WSM-00365 Error When Using Policy Oracle/http_jwt_token_service_policy With SOAP Proxy
(Doc ID 2434811.1)
Last updated on FEBRUARY 06, 2024
Applies to:
Oracle Web Services Manager - Version 12.2.1.2.0 and laterInformation in this document applies to any platform.
Symptoms
When using the policy http_jwt_token_service_policy with a SOAP service, an error is returned:
[<SERVER>] [WARNING] [] [oracle.wsm.resources.security] [tid: [ACTIVE].ExecuteThread: 'X' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: ] [ecid: <ECID>] [APP: ] [partition-name: DOMAIN] [tenant-name: GLOBAL] [FlowId: <FLOWID>] [oracle.wsm.policy.name: oracle/http_jwt_token_service_policy] oracle.wsm.security.SecurityException: WSM-00365 : JWT token issuer - "<ISSUER>" is not trusted. Configured trusted issuers are "[www.oracle.com]"[[
oracle.wsm.security.SecurityException: WSM-00365 : JWT token issuer - "<ISSUER>" is not trusted. Configured trusted issuers are "[www.oracle.com]"
at oracle.wsm.security.policy.scenario.processor.HttpJwtProcessor.verify(HttpJwtProcessor.java:428)
at oracle.wsm.security.policy.scenario.executor.HttpJwtSecurityScenarioExecutor.authenticate(HttpJwtSecurityScenarioExecutor.java:404)
[<SERVER>] [NOTIFICATION] [WSM-00327] [oracle.wsm.resources.security] [tid: [ACTIVE].ExecuteThread: 'X' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: ] [ecid: <ECID>] [APP: ] [partition-name: DOMAIN] [tenant-name: GLOBAL] [FlowId: <FLOW ID>] [oracle.wsm.policy.name: oracle/http_jwt_token_service_policy] Incoming request did not have a valid authentication token. Service will send a 401 Challenge in response to the client with WWW-Authenticate header.
It is necessary to overcome this error in order for the JWT service policy to function correctly.
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Cause |
| Solution |