Rest APIs Error | Invalid Token/Missing Token
(Doc ID 3004833.1)
Last updated on FEBRUARY 21, 2024
Applies to:
Oracle Communications Billing and Revenue Management - Version 12.0.0.8.0 and laterInformation in this document applies to any platform.
Goal
The Billing Care Web Services (BCWS) PODs are being upgraded with custom self signed Keystores and when trying to send a request with the authorization Token the APIs always respond with Invalid Token/Missing Token.
Steps:
1. Create a custom identity and custom trust Keystore in /oc-cn-op-job-helm-chart/billingcare/keystore/ with:
keytool -genkeypair -alias xxxxkey -keyalg RSA -sigalg SHA256withRSA -keysize 2048 -validity 10000 -storepass password -keypass privatepassword -keystore identityxxxx.jks
keytool -export -alias xxxxkey -file root_xxxx.cer -keystore identityxxxx.jks -storepass password
keytool -import -alias xxxxkey -file root_xxxx.cer -keystore trustxxxx.jks -storepass password -trustcacerts -noprompt
2. Import the Service Provider Certifcate into the trust Store
keytool -import -alias cert-browser -keystore trustxxxx.jks -file identity-oraclecloud-com_xxxx.pem
3. Update the override-values.yaml file in oc-cn-op-job-helm-chart with the required fields as in the attached files
4. Upgrade op-job-release helm
5. Update the override-values.yaml file in oc-cn-helm-chart with the required fields as in the attached files
6. Upgrade brmdev helm
7. Send a token request to the service provider
curl -i -H "Authorization: Basic MzI2NTdiMjljM2IzNGNhZWI4MDNkMGVmYTVlMWVlNDY6YmE3NTc3NzktYmU3Zi00NjI3LTkxZWItNDZlMGI0Y2U0ZTI3" -H "Content-Type: application/x-www-form-urlencoded;charset=UTF-8" --request POST https://idcs-df202a7dee614aabb98d338b8bcf9bad.identity.oraclecloud.com/oauth2/v1/token -d "grant_type=client_credentials&scope=urn:opc:idm:__myscopes__"
7. Send a request to the API with the token generated
curl -k -H "Authorization: Bearer " -H "Accept: application/json" -H "Content-Type: application/json" -X GET https://<IP_ADDRESS>:30443/bcws/webresources/v1.0/accounts/0.0.0.1+-account+1
Response: Invalid Token/Missing Token
The authentication is via Token, was configured a Service Provider in Oracle Cloud Infrastructure (OCI) trough Oracle Identity Cloud Service.
The return value is a json with the access token :
HTTP/2 200
date: Tue, 16 Jan 2024 22:48:57 GMT
content-type: application/json;charset=UTF-8
content-length: 2594
x-envoy-upstream-service-time: 49
cache-control: no-store
pragma: no-cache
x-oracle-dms-rid: 0:1
x-oracle-dms-ecid: C5E190CBDECB39394352F69429CFB1A8/F4Krt1QnS10000000
opc-request-id: C5E190CBDECB39394352F69429CFB1A8/F4Krt1QnS10000000
opc-total-items: 1
via: 1.1 net-idcs-config
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: deny
vary: origin
x-envoy-decorator-operation: webtier.idcs-data-plane.svc.cluster.local:8990/*
strict-transport-security: max-age=31536000; includeSubDomains always
{"access_token":"eyJ4NXQjUzI1NiI6IndkbnRnb0tBSUw5SWk0eklRaWVqRmxJSkNFUkVJVWViYlMzYWcyZnk5OVUiLCJ4NXQiOiI4SWRVVElkYjJ1cnh4ajRtVWxWekFVOHBYeTgiLCJraWQiOiJTSUdOSU5HX0tFWSIsImFsZyI6IlJTMjU2In0.eyJjbGllbnRfb2NpZCI6Im9jaWQxLmRvbWFpbmFwcC5vYzEuc2Etc2FvcGF1bG8tMS5hbWFhYWFhYWFxdHA1YmFhMm9tc2s1MnlhNXozZGtrc3RhZ2Zmb29sZW9waDV2eG10ZnF1cGR6cGFveGEiLCJzdWIiOiIzMjY1N2IyOWMzYjM0Y2FlYjgwM2QwZWZhNWUxZWU0NiIsInNpZGxlIjo0ODAsInVzZXIudGVuYW50Lm5hbWUiOiJpZGNzLWRmMjAyYTdkZWU2MTRhYWJiOThkMzM4YjhiY2Y5YmFkIiwiaXNzIjoiaHR0cHM6XC9cL2lkZW50aXR5Lm9yYWNsZWNsb3VkLmNvbVwvIiwiZG9tYWluX2hvbWUiOiJzYS1zYW9wYXVsby0xIiwiY2Ffb2NpZCI6Im9jaWQxLnRlbmFuY3kub2MxLi5hYWFhYWFhYWNzYmI3Y3VyYnRyYTdxMnlseW9lc2dkcWd2YTV6Mmg0MzZyN3R5bWxxZTJpYWRibWE2NXEiLCJjbGllbnRfaWQiOiIzMjY1N2IyOWMzYjM0Y2FlYjgwM2QwZWZhNWUxZWU0NiIsImRvbWFpbl9pZCI6Im9jaWQxLmRvbWFpbi5vYzEuLmFhYWFhYWFha3g2YnJmemJ4ZWx0amFtaWRyNzd4c3hjbDNxY2poY2szajR4bm5lb2I3aWhocXgzYjRlYSIsInN1Yl90eXBlIjoiY2xpZW50Iiwic2NvcGUiOiJ1cm46b3BjOmlkbTp0LnNlY3VyaXR5LmNsaWVudCB1cm46b3BjOmlkbTp0LmFwcHNlcnZpY2VzIHVybjpvcGM6aWRtOnQubmFtZWRhcHBhZG1pbiIsImNsaWVudF90ZW5hbnRuYW1lIjoiaWRjcy1kZjIwMmE3ZGVlNjE0YWFiYjk4ZDMzOGI4YmNmOWJhZCIsInJlZ2lvbl9uYW1lIjoic2Etc2FvcGF1bG8taWRjcy0xIiwiZXhwIjoxNzA1NDQ4OTM3LCJpYXQiOjE3MDU0NDUzMzcsImNsaWVudF9ndWlkIjoiMTYzMTQ0OTU1YjA2NDllMThiMDU3OTc0ZjMxMTk1YjAiLCJjbGllbnRfbmFtZSI6ImJjYXBpcyIsInRlbmFudCI6ImlkY3MtZGYyMDJhN2RlZTYxNGFhYmI5OGQzMzhiOGJjZjliYWQiLCJqdGkiOiJjZWFiMDk3MjQ3YTA0NTNmYmE0M2JkOTAzN2NmMDQ3YyIsImd0cCI6ImNjIiwib3BjIjpmYWxzZSwic3ViX21hcHBpbmdhdHRyIjoidXNlck5hbWUiLCJwcmltVGVuYW50Ijp0cnVlLCJ0b2tfdHlwZSI6IkFUIiwiY2FfZ3VpZCI6ImNhY2N0LTRlOWNhZDZiMTQxYzQ4ZWFhODNkNmIyYWRkMTVmZDhmIiwiYXVkIjpbInVybjpvcGM6bGJhYXM6bG9naWNhbGd1aWQ9aWRjcy1kZjIwMmE3ZGVlNjE0YWFiYjk4ZDMzOGI4YmNmOWJhZCIsImh0dHBzOlwvXC9pZGNzLWRmMjAyYTdkZWU2MTRhYWJiOThkMzM4YjhiY2Y5YmFkLmlkZW50aXR5Lm9yYWNsZWNsb3VkLmNvbSIsImh0dHBzOlwvXC9pZGNzLWRmMjAyYTdkZWU2MTRhYWJiOThkMzM4YjhiY2Y5YmFkLnNhLXNhb3BhdWxvLWlkY3MtMS5zZWN1cmUuaWRlbnRpdHkub3JhY2xlY2xvdWQuY29tIl0sImNhX25hbWUiOiJicm12dGFsIiwiZG9tYWluIjoiT3JhY2xlSWRlbnRpdHlDbG91ZFNlcnZpY2UiLCJjbGllbnRBcHBSb2xlcyI6WyJBdXRoZW50aWNhdGVkIENsaWVudCJdLCJ0ZW5hbnRfaXNzIjoiaHR0cHM6XC9cL2lkY3MtZGYyMDJhN2RlZTYxNGFhYmI5OGQzMzhiOGJjZjliYWQuaWRlbnRpdHkub3JhY2xlY2xvdWQuY29tOjQ0MyJ9.MsfqJFG7itow-q8ier0U1kEMSyPVoAkMfmmAZuZ7jDHMVi608jmXDs_SNNV1vWGsJx5TCsb97Hd6_xf3-QHd0Zzh6z3GERG77xeiqQk7qLUnAa7gzUC8s0bV550EKv9usQVXWTyqdQjgLnxVQ_B6scJTIiNI4A8-ibvvOy4Xm08JPeJ5mIV686U3FSdwgA92YjPmjZFSDCeWzSaSPas6fLpXDBDFuKWotxI45XhfkJRhd6HxA5CARk5qnVO4gEIRAACQ3DcjAJKu9PgGiPfbKFBLQPidUISIfQXtiPOcguKSSO9So_A0jn_6Thde0ZZZ3CQqjXnHuhktPGBNrpOOHQ","token_type":"Bearer","expires_in":3600}
Solution
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Goal |
| Solution |
| References |