Hello,
I have enabled OSTS with OAM by following the below URL
OAM integration with Secure Token Services (STS) | Identity and Access Management
I am getting below error while sending request to OSTS URL (http://<host>:<port>/sts/wss11user)
from the log it seems that the security subject is set anonymous
Client side policies: [oracle/wss11_username_token_with_message_protection_client_policy]; Security Subject: anonymous
[oracle.wsm.resources.enforcement] [tid: [ACTIVE].ExecuteThread: '12' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 89c49ddfb868953d:-7d50b622:144253e5526:-8000-0000000000000562,0] [SRC_CLASS: oracle.wsm.common.logging.WsmMessageLogger] [APP: HelloWorldHOKClient] [SRC_METHOD: logSevere] [[
oracle.wsm.common.sdk.WSMException: GenericFault : generic error
at oracle.wsm.policyengine.impl.runtime.WSPolicyRuntimeExecutor.executeSimpleAssertion(WSPolicyRuntimeExecutor.java:677)
at oracle.wsm.policyengine.impl.runtime.WSPolicyRuntimeExecutor.executeAndAssertion(WSPolicyRuntimeExecutor.java:346)
at oracle.wsm.policyengine.impl.runtime.WSPolicyRuntimeExecutor.execute(WSPolicyRuntimeExecutor.java:294)
at oracle.wsm.policyengine.impl.PolicyExecutionEngine.execute(PolicyExecutionEngine.java:102)
at oracle.wsm.agent.WSMAgent.processCommon(WSMAgent.java:1001)
I do set request context explicitly from web client side as below
| | requestContext.put(SecurityConstants.ConfigOverride.CO_ON_BEHALF_OF, |
| | "true"); |
| | requestContext.put(SecurityConstants.ConfigOverride.CO_STS_AUTH_USER_CSF_KEY, |
| | "test-user-csf-key"); |
| | requestContext.put(SecurityConstants.ConfigOverride.CO_STS_AUTH_ON_BEHALF_OF_CSF_KEY, |
| | "test-obouser-csf-key"); |
| | requestContext.put(SecurityConstants.ConfigOverride.CO_STS_KEYSTORE_RECIPIENT_ALIAS, |
| | "osts-trustcacerts"); |
| | requestContext.put(SecurityConstants.ConfigOverride.CO_IGNORE_IDENTITY_WSDL, |
| | "true"); I appreciate any pointer/direction on resolving this. Thank you! |