Weblogic 7 sp2 missing SOAP header

Similar Messages

• Exception "main" javax.xml.ws.soap.SOAPFaultException: Missing SOAP Header

  Hi
  I need to integrate E-Business Suite with ADF using JAX-WS proxy client. When I tried to invoke a method exposed in webservices, I am getting the below error
  Exception in thread "main" javax.xml.ws.soap.SOAPFaultException: Missing in SOAP Header
  how to pass password with SOAP header?
  In a thread "https://forums.oracle.com/forums/thread.jspa?threadID=2125723", they mentioned to include "wss_username_token_client_policy" and to set override property to set user/pw from a csf key. I included that policy while generating the proxy client in "Step 7" and after then what should I do?
  Is it the only way to invoke secured webservices? if not what are the ways to do it?
  Can anyone give me good example or sample codes to invoke secured webservice through "JAX-WS Proxy client"
  Thanks

  I suppose that this is duplicate of How to pass username/password through WebService proxy client to E-BS.
  For full example check: http://www.javadb.com/using-a-message-handler-to-alter-the-soap-header-in-a-web-service-client
  Dario

• ODI Web Service Soap Header Missing Error

  I am trying to invoke oracle crm ondemand web service using ODIInvokeWebService tool by providing the below parameters
  Url
  Port Type
  Operation
  XML Request
  HTTP User
  HTTP Password
  I am getting the below error during the execution of the step.
  javax.xml.ws.soap.SOAPFaultException: Invalid Soap Request : Soap Header is missing
       at com.sun.xml.ws.fault.SOAP11Fault.getProtocolException(SOAP11Fault.java:189)
       at com.sun.xml.ws.fault.SOAPFaultBuilder.createException(SOAPFaultBuilder.java:122)
       at com.sun.xml.ws.client.dispatch.DispatchImpl.doInvoke(DispatchImpl.java:187)
  The code which is getting executed is
  OdiInvokeWebService "-URL=http://slc402454.us.oracle.com:30090/Services/cte/FieldManagementService?wsdl" "-PORT_TYPE=FieldManagementService" "-OPERATION=FieldManagementRead" "-HTTP_USER=Upgrade_all/sales" "-HTTP_PASS=aYyHL7THHZYEdPNTd.1ugy"
  <?xml version = '1.0' encoding = 'UTF8'?>
  <WL5G3N1:FieldManagementRead_Input xmlns:env="http://schemas.xmlsoap.org/soap/envelope/" xmlns:WL5G3N1="urn:crmondemand/ws/odesabs/fieldmanagement/">
  <apQuery:FieldSet xmlns:apQuery="urn:/crmondemand/xml/fieldmanagement/query">
  <apQuery:ObjectName>Account</apQuery:ObjectName>
  <apQuery:IncludeAll>true</apQuery:IncludeAll>
  </apQuery:FieldSet>
  </WL5G3N1:FieldManagementRead_Input>
  With SOAPUI , I am able to get the response.

  After mentioning the SOAP header and response file as XML with other properties , I am able to successfully retrieve the SOAP response.

• Missing wsse:Security in SOAP Header

  Hi,
  In a Sync RFC->SOAP scenario I'm facing a problem.
  Each time that I invoke the Web service, it returns a fault with the message <i>Missing <wsse:Security> in SOAP Header</i>.
  I have double check ten times that the receiver comm.channel has the user and password, but It's still failing.
  I don't know if it can be helpful, but the Webservice is provided by an Oracle server.
  Thanks in advance for your answers,
  David R.

  Did you try to invoke the webservice another way?like NWDS for example?
  You can write adapter module to see what you are sending to your WebService, here is the process function in Java:
  public ModuleData process(ModuleContext moduleContext,
  ModuleData inputModuleData)
  throws ModuleException {
          try {
                          BufferedWriter out = new BufferedWriter(new FileWriter("c:
  logs
  web.log",true));
                          Message msg = (Message) inputModuleData.getPrincipalData();
                          out.write(msg.getDocument().getText()+ "\n");
                          out.close();
                  } catch (IOException e) {
  return inputModuleData;

• OWSM SAML Verify step problem: Missing Security Header in SOAP message

  I'm having a problem with SAML steps. From gateway log:
  2008-09-17 13:21:32,987 INFO [HTTPThreadGroup-58] saml.InsertSAMLSVStep - User attributes map set to generate the attribute assertions: null
  2008-09-17 13:21:33,034 INFO [HTTPThreadGroup-60] saml.SAMLProcessor - Assertion Major Version :1 , Minor Version :1
  2008-09-17 13:21:33,034 WARNING [HTTPThreadGroup-60] saml.SAMLProcessor - SAML Assertion verification error: An invalid token was provided
  2008-09-17 13:21:33,034 WARNING [HTTPThreadGroup-60] saml.VerifySAMLStep - SAML Token verification failed:
  2008-09-17 13:21:33,096 SEVERE [HTTPThreadGroup-58] wssecurity.OSDTWSSecurity - Missing Security Header in SOAP message
  2008-09-17 13:21:33,096 WARNING [HTTPThreadGroup-58] wssecurity.SecurityBaseStep - Failure while applying XML Security
  FAULT CODE: InvalidSecurity FAULT MESSAGE: Missing WS Security header in the SOAP message
  at com.cfluent.policysteps.security.wssecurity.OSDTWSSecurity.decryptVerify(OSDTWSSecurity.java:369)
  at com.cfluent.policysteps.security.wssecurity.DecryptStep.performXmlSecurity(DecryptStep.java:131)
  at com.cfluent.policysteps.security.wssecurity.SecurityBaseStep.execute(SecurityBaseStep.java:238)
  at com.cfluent.pipelineengine.container.DefaultPipeline.executeStep(DefaultPipeline.java:124)
  but the wsse:Security header with SAML assertion IS confirmed in the incoming message log. Anybody seen this issue?

  Below is the log of the incoming message just prior to the failing SAML Verify step:
  <?xml version="1.0" encoding="UTF-8" ?>
  - <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:ns0="http://exception.common.periop.gehc.com" xmlns:ns1="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:ns2="http://www.patient.patientmanager.periop.gehc.com/service/" xmlns:ns3="http://entity.common.periop.gehc.com" xmlns:ns4="http://entity.patient.patientmanager.periop.gehc.com" xmlns:ns5="http://entity.allergy.patientmanager.periop.gehc.com" xmlns:ns6="http://pdo.domain.customizer.periop.gehc.com" xmlns:ns7="http://entity.cases.scheduler.periop.gehc.com" xmlns:ns8="http://entity.insurance.patientmanager.periop.gehc.com">
  - <env:Header>
  - <ns1:Security>
  - <saml:Assertion MajorVersion="1" MinorVersion="1" AssertionID="158RBY2QvCFPiTqdXYWh9A22" IssueInstant="2008-09-17T19:58:43Z" Issuer="GE" xmlns="urn:oasis:names:tc:SAML:1.0:assertion" xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion">
  <saml:Conditions NotBefore="2008-09-17T19:58:13Z" NotOnOrAfter="2008-09-17T19:59:43Z" />
  - <saml:AuthenticationStatement AuthenticationInstant="2008-09-17T19:58:43Z" AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:password">
  - <saml:Subject>
  <saml:NameIdentifier NameQualifier="www.ge.com" Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">gowri</saml:NameIdentifier>
  - <saml:SubjectConfirmation>
  <saml:ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:sender-vouches</saml:ConfirmationMethod>
  </saml:SubjectConfirmation>
  </saml:Subject>
  </saml:AuthenticationStatement>
  </saml:Assertion>
  </ns1:Security>
  </env:Header>
  - <env:Body>
  - <ns2:getPatient>
  <ns2:patientId>137115</ns2:patientId>
  </ns2:getPatient>
  </env:Body>
  </env:Envelope>

• Could not access SOAP header - sending sopa message using weblogic

  i am using saaj to send a SOAP message ,through weblogic, i am getting an error like below
  Could not access SOAP header
  what should i do for sending a soap message using weblogic

  You're going to have to provide many more details than that. If it's useful, you could go here and read all the documentation books covering web services.

• How to get information from SOAP header in weblogic without handlers

  I need to retrieve information from SOAP header without handlers.
  Any ideas how to do that?

  Just wondering if Filter can be used here, though I never tried that.

• How to add security credentials to SOAP header for EBS Web Service call..

  All,
  I am trying to invoke a webservice that I successfully exposed as a WSDL Web Service using EBS Integrated SOA Gateway. I am using OBIEE 11g Action Framework which uses WebLogic.
  Here are the steps I completed:
  - I exposed a WSDL web service in EBS R12 via Integrated SOA Gateway
  - I granted the access to this service in EBS R12 to user SYSADMIN
  - I used OBIEE 11g to make a Action to call the Web service (using Action Framework) by searching for the WSDL
  - When I try to execute the action: I get the error:
  Action could not be invoked.
  ServiceExecutionFailure :
  Error invoking web service HR_PHONE_API_Service at endpoint http://ip-10-87-33-3.ec2.internal:8000/webservices/SOAProvider/plsql/hr_phone_api/ Missing <wsse:Security> in SOAP Header
  PROBLEM: I am unsure how to add the credentials for SYSADMIN user and password to add the SOAP username/pwd to the outgoing call. Anyone on this forum know how to set up the SOAP to call with the correct credentials? I have been looking at the documentation but it is not clearly explained.

  Dear Heiko,
  did you solve this problem?
  We are facing the same problem. Every parameter that requries "cmd" does not work. I guess we don´t use this paramter the right way.
  Best, Chris

• Weblogic throwing "null SOAP element Exception" in multi-part SOAP response

  Hi All,
  I'm using weblogic 10. My application is a webservice client generated using '*clientgen*', which is running on weblogic, and
  is invoking a remotely hosted webservice ( Remotely hoseted webservice may not be running on weblogic).
  I've the wsdl file of remotely hosted webservice.
  Now the problem is with WSDL file (I suppose), have a look at this.
  *&lt;message name="m1"&gt;*
  *&lt;part name="body" element="tns:GetCompanyInfo"/&gt;*
  *&lt;/message&gt;*
  *&lt;message name="m2"&gt;*
  *&lt;part name="body" element="tns:GetCompanyInfoResult"/&gt;*
  *&lt;part name="docs" type="xsd:AnyComplexType"/&gt; ------&gt; assume all elements inside this complex type can be nil or minOccurs set to '0'*
  *&lt;part name="logo" type="xsd:AnyOtherComplexType"/&gt; ------&gt; assume all elements inside this complex type can be nil or minOccurs set to '0'*
  *&lt;/message&gt;*
  &lt;portType name="pt1"&gt;
  &lt;operation name="GetCompanyInfo"&gt;
  &lt;input message="m1"/&gt;
  *&lt;output message="m2"/&gt; -----&gt; multi part message.*
  &lt;/operation&gt;
  &lt;/portType&gt;
  Now here is sample message for the request(I've composed this message for this question):
  &lt;soap:Envelope&gt; MESSAGE1
  &lt;soap:header/&gt;
  &lt;soap:body&gt;
  &lt;tns:m2&gt;
  &lt;tns:GetCompanyInfoResult&gt;
  Blah Blah....
  &lt;/tns:GetCompanyInfoResult&gt;
  &lt;tns:docs&gt;
  Blah Blah....
  &lt;/tns:docs&gt; Assume no data for 'logo', so it's not returned. Since all its elements can be nillable.
  &lt;tns:m2&gt;
  &lt;/soap:body&gt;
  &lt;/soap:Envelope&gt;
  First of all, is this SOAP response is valid? I'm not sure about *'message' and 'parts' in SOAP*, but according to XML schema standards it's invalid.
  Because, according to *'message' m2, 'logo' is missing*, eventhough all it's elements are nillable in such case there should be *&lt;logo/&gt;* at the end.
  I mean valid message should be like below
  &lt;soap:Envelope&gt; '*MESSAGE2*'
  &lt;soap:header/&gt;
  &lt;soap:body&gt;
  &lt;tns:m2&gt;
  &lt;tns:GetCompanyInfoResult&gt;
  Blah Blah....
  &lt;/tns:GetCompanyInfoResult&gt;
  &lt;tns:docs&gt;
  Blah Blah....
  &lt;/tns:docs&gt;
  *&lt;tns:logo/&gt; ------------------&gt; here is the change compared to above message. empty element.*
  &lt;tns:m2&gt;
  &lt;/soap:body&gt;
  &lt;/soap:Envelope&gt;
  Now the concerns are :
  (1) Which is a valid response? Message1 or Message2
  (2) If message1 is valid then why is weblogic throwing an exception 'null SOAP element', I suppose this is due to missing 'logo' element.
  (To confirm this I've used tcpmonitor and found message1 as response but weblogic is still throwing 'null SOAP Element' exception,
  which confirms it needs 'logo' as well, I suppose &lt;logo/&gt; at least). Is there any workaround for this in weblogic for multi-part messages?
  (3) If message1 is invalid according to SOAP standards then You've answered my question. ---&gt; I need to talk to the webservice provider in this case.....
  Thanks in advance...

  Message 1 is not Basic Profile 1.1 compliant. It is specified by BP1.1 in section 4.4.1(http://www.ws-i.org/Profiles/BasicProfile-1.1-2004-08-24.html#Bindings_and_Parts) that when a wsdl:part element is defined using the type attribute, the serialization of that part in a message is equivalent to an implicit (XML Schema) qualification of a minOccurs attribute with the value "1", a maxOccurs attribute with the value "1" and a nillable attribute with the value "false".

• Accessing Soap header in webservices

  Hi,
  My webservice needs to read a soap header "locale" and do some processing based on this soap header.
  I understand the concept of handlers..but anywhere I see examples, the handler handles it and returns the data back.
  My requirement is that once this locale is retrieved, each of the webservice method should be able to read this locale, and do some processing based on that, as they need to return the localized data.
  I am not sure if I am missing something, but not yet able to find a direct way of doing it..
  Any response would be highly appreciated..
  Thanks

  user10455639 wrote:
  Yes I can..what I still dont understand from yourr email is why are you askign this..
  "if you can get the soap header"
  Because any header we should be able to retrieve from this context...Because I saw the following statement from [JavaDoc | http://e-docs.bea.com/wls/docs103/javadocs/weblogic/wsee/jws/JwsContext.html#getInputHeaders()].
  <<<<<<<<<<
  ....The SOAP headers used by WebLogic Workshop to manage conversations are included in the list of headers returned.
  <<<<<<<<<<
  If it works, then just use it :) because it is public supported
  Edited by: LJ on Apr 23, 2009 10:04 PM
  Edited by: LJ on Apr 23, 2009 10:21 PM

• Web Services Test Page: No input fields for SOAP header parameters?

  Hello,
  we're using OracleAS / OC4J 10.1.3.1 and have developed a web service that has some self defined SOAP header parameters.
  I would like to use the Web Services Test Page provided by the OAS but it seems that there is no opportunity
  to provide input values for these SOAP header parameters.
  Do I miss something there or is it not supported by OAS?
  I've read the documentation but could not find a clue.
  any help is appreciated,
  Regards,
  Martin

  I hear you. As you have probably heard, OC4J is being replaced by WebLogic Server and the 10.1.3.x releases are the last that will be produced. We'll do maintenance on it of course, but little/no new feature work. This would be a new feature we'd have to add, so I'm afraid there's not much chance in having it done.
  It's not ideal, and of course more work for you, but if you want to provide your client with a test page that exposes the SOAP headers as form fields, you could always develop and ship one yourself.
  -steve0

• Sender SOAP adapter: get soap header data

  Hi,
  I've been going through various posts and blogs here on SDN + looked in the how to guide for SOAP adapter, but still find it quite difficult to actually find out how to do it. I've tried to follow recommendations seen, but it doesn't add up.
  So can someone please tell me how to get an element situated in the SOAP header of the request sent to XI via sender soap adapter?
  Let's for instance say the request looks like this:
  <SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" xmlns:SOAP-ENC="http://schemas.xmlsoap.org/soap/encoding/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema">
       <SOAP-ENV:Header>
            <SSN>1234567890</SSN>
       </SOAP-ENV:Header>
       <SOAP-ENV:Body>
            <event>
                 <elem1>data 1</elem1>
                 <elem2>data 2</elem2>
                 <elem3>data 3</elem3>
            </event>
       </SOAP-ENV:Body>
  </SOAP-ENV:Envelope>
  How can I get the data in the SSN-header element at mapping time?
  I'm sure this can be done by using adapter modules as the first step adapter, but I prefer doing it at mapping time if possible.
  Best Regards,
  Daniel

  I solved it on my own now. My missing link was the fact that I'm using XMLSPY to send request and thus need to replace all '&amp;' with & in Connection Endpoint.
  Message was edited by:
          Daniel Engsig-Karup

• How to set wsse:security SOAP header in soa 11g?

  Hi,
  we are facing an issue with invoking a secured webservice.
  we tried 3 things
  1.) set the username/password in em under reference properties
  2.) Created a schema, set the username/password and included it in partner link header tab.
  3.) added a client token policy in em and then set http authentication field.
  all these not working.
  the error we are facing is :
  Non Recoverable System Fault :
  javax.xml.ws.soap.SOAPFaultException: Missing <wsse:Security> in SOAP Header
  complete payload is below:
  <bpelFault>
  <faultType>0</faultType>
  <remoteFault>
  <part name="summary">
  <summary>Missing <wsse:Security> in SOAP Header</summary>
  </part>
  <part name="detail">
  <detail>javax.xml.ws.soap.SOAPFaultException: Missing <wsse:Security> in SOAP Header</detail>
  </part>
  <part name="code">
  <code>wsse:InvalidSecurity</code>
  </part>
  </remoteFault>
  </bpelFault>
  Please let us know how to proceed with this?
  Thanks in advance
  Regards

  You need to attach the below policy in security section (Select your partnerlink in the references section of composite.xml and the click on "Configure WS policies")
  oracle/wss_username_token_client_policy
  if it is Secured Webservice, then attach this policy
  oracle/wss_username_token_over_ssl_client_policy
  After attaching policy, click edit and configure the key(out of box, u see one key csf-key) . This key should be setup with the required username and password that matches with the Webservice expected username and pwd.
  Thanks,
  Satish
  http://soadiscovery.blogspot.com

• WSSE usename token not in the SOAP Header

  Background:
  Webservice with four methods; OpGet, OpCreate, OpGetList, OpSet. Setup a jcx with this webservice URL, generate a test harness from workshop, and running this test harness and looking at the SOAP messages being send and received to verify that the web services are working. The OpGet is working since it doesn't require user credentials. But the OpCreate is currently not working. Remedy is rejecting it because of access control.
  Problem #1:
  Need to pass the user credential in the SOAP header. Here's the required information in WSDL regarding Authentication.
  <wsdl:operation name="OpCreate">
  <soap:operation soapAction="urn:SimpleWebService/OpCreate" style="document"/>
  <wsdl:input>
  <soap:header message="s:ARAuthenticate" part="parameters" use="literal">
  </soap:header>
  <soap:body use="literal"/>
  </wsdl:input>
  <wsdl:output>
  <soap:body use="literal"/>
  </wsdl:output>
  </wsdl:operation>
  Solution that I have implemented so far:
  I have setup a WSSE file with the simple username/password in the <wsSecurityOut> element and was expecting to see this in the SOAP Header element in the WSDL message. When I look at the SOAP message in the test harness that I have generated in Workshop, I don't see this credential information. I have set the "ws-security-service property to the wsse file. I know that the harness has seen the wsse file since it gives me warning about having the password in simple text without encryption.
  Shouldn't I be seeing this userNameToken information in the SOAP Header when I run the test harness (jws) from workshop? As you can see below (Problem #2) no SOAP header is being generated.
  Problem #2:
  I see that in the SOAP message that test harness is sending wrong "xsi:type" information. It seems to be sending the "StatusType" for all the parameters except the one "Status" where it needs to?
  SOAP-ENV:Envelope xmlns:SOAP-ENC="http://schemas.xmlsoap.org/soap/encoding/" xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
  <SOAP-ENV:Body>
  <ns:OpCreate xmlns:ns="urn:SimpleWebService">
  <ns:Assigned_To xsi:type="ns:StatusType">donnab</ns:Assigned_To>
  <ns:Short_Description xsi:type="ns:StatusType">testing from weblogic 8.1 SP3 Workshop</ns:Short_Description>
  <ns:Status>New</ns:Status>
  <ns:Submitter xsi:type="ns:StatusType">donnab</ns:Submitter>
  </ns:OpCreate>
  </SOAP-ENV:Body>
  </SOAP-ENV:Envelope>
  Here's the WSDL where the OpCreate is defined:
  <xsd:element name="OpCreate" type="s:CreateInputMap"/>
  <xsd:complexType name="CreateInputMap">
  <xsd:sequence>
  <xsd:element name="Assigned_To" type="xsd:string"/>
  <xsd:element name="Short_Description" type="xsd:string"/>
  <xsd:element name="Status" type="s:StatusType"/>
  <xsd:element name="Submitter" type="xsd:string"/>
  </xsd:sequence>
  </xsd:complexType>

  I've never been able to see that information because I assume Weblogic server strips it out the minute it receives it and uses it to authenticate the user against a principal in the server.
  You can get ahold of this info, though. In your .jws file, in workshop, add this as a context:
  /** @common:context */
  JwsContext context;
  In your web services method, access the context to get the username:
  context.getCallerPrincipal().getName();
  That will return a String w/ the username passed in the username token.
  -Becky

• SOAP Header based user/password authentication in OSB 11g Proxy Service

  Hi,
  I have implemented SOAP Header based authentication in my OSB 11g Proxy Service.
  In the Security settings of my AnySOAP(Soap 1.1) HTTP Proxy service, I have amde the following changes:
  1.
  In Transport Access Control link, i selected the User predicate, and provided an user already existing on weblogic server with following roles(AppTesters, Monitors, Operators).
  The AuthorizationProvider was XACMLAuthorizer
  2.
  Under Custom Authentication, I selected the Custom User Name and Password option, and provided the below mentiioned xpaths
  User Name XPath: ./*/*:Username/text()
  User Password XPath: ./*/*:Password/text()
  3.
  In Message Access Control link, i selected the User predicate with the same user as mentioned in Transport Access Control link.
  Now, when I am testing this service from OSB Test Console, I am providing the following input.
  <soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:N1="http://abcd.com/common/bodcomponents/transactional/model/1.0/">
  <soap:Header>
  <AuthHeader>
  <N1:Username>userXYZ</N1:Username>
  <N1:Password>passXYZ</N1:Password>
  </AuthHeader>
  </soap:Header>
  <soap:Body>
  <!-- body payload -->
  </soap:Body>
  </soap:Envelope>
  The response is "The invocation resulted in an error: ."
  The OSB server logs show the below error:
  ####<Feb 9, 2011 6:05:42 PM IST> <Error> <OSB Security> <test.abcd.co.in> <osb_server1> <[ACTIVE] ExecuteThread: '9' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <> <5a5769b8025ef997:-2bda316:12def49100a:-7fff-0000000000000c92> <1297254942782> <BEA-387082> <Proxy service access denied (proxy: ABCD/Services/Common_HTTP_Proxy, subject: Subject: 0
  )>
  ####<Feb 9, 2011 6:05:42 PM IST> <Error> <OSB Kernel> <test.abcd.co.in> <osb_server1> <[ACTIVE] ExecuteThread: '9' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <> <5a5769b8025ef997:-2bda316:12def49100a:-7fff-0000000000000c92> <1297254942782> <BEA-382004> <Failed to process request message for service ProxyService ABCD/Services/Common_HTTP_Proxy: com.bea.wli.sb.security.AccessNotAllowedException
  com.bea.wli.sb.security.AccessNotAllowedException
       at com.bea.wli.sb.pipeline.RouterSecurity.doAccessControl(RouterSecurity.java:136)
       at com.bea.wli.sb.pipeline.RouterSecurity.doAccessControl(RouterSecurity.java:117)
       at com.bea.wli.sb.pipeline.RouterManager.processMessage(RouterManager.java:586)
       at com.bea.wli.sb.test.service.ServiceMessageSender.send0(ServiceMessageSender.java:329)
       at com.bea.wli.sb.test.service.ServiceMessageSender.access$000(ServiceMessageSender.java:76)
       at com.bea.wli.sb.test.service.ServiceMessageSender$1.run(ServiceMessageSender.java:134)
       at com.bea.wli.sb.test.service.ServiceMessageSender$1.run(ServiceMessageSender.java:132)
       at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
       at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:147)
       at com.bea.wli.sb.security.WLSSecurityContextService.runAs(WLSSecurityContextService.java:55)
       at com.bea.wli.sb.test.service.ServiceMessageSender.send(ServiceMessageSender.java:137)
       at com.bea.wli.sb.test.service.ServiceProcessor.invoke(ServiceProcessor.java:454)
       at com.bea.wli.sb.test.TestServiceImpl.invoke(TestServiceImpl.java:172)
       at com.bea.wli.sb.test.client.ejb.TestServiceEJBBean.invoke(TestServiceEJBBean.java:167)
       at com.bea.wli.sb.test.client.ejb.TestService_sqr59p_EOImpl.invoke(TestService_sqr59p_EOImpl.java:353)
       at com.bea.wli.sb.test.client.ejb.TestService_sqr59p_EOImpl_WLSkel.invoke(Unknown Source)
       at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:589)
       at weblogic.rmi.cluster.ClusterableServerRef.invoke(ClusterableServerRef.java:230)
       at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:477)
       at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
       at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:147)
       at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:473)
       at weblogic.rmi.internal.wls.WLSExecuteRequest.run(WLSExecuteRequest.java:118)
       at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
       at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
  Please suggest where I am going wrong in this. I have cross checked the user/pass credentials with what I am giving in the input, and it is perfectly fine.

  I have added the Username and Password as follows, since the namespace declaration was required due to the namespace prefix 'N1' in the XPath
  declare namespace N1="http://abcd.com/common/bodcomponents/transactional/model/1.0/";./AuthHeader/N1:Username/text()
  declare namespace N1="http://abcdp.com/common/bodcomponents/transactional/model/1.0/";./AuthHeader/N1:Password/text()
  I have removed the Message Access Control conditions, have only kept Transport Access Control conditions.
  If i keep the condition in Transport Access Control as "Allow access to everyone", and test with proper credentials in the Username/Password tags in SOAP Header, then it works fine. However, if I try to give an incorrect password in the SOAP Header, it denies the access. So that means the XPaths given for Username/Password are working fine. The OSB logs show the below message
  +####<Feb 10, 2011 12:59:21 PM IST> <Error> <OSB Security> <test.abcd.co.in> <osb_server1> <[ACTIVE] ExecuteThread: '7' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <> <5a5769b8025ef997:-2bda316:12def49100a:-7fff-0000000000000ef2> <1297322961536> <BEA-386008> <Message level username/password authentication failed: [Security:090304]Authentication Failed: User weblogic javax.security.auth.login.FailedLoginException: [Security:090302]Authentication Failed: User weblogic denied>+
  However if i add the condition with predicate as "User" and user name argument as "weblogic", and try to pass the same in the SOAP Header as well with the correct password, it denies the access with below message in the logs.
  +####<Feb 9, 2011 6:05:42 PM IST> <Error> <OSB Security> <test.abcd.co.in> <osb_server1> <[ACTIVE] ExecuteThread: '9' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <5a5769b8025ef997:-2bda316:12def49100a:-7fff-0000000000000c92> <1297254942782> <BEA-387082> <Proxy service access denied (proxy: ABCD/Services/Common_HTTP_Proxy, subject: Subject: 0+
  +)>+
  +####<Feb 9, 2011 6:05:42 PM IST> <Error> <OSB Kernel> <test.abcd.co.in> <osb_server1> <[ACTIVE] ExecuteThread: '9' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <5a5769b8025ef997:-2bda316:12def49100a:-7fff-0000000000000c92> <1297254942782> <BEA-382004> <Failed to process request message for service ProxyService ABCD/Services/Common_HTTP_Proxy: com.bea.wli.sb.security.AccessNotAllowedException+
  com.bea.wli.sb.security.AccessNotAllowedException
  at com.bea.wli.sb.pipeline.RouterSecurity.doAccessControl(RouterSecurity.java:136)
  at com.bea.wli.sb.pipeline.RouterSecurity.doAccessControl(RouterSecurity.java:117)
  at com.bea.wli.sb.pipeline.RouterManager.processMessage(RouterManager.java:586)
  at com.bea.wli.sb.test.service.ServiceMessageSender.send0(ServiceMessageSender.java:329)
  at com.bea.wli.sb.test.service.ServiceMessageSender.access$000(ServiceMessageSender.java:76)
  at com.bea.wli.sb.test.service.ServiceMessageSender$1.run(ServiceMessageSender.java:134)
  at com.bea.wli.sb.test.service.ServiceMessageSender$1.run(ServiceMessageSender.java:132)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:147)
  at com.bea.wli.sb.security.WLSSecurityContextService.runAs(WLSSecurityContextService.java:55)
  at com.bea.wli.sb.test.service.ServiceMessageSender.send(ServiceMessageSender.java:137)
  at com.bea.wli.sb.test.service.ServiceProcessor.invoke(ServiceProcessor.java:454)
  at com.bea.wli.sb.test.TestServiceImpl.invoke(TestServiceImpl.java:172)
  at com.bea.wli.sb.test.client.ejb.TestServiceEJBBean.invoke(TestServiceEJBBean.java:167)
  at com.bea.wli.sb.test.client.ejb.TestService_sqr59p_EOImpl.invoke(TestService_sqr59p_EOImpl.java:353)
  at com.bea.wli.sb.test.client.ejb.TestService_sqr59p_EOImpl_WLSkel.invoke(Unknown Source)
  at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:589)
  at weblogic.rmi.cluster.ClusterableServerRef.invoke(ClusterableServerRef.java:230)
  at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:477)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:147)
  at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:473)
  at weblogic.rmi.internal.wls.WLSExecuteRequest.run(WLSExecuteRequest.java:118)
  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
  at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)