WL 7.0 Client Invoking a secure webservice

Similar Messages

• Oracle SOA Suite 10.1.3.1: Invoke a secure webservice

  Hi,
  How can i invoke a secure Webservice (the webservice is implemented as a Security Token Service that accepts RST messages and replies with RSTR messages [ws-trust]) using BPEL and OWSM (Oracle SOA Suite 10.1.3.1) .
  The Service authenticates the user by verifying the validity of the user’s (client) X.509 certificate und return a saml assertion. This assertion confirms the user’s identity, and the successful authentication process.
  Any approcahes or Ideas how to implement this?
  thanks in advance
  Pat

  Hi,
  How can i invoke a secure Webservice (the webservice is implemented as a Security Token Service that accepts RST messages and replies with RSTR messages [ws-trust]) using BPEL and OWSM (Oracle SOA Suite 10.1.3.1) .
  The Service authenticates the user by verifying the validity of the user’s (client) X.509 certificate und return a saml assertion. This assertion confirms the user’s identity, and the successful authentication process.
  Any approcahes or Ideas how to implement this?
  thanks in advance
  Pat

• Invoke the secured webservice from BPEL in Solaris environment

  Hi All,
  Can any one tell me how to invoke the secured webservice from BPEL in Solaris environment as i am able to invoke the secured web service from BPEL in windows platform(soa suite 10.1.3.4).
  we have applied 10.1.3.4 patch on solaris environment but we are not able to invoke the same.
  Thanks in advance
  Regards,
  Nagaraju .D

  Hi Nagaraju,
  Read your post.We've somewhat the similar problem as yours as we are facing some error while invoking a WS-Security secured web service from our BPEL Process on the windows platform(SOA 10.1.3.3.0).
  For the BPEL process we are following the same steps as given in an AMIS blog : - [http://technology.amis.nl/blog/1607/how-to-call-a-ws-security-secured-web-service-from-oracle-bpel]
  but sttill,after deploying it and passing values in it,we are getting the following error on the console :-
  “Header [http://schemas.xmlsoap.org/ws/2004/08/addressing:Action] for ultimate recipient is required but not present in the message”
  As you have wriiten that you've already called a secured web service in windows platform ,so if you can please help me out in this issue.
  I've opened a separate thread for this to avoid confusion. :-
  Error while invoking a WS-Security secured web service from Oracle BPEL..
  Thanks,
  Saurabh

• Need Urgent help with wl 7 client connecting to secure webservice

  Hi
  I am trying to connect from my ejb client in wl7.0 to a secure web service and
  I am getting the following error..
  <Jun 10, 2004 10:09:54 AM CDT> <Debug> <TLS> <000000> <Exception during handshake,
  stack trace follows
  javax.net.ssl.SSLKeyException: FATAL Alert:BAD_CERTIFICATE - A corrupt or unuseable
  certificate was received.
  My client follows the SimpleSSL example and goes like ..
  System.setProperty("javax.xml.soap.MessageFactory", "weblogic.webservice.core.soap.MessageFactoryImpl");
  // Setup the global JAX-RPC service factory
  System.setProperty( "javax.xml.rpc.ServiceFactory", "weblogic.webservice.core.rpc.ServiceFactoryImpl");
  System.setProperty("java.protocol.handler.pkgs",          "weblogic.webservice.client");
  SSLAdapterFactory adapterFactory = SSLAdapterFactory.getDefaultFactory();
  WLSSLAdapter adapter = (WLSSLAdapter)adapterFactory.getSSLAdapter();
  adapter.setStrictChecking(false);
  adapter.setTrustedCertificatesFile
  adapterFactory.setDefaultAdapter(adapter);
  adapterFactory.setUseDefaultAdapter(true);
  Should I be setting anything else ?
  I don't have problem connecting to the http version of the webs ervice..
  Pls. find attached the weblogic log...
  Help is very much appreciated..
  Thanks
  Gary
  [22.log]

  Hugoc8,
  > am wondering if it's possible to replace the windows 7 login with just
  > the novell client? How it worked in windows xp. We just want the novell
  > login box.
  >
  > So far all I have seen is the windows default login with an option to
  > click for novell login.
  Make sure usernames and passwords match and make the Novell login primary. Thet you'll only see the Novell login.
  To make sure usernames/passwords always match, then use ZCM
  https://www.novell.com/sv-se/product...ionmanagement/
  or AutoAdminLogon
  https://forums.novell.com/novell-pro...ndows-7-a.html
  Anders Gustafsson (NKP)
  The Aaland Islands (N60 E20)
  Have an idea for a product enhancement? Please visit:
  http://www.novell.com/rms

• How to invoke ws-security webservices within encrypted SOAP message

  Is it enable flex inside already or I have to implement it by extending some classes?

  There are examples of this out there. Check orafaq.com or elsewhere.
  All you need to do is get the certificates for the endpoint and load them into an oracle wallet, then save the wallet to a file. Use utl_http.set_wallet(path_to_wallet, password) inside your code. The database needs to be able to see the wallet - that is, if it's running under another account, that account needs to able to see the wallet, or you'll get an error. Also, be sure you have the entire "chain" for the remote site if the issuing CA is not in the default list included with a wallet. You can get these via hitting the secure endpoint in IE, and then viewing the certificates and exporting them to a file to load into Wallet.
  Eric

• How to call the secured webservice in proxy client ?

  Hi All,
  JDev ver : 11.1.1.5
  I have created a proxy client fro the siebel webservice in model.
  When I try calling the methods in the service. its giving error like this ,
  Exception in thread "main" javax.xml.ws.soap.SOAPFaultException: Unable to process SOAP Header child element 'wsse:Security' with 'mustUnderstand="1"'(SBL-EAI-08000)
       at com.sun.xml.ws.fault.SOAP11Fault.getProtocolException(SOAP11Fault.java:197)
       at com.sun.xml.ws.fault.SOAPFaultBuilder.createException(SOAPFaultBuilder.java:130)
       at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:125)
       at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:95)
       at com.sun.xml.ws.client.sei.SEIStub.invoke(SEIStub.java:136)
       at $Proxy32.dgcaCreateAttachement(Unknown Source)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  How to set the soap header message username and password ?
  thanks,
  Gopinath

  Hi Juan,
  In the client class I am calling the service like this, Where I am doing wrong ?
  dGCA_spcCreate_spcCase_spcAttachments_Service = new DGCA_spcCreate_spcCase_spcAttachments_Service();
  SecurityPoliciesFeature securityFeatures =
  new SecurityPoliciesFeature(new String[] { "oracle/wss_username_token_client_policy" });
  DGCA_spcCreate_spcCase_spcAttachments dGCA_spcCreate_spcCase_spcAttachments = dGCA_spcCreate_spcCase_spcAttachments_Service.getDGCA_spcCreate_spcCase_spcAttachments(securityFeatures);
  Map<String, Object> reqContext =
  ((BindingProvider)dGCA_spcCreate_spcCase_spcAttachments).getRequestContext();
  reqContext.put(BindingProvider.USERNAME_PROPERTY, "SADMIN");
  reqContext.put(BindingProvider.PASSWORD_PROPERTY, "SADMIN");
  DGCACreateAttachementInput input = new DGCACreateAttachementInput();
  input.setCaseId("");
  input.setFilePath("");
  dGCA_spcCreate_spcCase_spcAttachments.dgcaCreateAttachement(input);
  Regards,
  Gopinath

• Error in invoking JAX-WS webservice from a clientgen client from WL9.2

  Hi,
  I am getting error while trying to invoke a jax-ws webservice client from an application deployed in weblogic9.2. The client was created from clientgen task using ant and weblogic 9.2 jars. I get the error for data binding for a timestamp field. Now i understand that jax-ws is not comaptible with jax-ws but there must be some way to do that. Any pointers would be helpful. I could not get anything useful so please use thsi post for same and guide me.

  Try this to verify that your process on the SOA Suite is correct:
  Use the tool SoapUI (open source) to execute a request based on the WSDL of your web service. If this is correct your process is working fine. SoapUI acts as a client to call your webservice via Soap.
  If the call is working, then something on the webservice-client-proxy of the third-party is wrong. Try to find out what they send as soap request.
  Regards,
  Marc
  http://orasoa.blogspot.com

• Problems invoking a secure 8.1 web service from a 6.1 client

  I'm trying to invoke a secure 8.1 web service from a 6.1 client application and keep getting rejected with the following message:
  Security Violation: User: '<anonymous>' has insufficient permission to access EJB:
  In the 6.1 client, I've established a WebServiceProxy and set the userName and password to the proper values, but I can't seem to get past the security.
  If there something special I need to do on either the 8.1 securing side or on the 6.1 accessing side to make this work?
  Any help would be GREATLY appreciated.

  Hi Paul,
  This sound familiar, but I cannot at the moment locate a reference to
  the issue. I would encourage you to seek the help of our super support
  team [1].
  Regards,
  Bruce
  [1]
  http://support.bea.com
  [email protected]
  Paul Merrigan wrote:
  >
  I'm trying to invoke a secure 8.1 web service from a 6.1 client application and keep getting rejected with the following message:
  Security Violation: User: '<anonymous>' has insufficient permission to access EJB:
  In the 6.1 client, I've established a WebServiceProxy and set the userName and password to the proper values, but I can't seem to get past the security.
  If there something special I need to do on either the 8.1 securing side or on the 6.1 accessing side to make this work?
  Any help would be GREATLY appreciated.

• Unable to Invoke a BPEL webservice from a java client

  Hi ,
  We have developed (using Jdeveloper 10.1.3.1.0) a BPEL Process which invoke a PL/SQL procedure. This BPEL process is deployed on the Oracle SOA Suite server 10.1.3.1.0.
  Out third pary vendor is trying to invoke this BPEL webservice from there network.
  They generated a web service proxy using WSDl URL http://afh-fut01.futurus.com:8888/orabpel/default/xxff_bankonet_service/1.0
  When our third party vendors are trying to invoke our BPEL web service they are getting the following exception
  calling http://afh-fut01.futurus.com:8888/orabpel/default/xxff_bankonet_service/1.0
  java.rmi.ServerException:
  start fault message:
  java.lang.NullPointerException
  :end fault message
  at oracle.j2ee.ws.client.StreamingSender._raiseFault(StreamingSender.java:560)
  at oracle.j2ee.ws.client.StreamingSender._sendImpl(StreamingSender.java:396)
  at oracle.j2ee.ws.client.StreamingSender._send(StreamingSender.java:112)
  at project1.proxy.runtime.Xxff_bankonet_serviceBinding_Stub.process(Xxff_bankonet_s
  erviceBinding_Stub.java:76)
  at project1.proxy.Xxff_bankonet_servicePortClient.process(Xxff_bankonet_servicePort
  Client.java:56)
  at project1.proxy.Xxff_bankonet_servicePortClient.main(Xxff_bankonet_servicePortCli
  ent.java:39)
  To explain more on this
  1. From our network we are able to invoke the web service from the client generated from Jdeveloper(i.e.using the
  WSDL)and also from the client generated through AXIS 1.4
  2. However when the third party vendors are trying to invoke the same service
  using client generated from Jdeveloper at their end they ar getting the aboe exception
  3. Vendor is able to ping the SOA Suite server in our network and also send a request to our server from the browser, but while executing the client they are getting an exception
  Please let me know what is the solution to this problem.
  Best Regards
  Meenal

  Try this to verify that your process on the SOA Suite is correct:
  Use the tool SoapUI (open source) to execute a request based on the WSDL of your web service. If this is correct your process is working fine. SoapUI acts as a client to call your webservice via Soap.
  If the call is working, then something on the webservice-client-proxy of the third-party is wrong. Try to find out what they send as soap request.
  Regards,
  Marc
  http://orasoa.blogspot.com

• How MS SOAP 3.0 client invokes WL 7.0 Webservice WITHOUT using a WSDL file?

  Hi all,
  I am looking for a sample VBScript using MS SOAP 3.0 client invoking a WL 7.0 Server
  webservice. Could anyone please post a sample VBScript codes invoking a soap service
  on WL 7.0 WITHOUT using a WSDL file, for example at:
  http://localhost:7001/HelloWorld/Hello
  with the service method:
  public org.w3c.dom.Element say(String something);
  Thanks,
  Dovan

  Hi,
  As you might guess, we are not big VB users here :-) but we may have some C# code that
  could be of some value.
  What problem are you trying to solve by not using WSDL?
  Just curious,
  Bruce
  Dovan Nguyen wrote:
  Hi all,
  I am looking for a sample VBScript using MS SOAP 3.0 client invoking a WL 7.0 Server
  webservice. Could anyone please post a sample VBScript codes invoking a soap service
  on WL 7.0 WITHOUT using a WSDL file, for example at:
  http://localhost:7001/HelloWorld/Hello
  with the service method:
  public org.w3c.dom.Element say(String something);
  Thanks,
  Dovan

• Retain session in java client , which invokes a dotnet webservice

  Hello Forum,
  I am invoking a dotnet webservice using a java client. But I am not able to maintain session in this java client. I googled this, I got many links for the above. But none of the solution was using pure sun api's. My need is to do the same only using sun api's. Please guide. Any help will be appreciated.
  Best Regards,
  Tejal Khatri

  Apache HttpClient can do that.

• Create a Secure Client for a Secure Web Service- is failing

  Hi,
  This is actually with reference to the webservice tutorial.I am trying the example on Create a Secure Client for a Secure Web Service and have followed all the steps mentioned,however I am getting the following error:
  D:\JDev11gTp\jdk\bin\javaw.exe -client -classpath D:\Jdev11gTpInstance\mywork\WebServiceApplications\.adf;D:\Jdev11gTpInstance\mywork\WebServiceApplications\WebServiceProjects\classes;D:\JDev11gTp\webservices\lib\jaxws-api.jar;D:\JDev11gTp\webservices\lib\jws-api.jar;D:\JDev11gTp\webservices\lib\orawsmetadata.jar;D:\JDev11gTp\webservices\lib\wsclient.jar;D:\JDev11gTp\j2ee\home\lib\activation.jar;D:\JDev11gTp\j2ee\home\lib\ejb.jar;D:\JDev11gTp\j2ee\home\lib\jms.jar;D:\JDev11gTp\j2ee\home\lib\jta.jar;D:\JDev11gTp\j2ee\home\lib\mail.jar;D:\JDev11gTp\j2ee\home\lib\servlet.jar;D:\JDev11gTp\webservices\lib\jaxrpc-api.jar;D:\JDev11gTp\webservices\lib\wsserver.jar;D:\JDev11gTp\webservices\lib\wssecurity.jar;D:\JDev11gTp\webservices\lib\wsdl.jar;D:\JDev11gTp\webservices\lib\orasaaj.jar;D:\JDev11gTp\webservices\lib\saaj-api.jar;D:\JDev11gTp\webservices\lib\orawsdl.jar;D:\JDev11gTp\webservices\lib\orawsrm.jar;D:\JDev11gTp\webservices\lib\orawsrel.jar;D:\JDev11gTp\webservices\lib\jaxr-api.jar;D:\JDev11gTp\webservices\lib\orajaxr.jar;D:\JDev11gTp\webservices\lib\relaxngDatatype.jar;D:\JDev11gTp\webservices\lib\xsdlib.jar;D:\JDev11gTp\webservices\lib\mdds.jar;D:\JDev11gTp\webservices\lib\wsif.jar;D:\JDev11gTp\webservices\lib\fabric-common.jar;D:\JDev11gTp\webservices\lib\fabric-interceptors.jar;D:\JDev11gTp\jlib\jaxen.jar;D:\JDev11gTp\jlib\oraclepki.jar;D:\JDev11gTp\jlib\ojpse.jar;D:\JDev11gTp\jlib\jsr106.jar;D:\JDev11gTp\jlib\jsr105.jar;D:\JDev11gTp\jlib\osdt_xmlsec_jce.jar;D:\JDev11gTp\jlib\osdt_wss_jce.jar;D:\JDev11gTp\jlib\osdt_saml_jce.jar;D:\JDev11gTp\jlib\osdt_saml2_jce.jar;D:\JDev11gTp\jlib\osdt_core.jar;D:\JDev11gTp\jlib\osdt_cert.jar;D:\JDev11gTp\jlib\osdt_xmlsec.jar;D:\JDev11gTp\jlib\osdt_wss.jar;D:\JDev11gTp\jlib\osdt_saml.jar;D:\JDev11gTp\jlib\osdt_saml2.jar;D:\JDev11gTp\jlib\ojmisc.jar;D:\JDev11gTp\j2ee\home\lib\http_client.jar;D:\JDev11gTp\j2ee\home\jazncore.jar;D:\JDev11gTp\j2ee\home\oc4jclient.jar;D:\JDev11gTp\rdbms\jlib\xdb.jar;D:\JDev11gTp\j2ee\home\lib\javax77.jar;D:\JDev11gTp\lib\java\api\jsr173_api.jar;D:\JDev11gTp\lib\java\shared\sun.jaxb\2.0\jaxb-impl.jar;D:\JDev11gTp\lib\java\shared\sun.jaxb\2.0\jaxb-xjc.jar;D:\JDev11gTp\lib\java\shared\sun.jaxb\2.0\jaxb1-impl.jar;D:\JDev11gTp\j2ee\home\lib\oc4j-schemas.jar;D:\JDev11gTp\jlib\ojdl.jar;D:\JDev11gTp\jlib\ojdl2.jar;D:\JDev11gTp\jlib\fmw_audit.jar;D:\JDev11gTp\j2ee\home\lib\jmxri.jar;D:\JDev11gTp\j2ee\home\lib\jmx_remote_api.jar;D:\JDev11gTp\j2ee\home\lib\adminclient.jar;D:\JDev11gTp\j2ee\home\lib\jmxframework.jar;D:\JDev11gTp\j2ee\home\lib\jmxspi.jar;D:\JDev11gTp\j2ee\home\lib\xmlcfg.jar;D:\JDev11gTp\jlib\dms.jar;D:\JDev11gTp\jlib\orai18n.jar;D:\JDev11gTp\j2ee\home\lib\commons-digester.jar;D:\JDev11gTp\j2ee\home\lib\spring.jar;D:\JDev11gTp\lib\java\shared\oracle.wsm\11.1.1.0\wsm-policy-core.jar;D:\JDev11gTp\lib\java\shared\oracle.wsm\11.1.1.0\wsm-pmclient.jar;D:\JDev11gTp\lib\java\shared\oracle.wsm\11.1.1.0\wsm-pap.jar;D:\JDev11gTp\lib\java\shared\oracle.wsm\11.1.1.0\wsm-agent.jar;D:\JDev11gTp\lib\java\shared\oracle.wsm\11.1.1.0\wsm-secpol.jar;D:\JDev11gTp\lib\java\shared\oracle.javatools\11.1.1.0.0\javamodel-rt.jar;D:\JDev11gTp\lib\java\shared\oracle.javatools\11.1.1.0.0\javatools-nodeps.jar;D:\JDev11gTp\lib\java\shared\oracle.toplink\11.1.1.0.0\toplink-sdo.jar;D:\JDev11gTp\lib\java\api\jaxb-api.jar;D:\JDev11gTp\lib\xmlparserv2.jar;D:\JDev11gTp\lib\xml.jar;D:\JDev11gTp\jakarta-taglibs\commons-logging-1.0.3\commons-logging.jar -Dhttp.proxyHost=localhost -Dhttp.proxyPort=8099 -Dhttp.nonProxyHosts= -Dhttps.proxyHost=localhost -Dhttps.proxyPort=8099 -Dhttps.nonProxyHosts= HelloPolicyPortClient
  Feb 1, 2008 5:13:43 PM oracle.j2ee.ws.common.context.ContextInterceptor init
  INFO: Context provider properties file not found
  Feb 1, 2008 5:13:44 PM oracle.wsm.audit.Auditor <init>
  INFO: Created J2SE auditor for componentType=OWSM-AGENT busstop=D:\oracle\product\10.2.0\client_1\auditlogs\OWSM-AGENT filter=false auditor=oracle.security.audit.Auditor@143a083
  Feb 1, 2008 5:13:44 PM oracle.wsm.audit.Auditor <init>
  INFO: Created J2SE auditor for componentType=OWSM-PM-LIB busstop=D:\oracle\product\10.2.0\client_1\auditlogs\OWSM-PM-LIB filter=false auditor=oracle.security.audit.Auditor@15af049
  SEVERE: WSM-04514 An MDS error occurred.
  SEVERE: WSM-09012 No key, WSM-06002, was found in the resource bundle oracle.wsm.resources.policyvalidation.PolicyValidationMessageBundle.
  javax.xml.ws.WebServiceException: oracle.fabric.common.PolicyEnforcementException: PolicySet Invalid: WSM-06002 PolicyReference Invalid policy reference
  at oracle.j2ee.ws.client.jaxws.DispatchImpl.invoke(DispatchImpl.java:466)
  at oracle.j2ee.ws.client.jaxws.WsClientProxyInvocationHandler.invoke(WsClientProxyInvocationHandler.java:204)
  at $Proxy28.sayHello(Unknown Source)
  at HelloPolicyPortClient.main(HelloPolicyPortClient.java:35)
  Caused by: oracle.fabric.common.PolicyEnforcementException: PolicySet Invalid: WSM-06002 PolicyReference Invalid policy reference
  at oracle.integration.platform.common.InterceptorChainImpl.createPolicyEnforcementException(InterceptorChainImpl.java:217)
  at oracle.integration.platform.common.InterceptorChainImpl.processRequest(InterceptorChainImpl.java:104)
  at oracle.j2ee.ws.client.mgmt.runtime.SuperClientInterceptorPipeline.handleRequest(SuperClientInterceptorPipeline.java:91)
  at oracle.j2ee.ws.client.jaxws.DispatchImpl.handleRequest(DispatchImpl.java:309)
  at oracle.j2ee.ws.client.jaxws.DispatchImpl.handleRequest(DispatchImpl.java:290)
  at oracle.j2ee.ws.client.jaxws.DispatchImpl.invoke(DispatchImpl.java:444)
  ... 3 more
  Process exited with exit code 0.
  Can anyone please give any clue as to why this error is coming?
  Thanks.

  Hi
  Please refer to this thread
  Re: Can I create a login/password protection in Muse for a HTML5 page or two?

• Facing issue in invoking an external webservice from 11G Bpel

  Hi,
  I am facing an issue in Invoking PIM webservice from 11G soa.. getting the following error in the invoke activity(Invoke calls PIM webservice).. the same thing used to work in 10.1.3.4 where i set username/pwd in the bpel.xml for that partnerlink. here in 11G i did it through "Configure WS policy"     and setting oracle/wss_username_token_client_policy to true..
  the error message is
  <messages>
  <input>
  <PublicationService_GetBatchSystems_InputVariable>
  <part name="body">
  <PublicationService_GetBatchSystems>
  <batchAndLang>
  <BatchId>1543</BatchId>
  </batchAndLang>
  </PublicationService_GetBatchSystems>
  </part>
  <part name="header">
  <ServiceBean_Header/>
  </part>
  </PublicationService_GetBatchSystems_InputVariable>
  </input>
  <fault>
  <bpelFault>
  <faultType>
  <message>0</message>
  </faultType>
  <remoteFault>
  <part name="summary">
  <summary>InvalidHeader: Invalid or missing header in request.</summary>
  </part>
  <part name="detail">
  <detail>javax.xml.ws.soap.SOAPFaultException: InvalidHeader: Invalid or missing header in request.</detail>
  </part>
  <part name="code">
  <code>null</code>
  </part>
  </remoteFault>
  </bpelFault>
  </fault>
  <faultType>
  <message>0</message>
  </faultType>
  </messages>
  i compared the payload from 10G and 11G the only difference i could find is the order of soap body and header is different.. is it because of this??
  i checked in wsdlt the order is correctly declared (first header then body).. but whenever i am creating a variable on this Msg type.. and expanding the variable in jdev the order is getting reveresed.. not sure why?? there is no change in the flow from 10G to 11G.. apart from the migration.

  Thanks.. This works..
  But it gets lost whenever we redeploy that process..
  And of course even though I am seeing http user & http password can be configured in composite.xml.. It is not taking effect..
  After redeploy, still the HTTP UserName & Password is blank.
  <reference name="ABC"
  ui:wsdlLocation="ABC.wsdl">
  <interface.wsdl interface="http://oracle.abc/#wsdl.interface(WSDL_INTERFACE)"/>
  <binding.ws port="http://oracle.abc/#wsdl.endpoint(ABC/ABCHttpPort)"
  location="ABC.wsdl">
  <wsp:PolicyReference URI="oracle/wss_username_token_client_policy"
  orawsp:category="security" orawsp:status="enabled"/>
  <wsp:PolicyReference URI="oracle/log_policy" orawsp:category="management"
  orawsp:status="enabled"/>
  </binding.ws>
  <property name="oracle.webservices.auth.username" type="xs:string"
  many="false" override="may">username</property>
  <property name="oracle.webservices.auth.password" type="xs:string"
  many="false" override="may">password.xxxxx</property>
  </reference>
  Client is interested in solving only through code not through UI..
  Any thoughts..
  Edited by: Raj.Sunnyvale on Mar 24, 2010 11:26 AM

• Error in  holder-of-key  : calling a secure webservice from weblogic instan

  Hi,
  I am getting following error . Can somebody decrypt this for me ?
  ava.rmi.RemoteException: SOAPFaultException - FaultCode [{http://schemas.xmlsoap.org/soap/envelope/}Server] FaultString [Failed to add Signature.] FaultActor [null]No Detail; nested exception is:
       weblogic.wsee.jaxrpc.soapfault.WLSOAPFaultException: Failed to add Signature.
       at services.SSOTestHelloWorld_Stub.hello(Unknown Source)
       at deloitte.iit.webservices.CallWebService.callService(CallWebService.java:31)
       at jsp_servlet.__clienttest._jspService(__clienttest.java:82)
       at weblogic.servlet.jsp.JspBase.service(JspBase.java:34)
       at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
       at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
       at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:292)
       at weblogic.servlet.internal.ServletStubImpl.onAddToMapException(ServletStubImpl.java:408)
       at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:318)
       at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:175)
       at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3498)
       at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
       at weblogic.security.service.SecurityManager.runAs(Unknown Source)
       at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2180)
       at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2086)
       at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1406)
       at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
       at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
  Caused by: weblogic.wsee.jaxrpc.soapfault.WLSOAPFaultException: Failed to add Signature.
       at weblogic.wsee.codec.soap11.SoapCodec.decodeFault(SoapCodec.java:355)
       at weblogic.wsee.ws.dispatch.client.CodecHandler.decodeFault(CodecHandler.java:115)
       at weblogic.wsee.ws.dispatch.client.CodecHandler.decode(CodecHandler.java:100)
       at weblogic.wsee.ws.dispatch.client.CodecHandler.handleFault(CodecHandler.java:88)
       at weblogic.wsee.handler.HandlerIterator.handleFault(HandlerIterator.java:309)
       at weblogic.wsee.handler.HandlerIterator.handleResponse(HandlerIterator.java:269)
       at weblogic.wsee.ws.dispatch.client.ClientDispatcher.handleResponse(ClientDispatcher.java:213)
       at weblogic.wsee.ws.dispatch.client.ClientDispatcher.dispatch(ClientDispatcher.java:150)
       at weblogic.wsee.ws.WsStub.invoke(WsStub.java:87)
       at weblogic.wsee.jaxrpc.StubImpl._invoke(StubImpl.java:337)
       ... 18 more
  Caused by: weblogic.xml.crypto.wss.WSSecurityException: Failed to add Signature.
       at weblogic.wsee.security.wss.SecurityPolicyDriver.processIntegrity(SecurityPolicyDriver.java:240)
       at weblogic.wsee.security.wss.SecurityPolicyDriver.processOutbound(SecurityPolicyDriver.java:74)
       at weblogic.wsee.security.WssClientHandler.processOutbound(WssClientHandler.java:71)
       at weblogic.wsee.security.WssClientHandler.processRequest(WssClientHandler.java:55)
       at weblogic.wsee.security.WssHandler.handleRequest(WssHandler.java:74)
       at weblogic.wsee.handler.HandlerIterator.handleRequest(HandlerIterator.java:141)
       at weblogic.wsee.handler.HandlerIterator.handleRequest(HandlerIterator.java:107)
       at weblogic.wsee.ws.dispatch.client.ClientDispatcher.dispatch(ClientDispatcher.java:132)
       ... 20 more

  Hi Stephen,
  Using a registry, for example UDDI [1], would be one solution. WLS has
  a complete UDDI implementation builtin [2] for this purpose.
  You are correct, you need to pass the service address location found in
  the <service> section of the WSDL.
  Hope this helps,
  Bruce
  [1]
  http://www.uddi.org/
  [2]
  http://e-docs.bea.com/wls/docs81/webserv/uddi.html
  Stephen Kurlow wrote:
  >
  I am not sure what I need to do to be able to call a remote webservice (runs on
  another weblogic server instance running on another machine in the same network)
  from within a webservice. I have 2 wsdl files and I have created webservice controls
  from them. I have successfully written code in the first webservice to instantiate
  the parms to the 2nd webservice and invoked the 2nd webservice when both webservices
  are deployed to the same weblogic server instance. So i can see the params being
  marshalled and unmarshalled in the test browser.
  Now how do I install the 2nd webservice on another weblogic server instance and
  instruct the 1st web service to call the 2nd webservice residing on another weblogic
  server instance? I presume some kind of lookup (url?) is needed and is it via
  what is contained in the wsdl file?
  Thanks in advance,
  Stephen Kurlow

• Need Help: Not able to invoke fusion crm webservice using SOAP UI

  Hi,
  I am trying to invoke fusion crm webservice by using SOAP UI, but I am getting Invalid seccurity tocken exception.
  I have followed below steps specified in the oracle support document.
  In Soap UI, Go to File>Preferences ,select the "HTTP Settings' tab on the lower left panel, then select the checkbox 'Authenticate Preemtively'.
  2. From the wsdl extract the content from above wsdl between the tag/elements <dsig:X509Certificate> and </dsig:X509Certificate>
  3. Create a file called certificate.cer ( in local Drive) with above encrypted data enclosed between -----BEGIN CERTIFICATE-----   and -----END CERTIFICATE-----, file content shown below ( note: encrypted data 
      for example
      -----BEGIN CERTIFICATE-----
  MIICCzCCAXSgAwIBAgIETy
      -----END CERTIFICATE-----
  4. Identifiy the java.home of SOAP UI , navigation (Help – System Properties) ,example ( it may be something like D:\SOAP UI download\soapui-4.5.1\jre)
  5.  Find the location of cacert file in SOAP UI ( example D:\SOAP UI download\soapui-4.5.1\jre\lib\security\cacert)
  6. Use following keytool command to add the certificate file certificate.cer into keystore cacert , sample command given below for reference
     keytool -importcert -alias rcpt-key-alias -file "D:\certificate.cer" -keystore "D:\SOAP UI download\soapui-4.5.1\jre\lib\security\cacerts"
     at command prompt when prompted enter password as changeit
  7. Restart SOAP UI and create a new project with https version of WSDL of organizationService
  8. In SOAP UI ,  in Auth tab , provide the user name and password.
  9. Invoke the Webservice
  I have used following request XML in SOAP UI
  <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:typ="http://xmlns.oracle.com/apps/sales/opptyMgmt/opportunities/opportunityService/types/" xmlns:opp="http://xmlns.oracle.com/apps/sales/opptyMgmt/opportunities/opportunityService/" xmlns:rev="http://xmlns.oracle.com/apps/sales/opptyMgmt/revenues/revenueService/" xmlns:not="http://xmlns.oracle.com/apps/crmCommon/notes/noteService" xmlns:not1="http://xmlns.oracle.com/apps/crmCommon/notes/flex/noteDff/" xmlns:rev1="http://xmlns.oracle.com/oracle/apps/sales/opptyMgmt/revenues/revenueService/" xmlns:act="http://xmlns.oracle.com/apps/crmCommon/activities/activitiesService/" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:soap="soap" xmlns:ns1="http://xmlns.oracle.com/apps/fnd/soaprovider/plsql/fnd_user_pkg/">
     <soapenv:Header>
        <fmw-context xmlns="http://xmlns.oracle.com/fmw/context/1.0"/>
        <wsse:Security soap:mustUnderstand="1">
           <wsse:UsernameToken>
              <wsse:Username>userName</wsse:Username>
              <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">Password</wsse:Password>
           </wsse:UsernameToken>
        </wsse:Security>
     </soapenv:Header>
     <soapenv:Body>
        <typ:createOpportunity>
           <typ:opportunity>
              <opp:BudgetedFlag>1</opp:BudgetedFlag>
           </typ:opportunity>
        </typ:createOpportunity>
     </soapenv:Body>
  </soapenv:Envelope>
  It would be great help if someone guide me on this...
  Thanks & Regards
  Samanta Mishra

  For reference here is an example of a SOAP envelope I commonly use with SOAP UI to "query" employee data from HCM:
  <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:typ="http://xmlns.oracle.com/apps/hcm/employment/core/workerService/types/" xmlns:typ1="http://xmlns.oracle.com/adf/svc/types/">
      <soapenv:Header>
          <wsse:Security soapenv:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
              <wsse:UsernameToken wsu:Id="UsernameToken-2" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
                  <wsse:Username>username</wsse:Username>
                  <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">password</wsse:Password>
                  <wsse:Nonce EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary">jwCzGGijT90Wml6eZe4cxg==</wsse:Nonce>
                  <wsu:Created>2012-07-04T06:49:48.981Z</wsu:Created>
              </wsse:UsernameToken>
          </wsse:Security>
      </soapenv:Header>
      <soapenv:Body>
          <typ:findWorker>
              <typ:findCriteria>
                  <typ1:fetchStart>0</typ1:fetchStart>
                  <typ1:fetchSize>1</typ1:fetchSize>
                  <typ1:filter>
                      <typ1:conjunction>And</typ1:conjunction>
                      <typ1:group>
                          <typ1:conjunction>And</typ1:conjunction>
                          <typ1:upperCaseCompare>false</typ1:upperCaseCompare>
                          <typ1:item>
                              <typ1:conjunction>And</typ1:conjunction>
                              <typ1:upperCaseCompare>false</typ1:upperCaseCompare>
                              <typ1:attribute>PersonNumber</typ1:attribute>
                              <typ1:operator>=</typ1:operator>
                              <typ1:value>123456</typ1:value>
                          </typ1:item>
                      </typ1:group>
                  </typ1:filter>
              </typ:findCriteria>
              <typ:findControl>
                  <typ1:retrieveAllTranslations>false</typ1:retrieveAllTranslations>
              </typ:findControl>
          </typ:findWorker>
      </soapenv:Body>
  </soapenv:Envelope>
  This example works fine for our Fusion Applications Cloud test instance, without any SSL setup or setting credentials on the request properties as the target service supports policy without message protection.
  Based on the your steps your service has message protection policy, so the above will not work rather you need to do additional configuration. Please check the policy on your service to confirm how the call needs to be made. Here are few links and documents:
  "How to invoke Fusion Application TCA webservice from SOAP UI (Doc ID 1496071.1)"  documents how a service with message protection can be called from SOAP UI. Your steps seem identical so presumably they are based on this document.
  "Oracle Fusion Sales Cloud Web Services (Doc ID 1354841.1)" contains information about the CRM web services including examples on the certificate import and sample payloads.
  Please provide:
  The security policies defined on the service (check the wsdl)
  The exact error message the you get
  Jani Rautiainen
  Fusion Applications Developer Relations
  https://blogs.oracle.com/fadevrel/