It's not a secret anymore!
The moose likes Web Services and the fly likes Secure Web Service Client  Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of REST with Spring (video course) this week in the Spring forum!
JavaRanch » Java Forums » Java » Web Services
Bookmark "Secure Web Service Client  " Watch "Secure Web Service Client  " New topic

Secure Web Service Client

Oha Moha

Joined: Aug 09, 2010
Posts: 2
I try to create a Web Service Proxy(client) using JDeveloper. The goal is to connect to a secured external web service.
The WSDL provided by the web service doesn't contain any information about the security policy.
I decided to give it a try, so from the "Client Policy Configuration" page from "Proxy Editor" window I choose "oracle/wss_username_token_client_policy".
The problem is that I didn't find a way to set the username and the password. So I receive a error like that:

SEVERE: WSM-00078 The configuration of the credentials in the policy is incorrect.
SEVERE: WSM-00016 The username/password credentials or certificates null are missing.
SEVERE: WSM-00005 Error in sending the request.
SEVERE: WSM-07607 Failure in execution of assertion {}wss-username-token executor class
SEVERE: WSM-07602 Failure in WS-Policy Execution due to exception.
SEVERE: WSM-07501 Failure in Oracle WSM Agent processRequest, category=security, function=agent.function.client, application=null, composite=null, modelObj=EVPQuery, policy=oracle/wss_username_token_client_policy, policyVersion=null, assertionName={}wss-username-token.
oracle.wsm.common.sdk.WSMException: WSM-00015 : The user name is missing.
at oracle.wsm.policyengine.impl.runtime.AssertionExecutor.execute(
at oracle.wsm.policyengine.impl.runtime.WSPolicyRuntimeExecutor.executeSimpleAssertion(
at oracle.wsm.policyengine.impl.runtime.WSPolicyRuntimeExecutor.executeAndAssertion(WSPolicyRuntime

The code is something like this:

private static EVPQuery_Service eVPQuery_Service;

public static void main(String [] args)
eVPQuery_Service = new EVPQuery_Service();
SecurityPolicyFeature[] securityFeatures =
new SecurityPolicyFeature[] { new SecurityPolicyFeature("oracle/wss_username_token_client_policy") };
EVPQuery eVPQuery = eVPQuery_Service.getEVPQuery(securityFeatures);
EVPPersonQueryCriteria crit=new EVPPersonQueryCriteria();
EVPPersonQueryResult res;
// Add your code to call the desired methods.
try {
res = eVPQuery.queryPerson(crit);
} catch (SableEVPQueryException e) {

I am looking for a solution to pass the username and the password to the web service.
I am here after six hours of searching, so if my question is stupid, please forgive me.

Thank you
Ivan Krizsan
Ranch Hand

Joined: Oct 04, 2006
Posts: 2198
Rather than trying to guess what security policy is used by the service, I suggest asking the developers of the web service.
This will save you a lot of time and effort, as well as make any questions regarding this issue much easier to answer.

By the way, this posting looks somewhat familiar:
Best wishes!

My free books and tutorials:
I agree. Here's the link:
subject: Secure Web Service Client
jQuery in Action, 3rd edition