on 08-19-2009 9:48 PM
Hello,
I configured security for a custom web service using [this |https://www.sdn.sap.com/irj/scn/index?rid=/library/uuid/e08627de-9816-2a10-02b7-cbd60f7e4b2c&overridelayout=true]. I configured section
3.2 Configuring Document Authentication
Basic (Username/Password)
How should I go about testing this. I tried using Web Service Navigator, I get this error:
00118565098B00220000011400001D8C00047182FEC71535 : Authentication using a wsse:Username token failed. The error was com.sap.security.core.ws.wss.NoSecurityHeaderException No wsse:Security header has been defined for role soap:finalActor. Please verify the policy configuration..
Hi srinivas,
1. For each operation in the Web service, select the WS Security template for request and response from the list in the SAP Netweaver Developer Studio. A WS Security Template describes the security (i.e. XML Signature) used to protect the message.
2. For each of the used WS Security templates specified at design time, a profile with runtime configuration settings, such as.509 certificate data, is required.
3. After creating the WS Security profiles, the profiles need to be assigned to the operations. One profile may be assigned to multiple operations - that is, when the same certificate is to be used for an XML Signature, or different profiles of the same template are used for operations with different XML Signatures.
Regards,
Sunaina Reddy T
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Sunaina,
Thanks for your detailed explanation. The fact is, I have already configured security using "Document Authentication
Basic (Username/Password)".
The regular testing via "Web Service Navigator" and "Enterprise Portal Web Service Checker (in NWDS) ", won't work, as it gives me an error:
00118565098B00220000011400001D8C00047182FEC71535 : Authentication using a wsse:Username token failed. The error was com.sap.security.core.ws.wss.NoSecurityHeaderException No wsse:Security header has been defined for role soap:finalActor. Please verify the policy configuration..
Is there a wiki page on how to consume secured web service in java (like a simple java class) ?
Thanks
Srinivas
Hi
ITs look like an configuration issue. There are two way for doing security for SOAP: either based on the transport (i.e. HTTP over SSL) or by protecting the document itself using XML Signature and XML Encryption.
[Use this web service Security|http://help.sap.com/saphelp_nw04/helpdata/en/50/a5d13f83a14d21e10000000a1550b0/frameset.htm]
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
82 | |
10 | |
10 | |
9 | |
6 | |
6 | |
5 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.