SOAP security
Hello
I use JDeveloper 11.1.2.4, I have url WSDL for the web service soap, I create data control and I need to add some level of security as that below, how do I add that? What policy I will add when I create the data control?
<soap:Header xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"> <wsse:Security soap:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"> <wsse:UsernameToken wsu:Id="UsernameToken-XXXXXXXXXX" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> <wsse:Username>XXXXXXXXXXXX</wsse:Username> <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">XXXXXXXXXXXXXXXXX</wsse:Password> </wsse:UsernameToken> </wsse:Security> </soap:Header>
Thank you
Try to do 2 things:
1. from data edit controls ws data control and in endpoint authentication, select ws port and set username and password.
2 - Select the DataControls.dcx ws file structure window right click and select 'Define Web Service security' then from security check list on "Oracle/wss_username_token_client_policy.
Try to check this url for example full:
Sameh Nassar: Call the SOAP Web Service securely in ADF Application Using DataControl
Tags: Java
Similar Questions
-
How to change the soap to the proxy service request?
Here is an example SOAP:
I need to replace the value of the app with user name in the proxy service. Could someone help me what is the XPath expression for the username and app?<soapenv:Header> <Security xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"> <UsernameToken> <Username>kvd</Username> <Password>testpwd</Password> </UsernameToken> </Security> </soapenv:Header> <soapenv:Body> <per:getApplicationInfo> <userName>test</userName> <applCode>358</applCode> </per:getApplicationInfo> </soapenv:Body>
The company should get the underside of SOAP.
This is the approach that I think: 1) alter the flow of messages Proxy Service-> add a pair of Pipeline-> replace app with username-> call Business Service.<soapenv:Header> <Security xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"> <UsernameToken> <Username>kvd</Username> <Password>testpwd</Password> </UsernameToken> </Security> </soapenv:Header> <soapenv:Body> <per:getApplicationInfo> <userName>kvd</userName> <applCode>358</applCode> </per:getApplicationInfo> </soapenv:Body>
I use Oracle Service Bus 10 g.
Published by: user12876168 on April 25, 2011 05:50You were missing the namespaces in xpath associated header.
In your request, soap, security namespaces, UsernameToken, etc... are related to the target namespace. Below is the reason why:
xmlns = "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" > So that means all the xml tags that don't have not one namespace linked to it belongs to the targetNamespace and where they must be accessible with it.
So set a namespace as WSSE as http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd and then use the underside of xpath.
* $header / wsse:Security/wsse:UsernameToken/wsse:Username/text() *.
It should work.
Thank you
Patrick -
The security token cannot be authenticated to exposed SOAP BPEL process
Hi all
I have a BPEL process that I'm outlining like SOAP web service that conducting a policy of oracle/wss_username_token_over_ssl_service_policy . The BPEL process does nothing with the identifying information that is passed (in fact, I stripped everything out of him so that there is no anything). When I test the web service using soapUI I get the following error message: FailedAuthentication: the security token cannot be authenticated. Anyone have any ideas why?
This is the payload sent to the service:
" < = xmlns:bpel soapenv:Envelope ' http://xmlns.Oracle.com/TestBPEL/project/BPELProcess "xmlns:soapenv =" http://schemas.xmlsoap.org/soap/envelope/ ">
< soapenv:Header >
" < xmlns:wsse wsse: Security = ' http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd "xmlns:wsu =" " http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd "soapenv:mustUnderstand ="1"> "
< wsu:Timestamp WSU: ID = "TS - 10" >
< wsu: created > 2013 - 10 - 07T 21: 16:16Z < / wsu: created >
< wsu: expires > 2013 - 10 - 07T 21: 16:48Z < / wsu: expires >
< / wsu:Timestamp >
< wsse: UsernameToken WSU: ID = "UsernameToken-9" >
WJR < wsse:Username > < / wsse:Username >
" < wsse:Password Type = ' http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText "> CBA < / wsse:Password > .
" < wsse:Nonce EncodingType =" http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-SOAP-message-security-1.0#base64Binary "> 2460zn8mTqCxdB6XS65Ixg == < / wsse:Nonce > .
< wsu: created > 2013 - 10 - 07T 21: 16:16.577Z < / wsu: created >
< / wsse: UsernameToken >
< / wsse: Security >
< / soapenv:Header >
< soapenv:Body >
< bpel:process >
" < = xmlns:bpel bpel:input ' http://xmlns.Oracle.com/TestBPEL/project/BPELProcess ">? < / bpel:input >
< / bpel:process >
< / soapenv:Body >
< / soapenv:Envelope >
Hi Bill,
The message is pretty clear "FailedAuthentication: the security token cannot be authenticated. There should be something wrong with your security configuration... The fact that your code doesn't do anything with the credentials doesn't mean anything, as long as you have politics, you must pass a valid authentication...
See you soon,.
Vlad
-
Cannot process the SOAP element wsse header: child 'Security' with ' mustUnder
Hello everyone.
Have created project in Jdeveloper. In this one, I have an external reference for Siebel Service.
Composite, for the service of external reference (Siebel) I added a security that is strategy * "oracle_wss_username_token_client_policy."
[Right click on SiebelService-> configure WS Policy-> Security tab, I selected above political]
So other than that I added the property for the policy
_ _
< name = "oracle.webservices.auth.username property" type = "xs: String" "
much = 'false' override = "may" > SADMIN < / property >
< name = "oracle.webservices.auth.password property" type = "xs: String" "
much = 'false' override = "may" > SADMIN < / property >
_ _
But his return following error,
Cannot process the SOAP element wsse header: child 'Security' with 'mustUnderstand = "1" ' (SBL-EAI-08000)
It really pushed me in development.
I really need help. Help me on this issue.
Thanks in advance,
MagaliCannot process the SOAP element wsse header: child 'Security' with 'mustUnderstand = "1" ' (SBL-EAI-08000)
The problem is next to Siebel. He is not able to understand the security mechanism used on the side of the SOA. There are two options-
1 use the custom policy and affirmation to the side SOA (please refer to metalink - 1419373.1 note)
2. write your own custom message handler class and use it next to Siebel to negotiate the safety deficiencyKind regards
Anuj -
Hi all
I have a RS of mediator who invokes an external secure Web service. Despite I put the username and password values, I get HTTP 401 error.
Here is my source of mp plan. Any comment or help is appreciated.
<? XML version = "1.0" encoding = "UTF - 8"? >
< mediator name = "AIASystem.OSM.ProcessSalesOrderFulfillmentOSMCFSCommsWSProducer_RS" wsdlTargetNamespace =" " http://Oracle.com/ESB/namespaces/AIASystem_OSM "xmlns =" " http://xmlns.Oracle.com/SCA/1.0/mediator "> "
< name of operation = "run" >
<>switch
< name = "ProcessSalesOrderFulfillmentOSMCFSCommsWSProducer.CreateOrderBySpecification - case" executionType 'direct' = > "
< action >
< transform >
< name of part = "$out.» CreateOrderBySpecificationRequest ".
function = ' xslt (xsl/ProcessSalesOrderFulfillmentEBM_To_CreateOrderBySpecification.xsl $in.). ProcessSalesOrderFulfillmentEBM) "/ >"
< / transform >
< assign >
< copy value = "admin".
' xmlns:wsse1 = ' http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd "
target = "$out." Header.wsse1_Security/wsse1:Security/wsse1:UsernameToken/wsse1:username"/ >
< copy value = "Data1234".
' xmlns:wsse1 = ' http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd "
target = "$out." Header.wsse1_Security/wsse1:Security/wsse1:UsernameToken/wsse1:password"/ >
< / assign >
< invoke reference = "ProcessSalesOrderFulfillmentOSMCFSCommsWSProducer."
operation = "CreateOrderBySpecification" >
< onReply >
< transform >
< name of part = "$out.» ProcessSalesOrderFulfillmentResponseEBM ".
function = ' xslt (xsl/CreateOrderBySpecificationResponse_To_ProcessSalesOrderFulfillmentResponseEBM.xsl $in.). CreateOrderBySpecificationResponse) "/ >"
< / transform >
< response / >
< / onReply >
< onFault type = "InvalidOrderDataFault" >
< transform >
< name of part = "$out.» OrderFault ".
function = ' xslt (xsl/InvalidOrderDataFault_To_OrderFault.xsl $in.). InvalidOrderDataFault) "/ >"
< / transform >
< fault type = "OrderFault" / >
< / onFault >
< / call >
< / action >
< / Body >
< / switch >
< / operation >
< / Ombudsman >
Hi all
The problem is solved by adding the three properties below to the definition of the external service in composite.xml.
Best regards
Override = "may" > true
Override = "may" > username
Override = "may" > password
-
Message keeps popping up "windows has detected a serious threat to your safety... detected 159 threats ' WIN32/netsky. Q worm (18)... SOAP/hoax Spyware (23)... Worm Win32/Bagle.He (158). How difficulty and/or eliminate these threats? When appears the msg I must disconnect to temporairly remove it. In addition unrequested porn pictures are automatclly arise and also a warning... «the catalyst control center is not supported by the version of the driver for your graphics enable...» »
Your computer is infected by a rogue security program that claims to find threats to the security and trying to make you pay for the program. Don't do it! Click on the Red 'X' in the top of the window title bar to close the window, or press Alt + F4 on the keyboard.
If you want to try to remove it yourself, first run a full scan with your antivirus program. Next, download and run these programs:
Microsoft Windows malicious software removal tool
Malwarebytes' Anti-MalwareFor more detailed help that you can go on the malware removal forum to Aumha , see spyware and malware at BleepingComputer.com removal guide. Or get help from a reputable local computer consultant.
-
JDeveloper 12.2.1.0.0 do not add the header of web service security
Hello
I write simple WebService Java Client to a simple wsdl.
If I click with the right button on the WSDL file and say 'Test Web Service', a request was made for me by Jdeveloper, all I have to do is click the box include the username and password for SOAP Header-> Header WS:Security and under the "security-> UserNameToken" and my request now has a security header
" < = xmlns:env env:Envelope ' http://www.w3.org/2003/05/soap-envelope "xmlns:ns1 =" " http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd "xmlns:ns2 =" " http://Oracle.apps.CTB.cdapersistence.types ">
< env:Header >
< ns1:Security >
< ns1:UsernameToken >
WebLogic < ns1:Username > < / ns1:Username >
password < ns1:Password > < / ns1:Password >
< / ns1:UsernameToken >
< / ns1:Security >
< / env:Header >
< env:Body >
< ns2:PersistCDADocumentRequest >
< ns2:Document / >
< / ns2:PersistCDADocumentRequest >
< / env:Body >
< / env:Envelope >
I tried 3 separate ways to do it in my Java Web Service Proxy and all 3 have failed, the demand created by my java code does not include the security header and don't include that the < env:Header / > why are my bottom 3 attempts of creation of the grave security header down when they are means documented to supply security headers? Help, please
Method 1:
Map < String, Object > requestContext = (cDAPersistenceServicePortType) .getRequestContext ((BindingProvider));
requestContext.put (BindingProvider.USERNAME_PROPERTY, "weblogic");
requestContext.put (BindingProvider.PASSWORD_PROPERTY, "password");
Methos 2:
Map < String, Object > requestContext = (cDAPersistenceServicePortType) .getRequestContext ((BindingProvider));
Map < String, List < String > > headers = new HashMap < String, List < String > > ();
headers.put ("Username", Collections.singletonList ("weblogic"));
headers.put ("Password", Collections.singletonList ("password"));
requestContext.put (MessageContext.HTTP_REQUEST_HEADERS, headers);
Methos 3:
@Generated ("oracle JDeveloper")
public static void setPortCredentialProviderList (map < String, Object > requestContext) bird Exception {}
TODO - provides the required identification information values
String username = "weblogic";
String password = "password";
credList.add (getUNTCredentialProvider (username, password));
requestContext.put (WSSecurityContext.TRUST_MANAGER, new TrustManager() {}
{public boolean certificateCallback (X509Certificate [] string, int validateErr)
Boolean result =
(string! = null & & chain.length > 0) & & (chain [0] (serverCert) .equals | chain [0] .equals (clientCert));
return the result;
Returns true;
}
});
credList.add (getSAMLTrustCredentialProvider ());
requestContext.put (WSSecurityContext.CREDENTIAL_PROVIDER_LIST, credList);
}
@Generated ("oracle JDeveloper")
public static CredentialProvider getUNTCredentialProvider (String username, String password) {}
new return ClientUNTCredentialProvider (username.getBytes (), password.getBytes ());
}
@Generated ("oracle JDeveloper")
public static CredentialProvider getSAMLTrustCredentialProvider() {}
return new SAMLTrustCredentialProvider();
}
found an answer here - http://stackoverflow.com/questions/5976940/how-to-add-soap-header-in-java
-
BPM 11 g: call a secure web service
Hi all
I need to invoke a web service secured a BPM process. I do the following
1. to add a reference, I added the customer strategy security "oracle/wss_username_token_client_policy' using option set up political WS on the reference. I also added oracle/log_policy to see SOAP requests being generated.
2. I added the below properties in the composite.xml slot of the reference binding.ws
< name = "oracle.webservices.auth.username property" type = "xs: String" "
much = 'false' override = "may" > SomeUserName < / property >
< name = "oracle.webservices.auth.password property" type = "xs: String" "
Override = 'may' many 'false' = > SomePassword < / property >
But I get an exception during the invocation
MustUnderstand headers: [{http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd} Security] are not included
Also the SOAP request sent to the service of reference I think newspapers don't have the password or a usernametoken anywhere. What else must be configured or set to invoke the secure web service.
Thank you
Siva Renon
Hi all
I got it working to create a new key - basic.credentials - in oracle.wsm.security map the credentials of the domain. You can check this link for the steps.
Thank you
Siva Renon
-
SOAP WITH UTL_HTTP ON HTTPS WEB SERVICE
Hi all! I'm new there and experimenting with the consumption of web services from database.
I'm trying to consume a service soap (simple) utl_http via https web with no luck in the Oracle 11 g Release 11.2.0.1.0 - 64 bit Production database.
When you try to consume a web service soap utl_http over http, I have a great solution. But things goes bad when change the http secure (https) Protocol.
There are a lot of examples and articles out there on how to do it, but there is nothing, not an integrated solution explained step by step.
I would like to write the steps that I followed then maybe someone will find what am I missing or what I'm doing wrong.
1 grant the user permissions of utl_Http.
2 Confure ACL with
BEGIN
DBMS_NETWORK_ACL_ADMIN. ASSIGN_ACL (LCD = > 'utl_http.xml',)
Home = > 'oracle-www.m-base.org/Sounds.html');
END;
/
COMMIT;
and check the ACL with
SELECT *.
Of user_network_acl_privileges;
and
SELECT *.
OF dba_network_acls;
3 export certifications of sites web service and import them into the portfolio (https://oracle-base.com/articles/misc/utl_http-and-ssl). Try a to time with different types of key - extensions (with key chains or not)
4. When you try to consume the service web soap over HTTPS with SOAP UI everything works fine, but I get with utl_http
ORA-28857: unknown error SSL
I think keystore loaded successfully, but there is one thing missing in my puzzle. Also, I find this portfolio when run SELECT * FROM v$ encryption_wallet has a closed state.
WRL_TYPE WRL_PARAMETER STATE
file E:\oracle\admin\HOSPITAL\Wallet CLOSED The web service is trying to run is a simple add you can fid it https://oracle-base.com/webservices/server.php/ws_add
Please help me to find out what am I do wrong.
Thank you in advance.
Working on my db...
Then try to patch your database...
-
How to determine what security policy to be used in the HTTPClient.java?
Hi team,
I tried invoke Fusion Web Service, not always successful, got a few entries and still ongoing.
The first question is to know how to identify the security poicy should be used in the resulting WSDL webService HTTPClient?
Ex : //setup security feature with OWSM policy SecurityPolicyFeature[] securityFeature = new SecurityPolicyFeature[] { new SecurityPolicyFeature("oracle/wss_username_token_client_policy") };In the WSDL XML, how to identify, what strategy to use when calling webService
"" "< wsp xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"" xmlns= "http://schemas.xmlsoap.org/ws/2004/09/policy"xmlns:wsu= "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" " xmlns: xsi="http://www.w3.org/2001/XMLSchema-instance" WSU: ID="wss_saml_or_username_token_service_policy">"Plese provide your inputs.
Reg
Sridhar
What is the error that you are experiencing? Security policy is in the WSDL file and documentation for GOSA provides details on the assertion. Generally, I think that you would use "oracle/wss_username_token_over_ssl_client_policy", which is the easiest to use. Also usually the easiest way to set up a call must first make the call using SOAP UI for you ensure that your envelope is correct and then to implement in any client that you need. For more details on how to make a SOAP UI call refer to this blog post.
--
Jani Rautiainen
Relationship with the developers of Applications in fusion
-
Error when calling Fusion R9 on Service SOAP premise of JDeveloper 11.1.1.7
Hi team,
Here is the WSDL Iam I invoke:
. http://fusionapp < clientName > .com:10607/prcPorCreateReq/CreateReqService? WSDL
OER WSDL, example: https://fusionappsoer.oracle.com/oer/custom/r9/oer/oracle/apps/prc/por/createReq/createReqService/CreateReqService.wsdl
Client Java code:
public static void main(String [] args) { //setup security feature with OWSM policy SecurityPolicyFeature[] securityFeature = new SecurityPolicyFeature[] { new SecurityPolicyFeature("oracle/wss_username_token_client_policy") }; createReqService_Service = new CreateReqService_Service(); CreateReqService createReqService = createReqService_Service.getCreateReqServiceSoapHttpPort(securityFeature); // Get the request context to set the outgoing addressing properties WSBindingProvider wsbp = (WSBindingProvider)createReqService; WSEndpointReference replyTo = new WSEndpointReference("http://fusionapp.techmahindra.com:10607/prcPorCreateReq/CreateReqService?WSDL", WS_ADDR_VER); String uuid = "uuid:" + UUID.randomUUID(); wsbp.setOutboundHeaders( new StringHeader(WS_ADDR_VER.messageIDTag, uuid), replyTo.createHeader(WS_ADDR_VER.replyToTag)); // Add Security Headers below if any Authentication is required. wsbp.getRequestContext().put(WSBindingProvider.USERNAME_PROPERTY, "nitin"); wsbp.getRequestContext().put(WSBindingProvider.PASSWORD_PROPERTY, "Welcome123"); // Add your code to call the desired methods long requisitionHeaderId =1234 ; RequisitionHeader variableName; // Add your code to call the desired methods. try { System.out.println("Invoking get req method"); variableName = createReqService.getRequisitionHeader(requisitionHeaderId); } catch (ServiceException e) { } }Policy feature of security referred to in the WSDL document
"" < policyReference xmlns:wsp= "http://schemas.xmlsoap.org/ws/2004/09/policy" " URI="#wss_saml_or_username_token_service_policy" wsdl: required="false"/ >""" < policyReference xmlns:wsp= "http://schemas.xmlsoap.org/ws/2004/09/policy" " URI="#wsaddr_policy" wsdl: required="false"/ >"Exception when calling
C:\Oracle\MiddlewareJdev11117\jdk160_24\bin\javaw.exe -client -classpath D:\Sridhar\Software\p17888411_R12_GENERIC\jdevhome\jdev\mywork\FusionR9CreateReqServ\.adf;D:\Sridhar\Software\p17888411_R12_GENERIC\jdevhome\jdev\mywork\FusionR9CreateReqServ\FusionR9CreateReqServ\classes;C:\Oracle\MiddlewareJdev11117\wlserver_10.3\server\lib\weblogic.jar;C:\Oracle\MiddlewareJdev11117\oracle_common\modules\oracle.jrf_11.1.1\jrf.jar;C:\Oracle\MiddlewareJdev11117\modules\com.oracle.toplink_1.0.0.0_11-1-1-5-0.jar;C:\Oracle\MiddlewareJdev11117\modules\org.eclipse.persistence_1.1.0.0_2-1.jar;C:\Oracle\MiddlewareJdev11117\modules\com.bea.core.antlr.runtime_2.7.7.jar;C:\Oracle\MiddlewareJdev11117\modules\javax.persistence_1.0.0.0_2-0-0.jar;C:\Oracle\MiddlewareJdev11117\oracle_common\modules\oracle.webservices_11.1.1\wsclient.jar -Djavax.net.ssl.trustStore=C:\Oracle\MiddlewareJdev11117\wlserver_10.3\server\lib\DemoTrust.jks com.oracle.xmlns.apps.prc.por.createreq.createreqservice.CreateReqServiceSoapHttpPortClient Jun 3, 2015 5:23:59 PM weblogic.wsee.jaxws.spi.WLSServiceDelegate addWsdlDefinitionFeature SEVERE: Failed to create WsdlDefinitionFeature for wsdl location: http://fusionapp.techmahindra.com:10607/prcPorCreateReq/CreateReqService?WSDL, error: com.sun.xml.ws.wsdl.parser.InaccessibleWSDLException, message: 2 counts of InaccessibleWSDLException. SEVERE: java.io.FileNotFoundException: .\config\jps-config.xml (The system cannot find the path specified) SEVERE: java.io.FileNotFoundException: .\config\jps-config.xml (The system cannot find the path specified) INFO: WSM-09004 Component auditing cannot be initialized. Invoking get req method INFO: Recipient Alias property not configured in the policy. Defaulting to encrypting with signers certificate. Exception in thread "main" javax.xml.ws.soap.SOAPFaultException: access denied (oracle.wsm.security.WSFunctionPermission http://xmlns.oracle.com/apps/prc/por/createReq/createReqService/CreateReqService#getRequisitionHeader invoke) at com.sun.xml.ws.fault.SOAP11Fault.getProtocolException(SOAP11Fault.java:197) at com.sun.xml.ws.fault.SOAPFaultBuilder.createException(SOAPFaultBuilder.java:122) at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:125) at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:95) at com.sun.xml.ws.client.sei.SEIStub.invoke(SEIStub.java:136) at $Proxy43.getRequisitionHeader(Unknown Source) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:597) at weblogic.wsee.jaxws.spi.ClientInstanceInvocationHandler.invoke(ClientInstanceInvocationHandler.java:84) at $Proxy44.getRequisitionHeader(Unknown Source) at com.oracle.xmlns.apps.prc.por.createreq.createreqservice.CreateReqServiceSoapHttpPortClient.main(CreateReqServiceSoapHttpPortClient.java:56) Process exited with exit code 1.
Please let me know how to configure the java client based on the WSDL file secuirity policy. I would like to know where iam missing.
I have raised several MOS - SR Oracle, but no response until now.
Concerning
Sridhar
Here's the code that worked:
Public Shared Sub main (String [] args)
{
installation with GOSA policy security feature
SecurityPolicyFeature [] securityFeature = new SecurityPolicyFeature [] {new SecurityPolicyFeature("oracle/wss_username_token_client_policy")};
currenciesService_Service = new CurrenciesService_Service();
CurrenciesService currenciesService = (securityFeature) currenciesService_Service.getCurrenciesServiceSoapHttpPort;
Get the request context to set the outgoing address properties
WSBindingProvider wsbp = (WSBindingProvider) currenciesService;
ReplyTo = WSEndpointReference
new WSEndpointReference ("http://fusionapp.techmahindra.com:7406/finGlCurrManageRateSetupService/CurrenciesService?") WSDL"(, WS_ADDR_VER);"
String uuid = "uuid:" + UUID.randomUUID ();
wsbp.setOutboundHeaders (new StringHeader (WS_ADDR_VER.messageIDTag, uuid), replyTo.createHeader (WS_ADDR_VER.replyToTag));
Add headers of following security if authentication is required.
wsbp.getRequestContext () .put (WSBindingProvider.USERNAME_PROPERTY, "FAADMIN");
wsbp.getRequestContext () .put (WSBindingProvider.PASSWORD_PROPERTY, "Welcome1");
String conversionType = "Corporation."
VariableName of DailyConversionType;
Add your code to call the desired methods.
try {}
System.out.println ("method call");
variableName = currenciesService.getDailyConversionType (conversionType);
System.out.println ("Value of the Variable name-->" + VariableName);
System.out.println ("Data-->" + variableName.attribute1);
System.out.println ("Type of Conversion-->" + variableName.conversionType);
} catch (ServiceException e) {}
}
}
Concerning
Sridhar
-
The API SOAP Email - reply not saved name/address
Hi, Code
We're having a problem with the custom setting Reply-To the names and addresses of response when you use the "CreateHtmlEmail" and "UpdateHtmlEmail". I am including the request/response below, please note that I indicate the ReplyToName and ReplyToAddress settings but the Email does not have those.
Request:
" < = env:Envelope container ' http://www.w3.org/2001/XMLSchema "" xmlns: xsi = " " http://www.w3.org/2001/XMLSchema-instance "xmlns:tns =" " https://secure.Eloqua.com/API/1.2 "xmlns:env =" " http://schemas.xmlsoap.org/SOAP/envelope/ "xmlns:ins0 =" " http://schemas.Microsoft.com/2003/10/Serialization/Arrays "> "
< env:Header >
" < xmlns:wsse wsse: Security = ' http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd ">
" < wsse: UsernameToken WSU: ID = 'UsernameToken-1' xmlns:wsu = ' http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd ">
< wsse:Username > IHSIncSandbox\Ilya.Hoffman < / wsse:Username >
" < wsse:Password Type = ' http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText "> [DELETED] < / wsse:Password > .
< / wsse: UsernameToken >
< / wsse: Security >
< / env:Header >
< env:Body >
< tns:UpdateHtmlEmail >
< tns:email >
< tns:Id > 10700 < / tns:Id >
[PMP] < tns:Name > _4558_Testingrn_PreviewEmail_IH < / tns:Name >
< tns:Subject > T1 < / tns:Subject >
< tns:AutoGenerateTextContent > true < / tns:AutoGenerateTextContent >
< tns:EncodingId > 1 < / tns:EncodingId >
< tns:FooterId > 1 < / tns:FooterId >
< tns:FromAddress > [email protected] < / tns:FromAddress >
< tns:FromName > T1 < / tns:FromName >
< tns:HeaderId > 1 < / tns:HeaderId >
< tns:HtmlContent > Hello World! < / tns:HtmlContent >
< tns:SendHtml > true < / tns:SendHtml >
< tns:NeverExpires > true < / tns:NeverExpires >
< tns:ReplyToAddress > [email protected] < / tns:ReplyToAddress >
< tns:ReplyToName > response Test < / tns:ReplyToName >
< tns:SendToUnsubscribes > false < / tns:SendToUnsubscribes >
< tns: crawler > true < / tns: crawler >
< / tns:email >
< / tns:UpdateHtmlEmail >
< / env:Body >
< / env:Envelope >
Answer:
" < s: Envelope = xmlns:s ' http://schemas.xmlsoap.org/SOAP/envelope/ "xmlns:u =" " http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd ">
< s:Header >
" < ActivityId CorrelationId ="7052c8fd-1ca2-4aca-9608-4b033717cd2d"xmlns =" http://schemas.Microsoft.com/2004/09/ServiceModel/Diagnostics "> 9eec4480-4856-48c1-9835-0633e518948a < / ActivityId > .
" < o: Security s:mustUnderstand = '1' xmlns:o = ' http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd ">
< u: Timestamp u: Id = "_0" >
< u: created > 2013-08-30T 19: 37:28.427Z < / u: created >
< u: expires > 2013-08-30T 19: 42:28.427Z < / u: expires >
< / u: Timestamp >
< / o: Security >
< / s:Header >
< Body >
" < UpdateHtmlEmailResponse xmlns =" https://secure.Eloqua.com/API/1.2 ">
< UpdateHtmlEmailResult > true < / UpdateHtmlEmailResult >
< / UpdateHtmlEmailResponse >
< / Body >
< / s: Envelope >
Then retrieve the details for the same E-mail:
Request:
" < = xmlns:soapenv soapenv:Envelope ' http://schemas.xmlsoap.org/SOAP/envelope/ "xmlns:ns =" " https://secure.Eloqua.com/API/1.2 ">
< soapenv:Header >
" < xmlns:wsse wsse: Security = ' http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd ">
" < wsse: UsernameToken WSU: ID = 'UsernameToken-1' xmlns:wsu = ' http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd ">
< wsse:Username > IHSIncSandbox\Ilya.Hoffman < / wsse:Username >
" < wsse:Password Type = ' http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText "> [DELETED] < / wsse:Password > .
< / wsse: UsernameToken >
< / wsse: Security >
< / soapenv:Header >
< soapenv:Body >
< ns:GetEmailDetails >
< ns:emailId > 10700 < / ns:emailId >
< / ns:GetEmailDetails >
< / soapenv:Body >
< / soapenv:Envelope >
Answer:
" < s: Envelope = xmlns:s ' http://schemas.xmlsoap.org/SOAP/envelope/ "xmlns:u =" " http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd ">
< s:Header >
" < ActivityId CorrelationId ="153f216a-97c0-4f0b-98bc-41f19734ca9f"xmlns =" http://schemas.Microsoft.com/2004/09/ServiceModel/Diagnostics "> 19a9ec9b-882c-4ef2-b706-d01fd9e4a37a < / ActivityId > .
" < o: Security s:mustUnderstand = '1' xmlns:o = ' http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd ">
< u: Timestamp u: Id = "_0" >
< u: created > 2013-08-30T 19: 39:50.509Z < / u: created >
< u: expires > 2013-08-30T 19: 44:50.509Z < / u: expires >
< / u: Timestamp >
< / o: Security >
< / s:Header >
< Body >
" < GetEmailDetailsResponse xmlns =" https://secure.Eloqua.com/API/1.2 ">
" < = Xmlns:i GetEmailDetailsResult ' http://www.w3.org/2001/XMLSchema-instance ">
< id > < /ID > 10700
[PMP] < name > _4558_Testingrn_PreviewEmail_IH < / name >
T1 < object > < / topic >
< AutoGenerateTextContent > true < / AutoGenerateTextContent >
< BouncebackAddress > [email protected] < / BouncebackAddress >
< EncodingId > 1 < / EncodingId >
< FooterId > 1 < / FooterId >
< FromAddress > [email protected] < / FromAddress >
T1 < FromName > < / FromName >
< > 123 GroupId < / GroupId >
< HeaderId > 1 < / HeaderId >
< HtmlContent > Hello World! < / HtmlContent >
< NeverExpires > false < / NeverExpires >
< ReplyToAddress > [email protected] < / ReplyToAddress >
< ReplyToName > IHS Inc Sandbox < / ReplyToName >
< SendHtml > true < / SendHtml >
< SendToUnsubscribes > false < / SendToUnsubscribes >
< TextContent > Hello World! < / TextContent >
< track > true < / tracks >
< / GetEmailDetailsResult >
< / GetEmailDetailsResponse >
< / Body >
< / s: Envelope >
Tarek,
It turns out that it's the location of the "SentHtml" parameter in the envelope regarding settings "answer". The following query works:
-
Calling REST API security token error simple GET method
Please help me get past this error. I have yet to get a successful REST API request of Eloqua. API is enabled for our sandbox that I managed by instantiating different SOAP request/response.
This is my test RequestURI
https://secure.Eloqua.com/API/rest/2.0/data/contact/3
With the method 'GET' headers appropriate and what I have collected of their API guides, including the very useful
Eloqua REST API - authentication
Eloqua REST API - URL parameters
Eloqua REST API - HTTP request headers
RequestURI works when typed manually into a authenticated (connected to the Eloqua Sandbox session) tab of the FireFox browser.
When I try the request in my tools (middleware Tibco integration, acting as a client HTTP request), I always get the answer:
A security token that is associated with your session became invalid.
I saw this topic, but this was not useful in my case.
The behavior in my case is pretty consistent, and seems not to care if I even spoil RequestURI making it invalid. The same error persists.
Help, please! Thank you
Heath
A more complete answer follows:
< RequestActivityOutput >
< header > HTTP/1.1 200 OK
Content-Type: text/html; charset = utf-8
Content-Length: 2355
Date: Friday, April 19, 2013 19:43:19 GMT
cache-control: private
connection: close
P3P: CP = "IDC DSP COR DEVa TAIa OUR PHY ONL UNI COM NAV CNT STA BUS."
< / header >
< statusLine >
< httpVersion > HTTP/1.1 < / httpVersion >
< statusCode 200 > < / statusCode >
< reasonPhrase > OK < / reasonPhrase >
< / statusLine >
....
A security token that is associated with your session became invalid.
This can happen if you open multiple instances of Eloqua, in
different browser Windows or tabs, then the diary of one of
These instances. Please either close this window or tab, or
& lt; a href = "" / FormsLogin.aspx "target ="_top"> click here to connect to new & lt;" /a >. & lt; br >
Heath,
I'm not able to simply navigate to this URL in my browser either, even though I am connected to my sandbox (which has access to the API). I don't know how you manage to get there in Firefox.
That being said, I can hit this page of the REST API very well when I base64 encode my credentials HTTP as described here:
Eloqua REST API - authentication
May be useful to take a look at the auth string you use when calling from rest.
Jim
-
An error occurred during the security check for the message
Hello
I'm just starting to try to use axis2 to access the Eloqua api webservie. Under code comes from using the API of Eloqua WS with Java - part 1 and I followed the steps in the link.
// To debug the this line will set Log4J to use System.Out for a lot of // messages. // BasicConfigurator.configure(); // Configure your username and password here. String company = "TechnologyPartnerWelocalize"; String username = "leo.chen"; String password = "Password1"; // Assuming that the conf directory has the Axis2 config file and // Rampart is installed correctly. ConfigurationContext ctx = ConfigurationContextFactory .createConfigurationContextFromFileSystem("D:/axis2-1.6.2/conf", null); EloquaStub stub = new EloquaStub(ctx, "https://secure.eloqua.com/API/1.2/Service.svc"); ServiceClient sc = stub._getServiceClient(); Options options = sc.getOptions(); sc.engageModule("rampart"); options.setUserName(company + "\\" + username); options.setPassword(password); String[] assetTypes = stub.listAssetTypes(new ListAssetTypes()) .getListAssetTypesResult().getAssetTypes().getString(); System.out.println("Asset Types count : " + assetTypes.length); for (String s : assetTypes) { System.out.println(" -> " + s); }But I got following error when executing code above.
Exception in thread "main" org.apache.axis2.AxisFault: An error occurred when verifying security for the message. at org.apache.axis2.util.Utils.getInboundFaultFromMessageContext(Utils.java:531) at org.apache.axis2.description.OutInAxisOperationClient.handleResponse(OutInAxisOperation.java:375) at org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisOperation.java:421) at org.apache.axis2.description.OutInAxisOperationClient.executeImpl(OutInAxisOperation.java:229) at org.apache.axis2.client.OperationClient.execute(OperationClient.java:165) at com.eloqua.secure.api.EloquaStub.listAssetTypes(EloquaStub.java:1928) at com.eloqua.sample.WSConsoleClient.main(WSConsoleClient.java:42)
Another problem is when I changed the chain of the company to one of the other stuff like "TechnologyPartnerWelocalize111", I get below error
Exception in thread "main" org.apache.axis2.AxisFault: SOAP header missing at org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFault(RampartReceiver.java:180) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:99) at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) at org.apache.axis2.engine.Phase.invoke(Phase.java:313) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:262) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:168) at org.apache.axis2.description.OutInAxisOperationClient.handleResponse(OutInAxisOperation.java:364) at org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisOperation.java:421) at org.apache.axis2.description.OutInAxisOperationClient.executeImpl(OutInAxisOperation.java:229) at org.apache.axis2.client.OperationClient.execute(OperationClient.java:165) at com.eloqua.secure.api.EloquaStub.listAssetTypes(EloquaStub.java:1928) at com.eloqua.sample.WSConsoleClient.main(WSConsoleClient.java:41) Caused by: org.apache.rampart.RampartException: SOAP header missing at org.apache.rampart.RampartEngine.process(RampartEngine.java:96) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:92) ... 10 more
I connected to the Eloqua using "leo.chen/Password1" and found that the name of the company is technology partner - Welocalize.
No idea what causes this kind of errors? I use Axis2 - 1.6.2 and rampart - 1.6.2. What I changed so far is to copy modules of the rampart - 1.6.2 and axis2-1.6.2\repository to axis2-1.6.2\conf folder and the commented line "< Ref module ="address"/ >" in axis2.xml.
Leo, I think that your use case law above may be met by using our RESTful API. For more details, see REST API - Documentation for kernel objects .
With this API, you can use OAuth instead of basic authentication, and it is probably easier to try to consume the SOAP WSDL and make it work.
-
Add the soap header for the data to the web service control
Hello
I use jdeveloper 11.1.2.4, I have to call soap webservice jet data control, what I I create the control of data using WSDL, but when run the SOAP header does not appear in call xml, so I create java code extends SOAPProvider and supplier of the set to the data control to the custom class as below:
public class CustomSOAProvider extends SOAPProvider { public CustomSOAProvider() { super(); } public void handleRequest(SOAPMessage soapMessage) { super.handleRequest(soapMessage); } public void handleResponse(SOAPMessage soapMessage) throws AdapterException { super.handleResponse(soapMessage); } }I need to add the header shot
<soap:Header xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"> <wsse:Security soap:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"> <wsse:UsernameToken wsu:Id="UsernameToken-XXXX" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> <wsse:Username>XXXX</wsse:Username> <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">XXXX</wsse:Password> </wsse:UsernameToken> </wsse:Security> </soap:Header>
Any suggestion
Hani,
Please check out the blog of Frank will give you the details on the handling of the https://blogs.oracle.com/jdevotnharvest/entry/how_to_access_the_ws_soap_message_using_ws_dc SOAP header
K
Maybe you are looking for
-
Can I damage my machine if I restart it several times?
Hello Today I had to restart my rMBP several times (2 - 3 times, one after the other) because of a software update, can she damage my machine (logic board, ssd, ram memory) at all? (short/long term)? Thank you
-
I have a Nexus 7 run Android version 4.4.2. I get emails from my account gmail on it without problem, but they do not come in my Inbox in Thunderbird on the desktop PC more and I would that they. I don't have the mind to read emails on the Tablet, bu
-
Medid Player turns on, but an error code will tell me the file cannot be played, COOD109B
-
Shalom. I'm in Thailand, and I can't find my cell phone *; For more than 12 hours. I installed the application "where is my cell phone." My mail is *.
-
Download Windows 7 (is the below legal link to download windows 7 free)
is below legal to download windows 7 http://technet.microsoft.com/en-us/evalcenter/cc442495.aspx because I downloaded and put it on a discand it's really cool because it has the opperating system full win 7 in the image (.iso file) disk file It is mi