptor''s keystore password string *******
Decryptor''s private-key alias (*) string s1as
Decryptor''s private-key password string *******
Enforce Encryption (*) boolean true true
XML Signature Verification Properties Type Default Value
Verifying Keystore location (*) string C:\Sun\jwsdp-2.0\xws-security\etc\server-truststore.jks
Verifying Keystore type (*) string jks jks
Verifying Keystore password string *******
Signer''s public-key alias (*) string xws-security-client
Enforce Signing (*) boolean true true
End Pipeline
And the configuration for Response is shown below:
Pipeline "Response"
Pipeline Steps:
Start Pipeline
Log
Sign Message and Encrypt
Basic Properties Type Default Value
Enabled (*) boolean true true
Signing Properties Type Default Value
Signing Keystore location (*) string C:\Sun\jwsdp-2.0\xws-security\etc\server-keystore.jks
Signing Keystore Type (*) string jks jks
Signing Keystore password string *******
Signer''s private-key alias (*) string s1as
Signer''s private-key password string *******
Signed Content (*) string BODY BODY
Sign XPATH Expression string
Sign XML Namespace string[]
Encryption Properties Type Default Value
Encryption Keystore location (*) string C:\Sun\jwsdp-2.0\xws-security\etc\server-truststore.jks
Encrypt Keystore Type (*) string jks jks
Encryption Keystore password string *******
Decryptor''s public-key alias (*) string xws-security-client
Encrypted Content (*) string BODY BODY
Encrypt XPATH Expression string
Encrypt XML Namespace string[]
End Pipeline
But I am getting the following fault exception while accessing this secure web service :
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Body>
<SOAP-ENV:Fault>
<faultcode "http://schemas.oblix.com/ws/2003/08/Faults">c</faultcode>
<faultstring>Step execution failed with an exception
</faultstring>
<detail></detail>
</SOAP-ENV:Fault>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
I would appreciate your help.Thanks.
KashHi clemens,
Actually I installed OracleWebServices_Manager_4_0_3 and I see my installation directory does not contain any of the directory structure you mention.
It installed oracle web services manager in the following location:
C:\coresv_install_home
and it contains the following subdirectories:
1)bin
2)config
3)db
4)ears
5)external
6)extlicences
7)lib
8)samples
9)scripts
10)wars
So I like to ask did you install the same version of the oracle web services manager, if not which version you install in which security is working for you.Thanks for any help.
Kash -
Web Services Manager Control, SOA Suite, Retrieving Roles from OID
I am a bit confused about mapping of groups and privileges when it comes to the LDAP (in my case oracle internet directory, OID) and groups defined by Web Services Manager Control.
I am using Web Services Manager Control->Manage Policies to define a gateway (or agent) for my web services. Through
Policy Management > Manage Policies > Policies > Policy
I have also defined some pipeline steps which require authorization by an LDAP provider.(OID)
I need two things:
- First I have such roles and groups here in Web Services Manager:
Administration > Groups / Roles
Group Name Role Name
su1-grp Super User
da1-grp Domain Administrator
ca1-grp Component Administrator
ca2-grp Component Administrator
which could be set for view and modification of web services. What is the relation between these groups and user groups in Oracle Internet Directory which I authorize against?
- Second, my web services are invoked from pages which access to them involves authentication and authorization against OID. I need the username/password to be propagated to the webservice automatically. If the web service is presented as a button on such pages, for example, I don't want the user to be forced to enter username/passwords for each call to the services/
I appreciate any comments or reference to books and documents.
Thank you in advance.
Best Regards,
FarbodHi Farbod
Your problem is not new and i have posted in couple of other threads before.
Roles in OID are for you to authorize the web service message itself. In your case when the user logins to your web application and calls the web service, you have to do two things:
a) Extract Credentials
b) AUthenticate against LDAP
c) Perform authorization against LDAP
Now the trick part is, you have to have the same username and password. You have to capture and store in session( ugly ugly..from security point of view) and then when you call the web service, you then invoke with the username and password.
There are other better options available but might require additonal work or infrastructure.
If your web application is protected by Oracle Access Manager or siteminder, you can pass those cookies.
Next option is using SAML. You can generate SAML token on behalf of the user, and attach the SAML token to the web service messsage. In OWSM you then configure to validate SAML token and then you have to write custom step to extract the user name and perform any authorization.
Since anyway you have to write custom step, third option is you can send encrypted cookie ( You web application can create a login session cookie -encrypted after the user signed in ). In OWSM you can write custom step to decrypt the cookie and then perform any validation.
You have the easiest option of sending the same username and password with a security risk, or a custom development approach.
Thanks
Ram -
Gateway in Oracle Web Service Manager
Hi,
Does anybody know a really usable document for gateways in Oracle Web Service Manager?
I tried to use the common Oracle's document to create a gateway and counfigure a tomcat-axis web service in it, but I could not manage it.
Supposing that I have a webservice on http://localhost:8088/axis/services/ExtService?wsdl
and I have a OWSM administrable on http://localhost:3115/ccore
what wuld be the steps to register my webservice into OWSM to be able to call my web service through OWSM?
thanx in advance,
AttilaHi Eric,
thank you for your answer.
Now I managed to authenticate the user with WS-BASE against LDAP server (ApacheDS), but, with the authorization I can not move on.
The structure of my Ldap entries is the following:
-> system
-> groups
-> tomcatCallers
attributes: cn: tomcatCallers
objectClass: groupOfUniqueNames
objectClass: top
uniqueMember: 0.9.2342.19200300.100.1.1=owsmuser,
0.9.2342.19200300.100.1.1=admin,2.5.4.11=system
-> users
-> owsmuser
attributes: cn: OWSM user
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: top
sn: OWSM
uid: owsmuser
So, Authentication against owsmuser is OK, with parameters:
LDAP baseDN (*): ou=users,ou=system
Uid Attribute (*): uid
How should I configure the policy step Ldap Authorize?
I tried it with parameters:
LDAP baseDN (*): ou=system
ServiceRoles : tomcatCallers
Uid Attribute (*): uid
but it does not seem to work. I get the fault: 'Access Denied. User: owsmuser'
One more question :-) :
if I make a 2nd policy gateway with ID C0003002 and configure it in file
%OWSM_HOME%\j2ee\home\applications\gateway\gateway\WEB-INF\gateway-config-installer.properties
with propery gateway.component.id=C0003002 and restart the OWSM the gateway identified by C0003001 becomes unreachable.
How can I configure OWSM to eable all the gateways at the same time?
thanx in advance,
Attila
Edited by: user5329589 on Jul 1, 2010 5:04 AM
Maybe you are looking for
-
Can I connect my ipad to the tv and record to DVD HDD
Can I connect my ipad to the tv and record to DVD HDD
-
Implementation could not be updated
Hi, I am currently trying to develop an application which interacts with BAPIs. It was working perfectly fine earlier on. Then i went and changed the BAPI and re-imported the model. After that my component controller implementation is giving me error
-
Customer-Fields for accounting
Hello, i have a question about adding customer-fields to accounting. According to SAP-Note Note 458591, its easily possible to create additional fields by only create them in append-structures. For me it sounds like you only have to do this and addit
-
Email manager lost after sw update
with sw ver10.40 I used nokia email service. Few days ago I updated the software with ver10.45. From then the email service in messages has been replace by converter but IM is still working. Someone help me out... What to do to get it back.. I search
-
Is there a way to reduce the captured video resolution of the camera? Video files are HUGE in size and 1. Take forever to load on Apple TV to show others (a minutes and a half video takes almost a minute and a half before the video will start to play