2 Replies Latest reply: Oct 7, 2013 10:37 AM by 978479 RSS

    WCSecurityUtils issueTrustServiceSecurityToken Problem

    userfmw

      For restful call to Spaces, we are calling WCSecurityUtils.issueTrustServiceSecurityToken.. which is returning below error. We were able to generate token by passing id password to base64encoder. We followed steps in below doc to setup WS-Security, this is probably required to setup keystore in domain to complete restful call, but issueToken call probably should not fail. Thanks for any help.

       

      [2013-09-11T01:42:27.890-04:00] [WC_CustomPortal] [WARNING] [] [oracle.webcenter.security.common.SecurityHelper] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: weblogic] [ecid: 0000K4BYcTcB1F5_zPw0yW1IC06u00000J,0] [APP: TestSpacesRestApp] [DSID: 0000K4BY^bIB1F5_zPw0yW1IC06u00000A] Failed to issue token.[[

      oracle.security.jps.service.trust.token.TokenException: oracle.security.jps.internal.trust.token.TokenProviderException: Token issue operation failed.

          at oracle.security.jps.internal.trust.token.TokenManagerImpl.issueToken(TokenManagerImpl.java:166)

          at oracle.webcenter.security.common.SecurityHelper$15.run(SecurityHelper.java:2227)

          at oracle.webcenter.security.common.SecurityHelper$15.run(SecurityHelper.java:2224)

          at java.security.AccessController.doPrivileged(Native Method)

          at oracle.webcenter.security.common.SecurityHelper.issueSecurityToken(SecurityHelper.java:2222)

          at oracle.webcenter.security.common.SecurityHelper.issueEncodedSecurityToken(SecurityHelper.java:2307)

          at oracle.webcenter.security.common.WCSecurityUtility.issueTrustServiceSecurityToken(WCSecurityUtility.java:84)

       

      Caused by: oracle.security.jps.internal.trust.token.TokenProviderException: Token issue operation failed.

          at oracle.security.jps.internal.trust.provider.embedded.EmbeddedProviderImpl.issue(EmbeddedProviderImpl.java:180)

          at oracle.security.jps.internal.trust.token.TokenManagerImpl.issueToken(TokenManagerImpl.java:161)

          ... 154 more

      Caused by: oracle.security.jps.internal.trust.token.TokenProviderException: Token issue operation failed.

          at oracle.security.jps.internal.trust.provider.embedded.SAML2Impl.issueToken(SAML2Impl.java:281)

          at oracle.security.jps.internal.trust.provider.embedded.EmbeddedProviderImpl.issue(EmbeddedProviderImpl.java:158)

          ... 155 more

      Caused by: oracle.security.jps.internal.trust.token.TokenProviderException: Setting subject conformation method failed.

          at oracle.security.jps.internal.trust.provider.embedded.SAML2Impl.setBearerConfirmationMethod(SAML2Impl.java:519)

          at oracle.security.jps.internal.trust.provider.embedded.SAML2Impl.issueToken(SAML2Impl.java:265)

          ... 156 more

      Caused by: oracle.security.jps.internal.trust.token.TokenProviderException: Signing private key or certificate not available

          at oracle.security.jps.internal.trust.provider.embedded.SAML2Impl.processSigning(SAML2Impl.java:617)

          at oracle.security.jps.internal.trust.provider.embedded.SAML2Impl.setBearerConfirmationMethod(SAML2Impl.java:516)

          ... 157 more

       

      I didn't yet set Trust service as identity asserter in Security realm (because not mentioned in doc), is this the problem?

       

      We are on WC PS7 and followed "Configuring WS-Security" using simple topology in Admin guide documentation.