Error calling WebCenter Spaces APIs: InvalidSecurityToken FAULT MESSAGE: SAML assertion issuer name is invalid (Doc ID 1294404.1)

Last updated on MARCH 09, 2017

Applies to:

Oracle WebCenter Portal - Version 11.1.1.3.0 and later
Information in this document applies to any platform.
Checked for relevance on 20-Jan-2015

Symptoms


Unable to call the WebCenter APIs from a custom WebCenter application.

The WebCenter Spaces log reports the following errors:

[2010-12-11T02:07:55.286-06:00] [WLS_Spaces] [ERROR] [WSM-00004]
[oracle.wsm.resources.security] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: anonymous] [ecid:0000InKU6IvB_6fplW5EiZ1D0n0N000008,0:2] [WEBSERVICE_PORT.name:SpacesWebServiceSoapHttpPort] [APP: webcenter] [J2EE_MODULE.name:webcenter] [WEBSERVICE.name: SpacesWebService] [J2EE_APP.name: webcenter]
[arg: FAULT CODE: InvalidSecurityToken FAULT MESSAGE: SAML assertion issuer name is invalid.] WS-Security Exception : FAULT CODE: InvalidSecurityToken FAULT MESSAGE: SAML assertion issuer name is invalid.

[2010-12-11T02:07:55.286-06:00] [WLS_Spaces] [ERROR] [WSM-00006]
[oracle.wsm.resources.security] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: anonymous] [ecid:0000InKU6IvB_6fplW5EiZ1D0n0N000008,0:2] [WEBSERVICE_PORT.name:SpacesWebServiceSoapHttpPort] [APP: webcenter] [J2EE_MODULE.name:webcenter] [WEBSERVICE.name: SpacesWebService] [J2EE_APP.name: webcenter]
[arg: oracle.wsm.security.SecurityException: WSM-00008 : Web service authentication failed.] Error in receiving the request:oracle.wsm.security.SecurityException: WSM-00008 : Web service authentication failed..

[2010-12-11T02:07:55.301-06:00] [WLS_Spaces] [ERROR] [WSM-07607]
[oracle.wsm.resources.enforcement] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: anonymous] [ecid:0000InKU6IvB_6fplW5EiZ1D0n0N000008,0:2] [WEBSERVICE_PORT.name:SpacesWebServiceSoapHttpPort] [APP: webcenter] [J2EE_MODULE.name:webcenter] [WEBSERVICE.name: SpacesWebService] [J2EE_APP.name: webcenter]
[arg:
{http://schemas.oracle.com/ws/2006/01/securitypolicy}wss10-saml-with-certificates]
[arg:
oracle.wsm.security.policy.scenario.executor.Wss10SamlWithCertsScenarioExecutor]
Failure in execution of assertion
{http://schemas.oracle.com/ws/2006/01/securitypolicy}wss10-saml-with-certificates
executor class
oracle.wsm.security.policy.scenario.executor.Wss10SamlWithCertsScenarioExecutor.

[2010-12-11T02:07:55.301-06:00] [WLS_Spaces] [ERROR] [WSM-07602]
[oracle.wsm.resources.enforcement] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: anonymous] [ecid:0000InKU6IvB_6fplW5EiZ1D0n0N000008,0:2] [WEBSERVICE_PORT.name:SpacesWebServiceSoapHttpPort] [APP: webcenter] [J2EE_MODULE.name:webcenter] [WEBSERVICE.name: SpacesWebService] [J2EE_APP.name: webcenter]
Failure in WS-Policy Execution due to exception.

[2010-12-11T02:07:55.317-06:00] [WLS_Spaces] [ERROR] [WSM-07501]
[oracle.wsm.resources.enforcement] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: anonymous] [ecid:0000InKU6IvB_6fplW5EiZ1D0n0N000008,0:2] [WEBSERVICE_PORT.name:SpacesWebServiceSoapHttpPort] [APP: webcenter] [J2EE_MODULE.name:webcenter] [WEBSERVICE.name: SpacesWebService] [J2EE_APP.name: webcenter]
[arg: security] [arg: agent.function.service] [arg: webcenter] [arg: null]
[arg: SpacesWebService] [arg:
oracle/wss10_saml_token_with_message_protection_service_policy] [arg: 1]
[arg:
{http://schemas.oracle.com/ws/2006/01/securitypolicy}wss10-saml-with-certificates]
Failure in Oracle WSM Agent processRequest, category=security,
function=agent.function.service, application=webcenter, composite=null,
modelObj=SpacesWebService,
policy=oracle/wss10_saml_token_with_message_protection_service_policy,
policyVersion=1,
assertionName={http://schemas.oracle.com/ws/2006/01/securitypolicy}wss10-saml-with-certificates.


[2010-12-11T02:07:55.379-06:00] [WLS_Spaces] [ERROR] [OWS-04115]
[oracle.webservices.service] [tid: [ACTIVE].ExecuteThread: '1' for queue:'weblogic.kernel.Default (self-tuning)'] [userId: anonymous] [ecid:0000InKU6IvB_6fplW5EiZ1D0n0N000008,0:2] [APP: webcenter]
[arg:{http://oracle.webcenter.spaces.internal.view.ws/}SpacesWebServiceSoapHttpPort]
[arg: oracle.fabric.common.PolicyEnforcementException:
InvalidSecurityToken : The security token is not valid.] An error occurred for port:
{http://oracle.webcenter.spaces.internal.view.ws/}SpacesWebServiceSoapHttpPort:
oracle.fabric.common.PolicyEnforcementException: InvalidSecurityToken :
The security token is not valid..

 

Steps To Reproduce:

  1. Create a custom WebCenter application that call the WebCenter Spaces APIs.
  2. Securing the Connection Between the Application and WebCenter Spaces.
  3. Deploy and run the Custom WebCenter Application to call the WebCenter APIs.
    Here you should see the errors in the WebCenter Spaces log.

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms