Security token does not send to Server

classic Classic list List threaded Threaded
11 messages Options
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Security token does not send to Server

stanbel
This post has NOT been accepted by the mailing list yet.
Hi again :)
I am trying to call web-service with security token
In casa  editor (client configuration) i set username and password

but remote side says no username or password

Open ESB 3.05, jdk1.8.0_66

what i did wrong?

Here is request dump from Remote:
<?xml version='1.0' encoding='UTF-8'?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
        <SOAP-ENV:Header>
                <To xmlns="http://www.w3.org/2005/08/addressing">http://crm-app2.msk.zenit.ru/eai_anon_rus/start.swe?SWEExtSource=SecureWebService&SWEExtCmd=Execute</To>
                <Action xmlns="http://www.w3.org/2005/08/addressing">document/http://siebel.com/CustomUI:LotusActionImport</Action>
                <ReplyTo xmlns="http://www.w3.org/2005/08/addressing">
                        <Address>http://www.w3.org/2005/08/addressing/anonymous</Address>
                </ReplyTo>
                <FaultTo xmlns="http://www.w3.org/2005/08/addressing">
                        <Address>http://www.w3.org/2005/08/addressing/anonymous</Address>
                </FaultTo>
                <MessageID xmlns="http://www.w3.org/2005/08/addressing">uuid:d189e205-47bc-46ee-b60d-0bfa72501e6d</MessageID>
        </SOAP-ENV:Header>
        <SOAP-ENV:Body>
                <LotusActionImport_Input xmlns:msgns="http://siebel.com/CustomUI" xmlns="http://siebel.com/CustomUI">
                        <ns0:ListOfLotusActionImport xmlns:ns0="http://www.siebel.com/xml/Opportunity%20Export">
                                <ns0:Action>
                                        <ns0:Id>3242432</ns0:Id>
                                </ns0:Action>
                        </ns0:ListOfLotusActionImport>
                </LotusActionImport_Input>
        </SOAP-ENV:Body>
</SOAP-ENV:Envelope>





Here is my WSDL with SecurityPolicy
<?xml version="1.0" encoding="UTF-8"?>
<definitions  xmlns="http://schemas.xmlsoap.org/wsdl/"  xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"  xmlns:xsdLocal1="http://www.siebel.com/xml/Opportunity%20Export"  targetNamespace="http://siebel.com/CustomUI"  xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"  xmlns:xsd="http://www.w3.org/2001/XMLSchema"  xmlns:tns="http://siebel.com/CustomUI" xmlns:wsp="http://www.w3.org/ns/ws-policy"  xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"  xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702"   >
        <types >
                <xsd:schema  elementFormDefault="qualified"  attributeFormDefault="unqualified"  targetNamespace="http://siebel.com/CustomUI"  xmlns:xsd="http://www.w3.org/2001/XMLSchema" >
                        <xsd:import  namespace="http://www.siebel.com/xml/Opportunity%20Export" />
                        <xsd:element  name="LotusActionImport_Input" >
                                <xsd:complexType >
                                        <xsd:sequence >
                                                <xsd:element  ref="xsdLocal1:ListOfLotusActionImport" />
                                        </xsd:sequence >
                                </xsd:complexType >
                        </xsd:element >
                        <xsd:element  name="LotusActionImport_Output" >
                                <xsd:complexType >
                                        <xsd:sequence >
                                                <xsd:element  ref="xsdLocal1:ListOfLotusActionImport" />
                                        </xsd:sequence >
                                </xsd:complexType >
                        </xsd:element >
                </xsd:schema >
                <xsd:schema  elementFormDefault="qualified"  attributeFormDefault="unqualified"  xmlns:xsdLocal1="http://www.siebel.com/xml/Opportunity%20Export"  targetNamespace="http://www.siebel.com/xml/Opportunity%20Export"  xmlns:xsd="http://www.w3.org/2001/XMLSchema" >
                        <xsd:annotation >
                                <xsd:documentation >Copyright (C) 2001-2004 Siebel Systems, Inc. All rights reserved. Siebel XSD Generation</xsd:documentation >
                        </xsd:annotation >
                        <xsd:element  name="ListOfLotusActionImport"  type="xsdLocal1:ListOfLotusActionImport" />
                        <xsd:complexType  name="ListOfLotusActionImportTopElmt" >
                                <xsd:sequence >
                                        <xsd:element  name="ListOfLotusActionImport"  maxOccurs="1"  minOccurs="1"  type="xsdLocal1:ListOfLotusActionImport" />
                                </xsd:sequence >
                        </xsd:complexType >
                        <xsd:complexType  name="ListOfLotusActionImport" >
                                <xsd:sequence >
                                        <xsd:element  name="Action"  maxOccurs="unbounded"  minOccurs="0"  type="xsdLocal1:Action" />
                                </xsd:sequence >
                        </xsd:complexType >
                        <xsd:complexType  name="Action" >
                                <xsd:sequence >
                                        <xsd:element  name="ErrorMessage"  maxOccurs="1"  minOccurs="0"  type="xsd:string" />
                                        <xsd:element  name="VisedEmployeeIntegrationId"  maxOccurs="1"  minOccurs="0"  type="xsd:string" />
                                        <xsd:element  name="Id"  maxOccurs="1"  minOccurs="0"  type="xsd:string" />
                                        <xsd:element  name="Timestamp"  maxOccurs="1"  minOccurs="0"  type="xsd:string" />
                                        <xsd:element  name="Comment"  maxOccurs="1"  minOccurs="0"  type="xsd:string" />
                                        <xsd:element  name="Description"  maxOccurs="1"  minOccurs="0"  type="xsd:string" />
                                        <xsd:element  name="EndDate"  maxOccurs="1"  minOccurs="0"  type="xsd:string" />
                                        <xsd:element  name="IntegrationId"  maxOccurs="1"  minOccurs="0"  type="xsd:string" />
                                        <xsd:element  name="ShortComment"  maxOccurs="1"  minOccurs="0"  type="xsd:string" />
                                        <xsd:element  name="ListOfActionAttachment"  maxOccurs="1"  minOccurs="0"  type="xsdLocal1:ListOfActionAttachment" />
                                        <xsd:element  name="ListOfAction_Employee"  maxOccurs="1"  minOccurs="0"  type="xsdLocal1:ListOfAction_Employee" />
                                </xsd:sequence >
                        </xsd:complexType >
                        <xsd:complexType  name="ListOfActionAttachment" >
                                <xsd:sequence >
                                        <xsd:element  name="ActionAttachment"  maxOccurs="unbounded"  minOccurs="0"  type="xsdLocal1:ActionAttachment" />
                                </xsd:sequence >
                        </xsd:complexType >
                        <xsd:complexType  name="ActionAttachment" >
                                <xsd:sequence >
                                        <xsd:element  name="Creator"  maxOccurs="1"  minOccurs="0"  type="xsd:string" />
                                        <xsd:element  name="ActivityFileExt"  maxOccurs="1"  minOccurs="0"  type="xsd:string" />
                                        <xsd:element  name="ActivityFileName"  maxOccurs="1"  minOccurs="1"  type="xsd:string" />
                                        <xsd:element  name="ActivityFileBuffer"  maxOccurs="1"  minOccurs="0"  type="xsd:base64Binary" />
                                </xsd:sequence >
                        </xsd:complexType >
                        <xsd:complexType  name="ListOfAction_Employee" >
                                <xsd:sequence >
                                        <xsd:element  name="Action_Employee"  maxOccurs="unbounded"  minOccurs="0"  type="xsdLocal1:Action_Employee" />
                                </xsd:sequence >
                        </xsd:complexType >
                        <xsd:complexType  name="Action_Employee" >
                                <xsd:sequence >
                                        <xsd:element  name="EmployeeIntegrationId"  maxOccurs="1"  minOccurs="0"  type="xsd:string" />
                                </xsd:sequence >
                                <xsd:attribute  name="IsPrimaryMVG"  type="xsd:string" />
                        </xsd:complexType >
                </xsd:schema >
        </types >
        <message  name="LotusActionImport_Input" >
                <part  name="LotusActionImport_Input"  element="tns:LotusActionImport_Input" />
        </message >
        <message  name="LotusActionImport_Output" >
                <part  name="LotusActionImport_Output"  element="tns:LotusActionImport_Output" />
        </message >
        <portType  name="Inbound_spcZenit_spcLotus_spcAction_spcService" >
                <operation  name="LotusActionImport" >
                        <input  message="tns:LotusActionImport_Input" />
                        <output  message="tns:LotusActionImport_Output" />
                </operation >
        </portType >
        <binding  name="Inbound_spcZenit_spcLotus_spcAction_spcService"  type="tns:Inbound_spcZenit_spcLotus_spcAction_spcService" >
                <wsp:PolicyReference xmlns:wsp="http://www.w3.org/ns/ws-policy" URI="#SecurityPolicy" />
                <soap:binding  transport="http://schemas.xmlsoap.org/soap/http"  style="document" />
                <operation  name="LotusActionImport" >
                        <soap:operation  soapAction="document/http://siebel.com/CustomUI:LotusActionImport" />
                        <input >
                                <soap:body  use="literal" />
                        </input >
                        <output >
                                <soap:body  use="literal" />
                        </output >
                </operation >
        </binding >
        <service  name="Inbound_spcZenit_spcLotus_spcAction_spcService" >
                <port  binding="tns:Inbound_spcZenit_spcLotus_spcAction_spcService"  name="Inbound_spcZenit_spcLotus_spcAction_spcService" >
                        <soap:address  location="http://crm-app2.msk.zenit.ru/eai_anon_rus/start.swe?SWEExtSource=SecureWebService&amp;SWEExtCmd=Execute" />
                </port >
        </service >
        <wsp:Policy wsu:Id="SecurityPolicy">
                <wsp:ExactlyOne>
                        <wsp:All>
                                <sp:SymmetricBinding>
                                        <wsp:Policy/>
                                </sp:SymmetricBinding>
                                <sp:SupportingTokens>
                                        <wsp:Policy>
                                                <sp:UsernameToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient"/>
                                        </wsp:Policy>
                                </sp:SupportingTokens>
                        </wsp:All>
                </wsp:ExactlyOne>
        </wsp:Policy>
</definitions >
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Security token does not send to Server

David BRASSELY
Administrator
This post has NOT been accepted by the mailing list yet.
You're doing WS-Addressing ?
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Security token does not send to Server

stanbel
This post has NOT been accepted by the mailing list yet.
No, I don't use it
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Security token does not send to Server

stanbel
This post has NOT been accepted by the mailing list yet.
David, is it possible to be a bug?

I made BEPL module and Composite app again. Credentials transferred to remote and visible in dump
But they was incorrect, and if I change values in CASA editor, old values still passed to Remote side

Please, try to reproduce


Create Client bepl module, which uses WS security
In CASA editor enter incorrect credentials
Build, deploy, and test your assembly. Thus you should get error about username
Change in CASA editor credentials to correct values
Build, deploy, and test your new assembly. You should got the same error

For me, it's looks like credentials  was stored somewhere and used from previous attempt


Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Security token does not send to Server

stanbel
This post has NOT been accepted by the mailing list yet.
I have made some more investigations
WS-Security credentials are cached somewhere inside OpenESB, reinstalling Service Assembly does not clear vis value, only OpenESB restart helps
 
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Security token does not send to Server

David BRASSELY
Administrator
This post has NOT been accepted by the mailing list yet.
This post was updated on .
Can you have a try with this version of HTTP-BC and let us know please :

https://www.dropbox.com/s/dh364ib0xle0329/httpbc-full-installer-2.3.6-SNAPSHOT.jar?dl=0

Thanks,
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Security token does not send to Server

stanbel
This post has NOT been accepted by the mailing list yet.
Issue is unresolved, credentials are cached

and added one more
With new HTTP BC component SOAP messages bit diffirent and Remote system does not work

This is message from component Open ESB 3.05:
<?xml version='1.0' encoding='UTF-8'?><S:Envelope xmlns:S="http://schemas.xmlsoap.org/soap/envelope/" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:xs="http://www.w3.org/2001/XMLSchema"><S:Header><To xmlns="http://www.w3.org/2005/08/addressing">http://crm-app2.msk.zenit.ru/eai_anon_rus/start.swe?SWEExtSource=SecureWebService&SWEExtCmd=Execute</To><Action xmlns="http://www.w3.org/2005/08/addressing">document/http://siebel.com/CustomUI:LotusActionImport</Action><ReplyTo xmlns="http://www.w3.org/2005/08/addressing">
    <Address>http://www.w3.org/2005/08/addressing/anonymous</Address>
</ReplyTo><FaultTo xmlns="http://www.w3.org/2005/08/addressing">
    <Address>http://www.w3.org/2005/08/addressing/anonymous</Address>
</FaultTo><MessageID xmlns="http://www.w3.org/2005/08/addressing">uuid:75a02e0d-4a3d-4df5-9a11-97eeaec58f1b</MessageID><wsse:Security S:mustUnderstand="1"><wsse:UsernameToken xmlns:ns14="http://docs.oasis-open.org/ws-sx/ws-secureconversation/200512" xmlns:ns13="http://www.w3.org/2003/05/soap-envelope" wsu:Id="uuid_cba784a9-db09-4d86-aaac-b93ae42107aa"><wsse:Username>sadmin</wsse:Username><wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">nthhjhbcn3110</wsse:Password></wsse:UsernameToken></wsse:Security></S:Header><S:Body><LotusActionImport_Input xmlns:msgns="http://siebel.com/CustomUI" xmlns="http://siebel.com/CustomUI"><ns0:ListOfLotusActionImport xmlns:ns0="http://www.siebel.com/xml/Opportunity%20Export"><ns0:Action><ns0:Id>12345678</ns0:Id></ns0:Action></ns0:ListOfLotusActionImport></LotusActionImport_Input></S:Body></S:Envelope>

This is message from your new buld:
<?xml version='1.0' encoding='UTF-8'?><S:Envelope xmlns:S="http://schemas.xmlsoap.org/soap/envelope/" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:xs="http://www.w3.org/2001/XMLSchema"><S:Header><wsse:Security S:mustUnderstand="1"><wsse:UsernameToken xmlns:ns14="http://docs.oasis-open.org/ws-sx/ws-secureconversation/200512" xmlns:ns13="http://www.w3.org/2003/05/soap-envelope" wsu:Id="uuid_9dba93b2-8957-483e-9f8e-e6836ef4d5c4"><wsse:Username>sadmin</wsse:Username><wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">nthhjhbcn3110</wsse:Password></wsse:UsernameToken></wsse:Security></S:Header><S:Body><LotusActionImport_Input xmlns:msgns="http://siebel.com/CustomUI" xmlns="http://siebel.com/CustomUI"><ns0:ListOfLotusActionImport xmlns:ns0="http://www.siebel.com/xml/Opportunity%20Export"><ns0:Action><ns0:Id>12345678</ns0:Id></ns0:Action></ns0:ListOfLotusActionImport></LotusActionImport_Input></S:Body></S:Envelope>
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Security token does not send to Server

David BRASSELY
Administrator
This post has NOT been accepted by the mailing list yet.
Can you explain exactly what is wrong with :

<?xml version='1.0' encoding='UTF-8'?><S:Envelope xmlns:S="http://schemas.xmlsoap.org/soap/envelope/" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:xs="http://www.w3.org/2001/XMLSchema"><S:Header><wsse:Security S:mustUnderstand="1"><wsse:UsernameToken xmlns:ns14="http://docs.oasis-open.org/ws-sx/ws-secureconversation/200512" xmlns:ns13="http://www.w3.org/2003/05/soap-envelope" wsu:Id="uuid_9dba93b2-8957-483e-9f8e-e6836ef4d5c4"><wsse:Username>sadmin</wsse:Username><wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">nthhjhbcn3110</wsse:Password></wsse:UsernameToken></wsse:Security></S:Header><S:Body><LotusActionImport_Input xmlns:msgns="http://siebel.com/CustomUI" xmlns="http://siebel.com/CustomUI"><ns0:ListOfLotusActionImport xmlns:ns0="http://www.siebel.com/xml/Opportunity%20Export"><ns0:Action><ns0:Id>12345678</ns0:Id></ns0:Action></ns0:ListOfLotusActionImport></LotusActionImport_Input></S:Body></S:Envelope>

?
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Security token does not send to Server

stanbel
This post has NOT been accepted by the mailing list yet.
Oracle Siebel  CRM says:

<?xml version="1.0" encoding="UTF-8"?><SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"><SOAP-ENV:Body><SOAP-ENV:Fault><faultcode>SOAP-ENV:Server</faultcode><faultstring>Active web service with operation 'http://siebel.com/CustomUI:LotusActionImport_Input'  is missing.(SBL-EAI-04313)</faultstring><detail><siebelf:siebdetail xmlns:siebelf="http://www.siebel.com/ws/fault"><siebelf:logfilename>EAIObjMgr_rus_0037_38797337.log</siebelf:logfilename><siebelf:errorstack><siebelf:error><siebelf:errorcode>SBL-EAI-04313</siebelf:errorcode><siebelf:errorsymbol>IDS_EAI_WS_OP_NOT_FOUND</siebelf:errorsymbol><siebelf:errormsg>Active web service with operation 'http://siebel.com/CustomUI:LotusActionImport_Input' is missing.(SBL-EAI-04313)</siebelf:errormsg></siebelf:error></siebelf:errorstack></siebelf:siebdetail></detail></SOAP-ENV:Fault></SOAP-ENV:Body></SOAP-ENV:Envelope>
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Security token does not send to Server

David BRASSELY
Administrator
This post has NOT been accepted by the mailing list yet.
So, it's not a security issue....
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Security token does not send to Server

stanbel
This post has NOT been accepted by the mailing list yet.
Yes, Security issue is a "cached" usernames and passwords
Loading...