Hello all,
I'm setting up some proof of concept for a big migration of BPM 10g projects to BPM 12c. One of the old project had a direct webservice invocation from BPM and now I should try to realize the same but using the new version. The service itself was changed in 12c and now it requires WSUsernameToken. I tried in several ways but there is something I'm missing in the implementation because it seems impossible to me to set up the right security header.
I should use a credential map or something like that but since this is a simple demonstration and I do really hope to avoid this direct integration and go for a decoupled invocation, I'd like to use the simplest (even hardcoded) way to invoke that service.
Using SOAPUI I was able to successfully set the SOAP header like this:
<soapenv:Header>
<wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
<wsse:UsernameToken wsu:Id="UsernameToken-1" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
<wsse:Username>dev_slt_soapui_user_test</wsse:Username>
<wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">xxx123</wsse:Password>
</wsse:UsernameToken>
</wsse:Security>
</soapenv:Header>
But if I try to set this header from the BPM process I am unable to do that in any way. I tried to set it into the message headers or using the WS-Policy configuration in the composite. I also tried to set up the service properties but I think I didn't got the correct properties.
Regardless of my attempts, that could even be all wrong, can anyone help me with this?
In a single line: I need to set a service invocation activity inside my BPM process that calls a web service that requires the UsernameToken authentication.
Thank you very much for any help you can give me.
G.