Question
prashanth ponugoti · Jan 11

SOAP BUSINESS Service giving security exception in ensemble

Hi Developers,

I have created SOAP webservice , did not mentioned any security. Configured business service.

When I try to invoke from soaup UI, getting below error.

<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:s="http://www.w3.org/2001/XMLSchema" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secex...">
   <SOAP-ENV:Body>
      <SOAP-ENV:Fault>
         <faultcode>wsse:FailedAuthentication</faultcode>
         <faultstring>The security token could not be authenticated or authorized</faultstring>
         <detail/>
      </SOAP-ENV:Fault>
   </SOAP-ENV:Body>
</SOAP-ENV:Envelope>

I want to expose SOAP service , with out security, could you please help me.

Product version: IRIS 2021.1
00
2 0 9 75
Log in or sign up to continue

Do you have the "Unauthenticated" check box checked in the Web application?

I did not create any web application. Just I have created cls to act as soap service and created business service using that  cls. 

Regardless of whether you created it, there must be one for your SOAP service. What URL are you using to access it?

Check the /csp/healthshare/prashanthns web application.

Thanks David for your immediate response. Could you please guide me to resolve this issue.

Just i need to create sample soap in ensemble production.

Below  is the  configuration for webapplication , still iam getting below error while testing from soapui.

<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:s="http://www.w3.org/2001/XMLSchema" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secex...">
   <SOAP-ENV:Body>
      <SOAP-ENV:Fault>
         <faultcode>wsse:FailedAuthentication</faultcode>
         <faultstring>The security token could not be authenticated or authorized</faultstring>
         <detail/>
      </SOAP-ENV:Fault>
   </SOAP-ENV:Body>
</SOAP-ENV:Envelope>

Look at the "Allowed Authentication Methods". You are only allowing "Password". It sounds like you want to allow "Unauthenticated".

yes,  i have  checked  "Unauthenticated" also ,  still i am getting same issue.

Thanks David,

can I create new webapplication insted of csp?

Could you tell me what options i need to select new webapplication? which should not ask authentication

If you need more help, I suggest you contact the WRC.