AuthenticationFailure wheninvoking a BPM Process via SOAPafter installing BW HF 008 which includes the fix forBW-15757.
Article ID: KB0089935
Updated On:
| Products | Versions |
|---|---|
| TIBCO ActiveMatrix BusinessWorks | - |
| Not Applicable | - |
Description
After installing BW 5.11 HF 008, which was suppose to fix an issue with the attribute "Encoding Type", a failure is seen when invoking a BPM Process via SOAP.
BW-15757 - The attribute "Encoding Type" was missing from the nonce element when a request was sent through a SOAP Request Reply using the security type Username Token. A property has been introduced for this. Set the property java.property.com.tibco.security.wss4j.NO_UT_NONCE_ENCODING=true. The default value of this property is "false".
Symptoms:
The user will see the following error on the BPM side when setting this property to "true".
com.tibco.governance.pa.action.security.SecurityException: Internal error in login; check logs org.apache.ws.security.WSSecurityException: An invalid security token was provided (An error happened processing a Username Token).
at com.tibco.governance.pa.action.wss.WssProcessorConnection.processSecurityHeader(WssProcessorConnection.java:229)........
........
........
Cause:
The property java.property.com.tibco.security.wss4j.NO_UT_NONCE_ENCODING setting in the .tra file is incorrect. Remove it from the tra file. The readme file for hot fix 008 does not describe this property clearly so the user may be confused by the description below:
The attribute "Encoding Type" was missing from the nonce element when a request was sent through SOAP Request Reply using the security type Username Token. A property has been introduced for this. Set the property
java.property.com.tibco.security.wss4j.NO_UT_NONCE_ENCODING=true . The default value of this property is "false".
Issue/Introduction
Resolution
Additional Information
Feedback
