GWWS Messages 1200-1299
|
|
1201
Security Error: Username/password pair mismatch in HTTP header and SOAP request header.
Description
Username/password can be specified in both HTTP basic authentication and WS-Security UsernameToken authentication. This error message is issued if the username/password pair mismatch for these two authentication modes.
Action
Make sure the username/password pair the same if they are specified for both HTTP basic authentication and WS-Security UsernameToken authentication.
1202
Security Error: Failed to acquire security credential from SOAP request.
Description
The SOAP request contains WS-Security header, but GWWS failed to retrieve the security credential from the request.
Action
Check if the SOAP request conform to the standard format.
1203
Security Error: Failed to acquire security credential from SOAP request (errcode = value).
Description
The SOAP request contains WS-Security header, but GWWS failed to retrieve the security credential from the request.
Action
Check if the SOAP request conform to the standard format.
1205
Security Error: SOAP request carry Username token forbidden by security policy.
Description
A SOAP request arrived violated the WS-Security policy constraints of the web service. WS-Security policy explicitly declare not to send UsernameToken in the SOAP request, but the request carry the Username token.
Action
Send SOAP request that conforms to the WS-Security policy.
1206
Security Error: SOAP request carry X.509 token forbidden by security policy.
Description
A SOAP request arrived violated the WS-Security policy constraints of the web service. WS-Security policy explicitly declare not to send X.509 token in the SOAP request, but the request carry the X.509 token.
Action
Send SOAP request that conforms to the WS-Security policy.
1207
Security Error: SOAP request missing Username token required by security policy.
Description
A SOAP request arrived violated the WS-Security policy constraints of the web service. WS-Security policy require the SOAP request to carry Username token for authentication, but the request does not take the token.
Action
Send SOAP request that conforms to the WS-Security policy.
1208
Security Error: SOAP request missing Username/password-digest token required by security policy.
Description
A SOAP request arrived violated the WS-Security policy constraints of the web service. WS-Security policy require the SOAP request to carry Username/Password-Digest token for authentication, but the request does not take the token.
Action
Send SOAP request that conforms to the WS-Security policy.
1209
Security Error: SOAP request missing X.509 token required by security policy.
Description
A SOAP request arrived violated the WS-Security policy constraints of the web service. WS-Security policy require the SOAP request to carry X.509 token for authentication, but the request does not take the token.
Action
Send SOAP request that conforms to the WS-Security policy.
1210
Security Error: SOAP request does not sign the parts designated by security policy.
Description
A SOAP request arrived violated the WS-Security policy constraints of the web service. WS-Security policy require the SOAP request to be signed on specific parts, but the received request does not.
Action
Send SOAP request that conforms to the WS-Security policy.
1211
Security Error: Failed to map X.509 token to Tuxedo user for ACL check.
Description
If Tuxedo domain security attribute is configured to ACL or MANDATORY_ACL, and the inbound SOAP request carry only X.509 token, GWWS will invoke the credential mapping plugin to map the X.509 token to Tuxedo user. SALT provide a default implementation to map X.509 certificate common name to Tuxedo user name. Customers can implement their own plugin. The error message is issued when the plugin return failure in performing the mapping.
Action
Examine the X.509 token to Tuxedo User credential mapping plugin failure.
1212
Security Error: User 'user-name' mapped from X.509 certificate is not a valid Tuxedo user.
Description
If Tuxedo domain security attribute is configured to ACL or MANDATORY_ACL, and the inbound SOAP request carry only X.509 token, GWWS will invoke the credential mapping plugin to map the X.509 token to Tuxedo user. SALT provide a default implementation to map X.509 certificate common name to Tuxedo user name. Customers can implement their own plugin. The error message is issued when themapped user is not a valid Tuxedo user.
Action
Check if the credential mapping plugin correctly map the distinguished name of the X.509 certificate to a valid Tuxedo user.
1215
Security Error: Security policy has been violated.
Description
A SOAP request arrived violated the WS-Security policy constraints of the web service.
Action
Send SOAP request that conforms to the WS-Security policy.
1240
ERROR: Failed to open trusted certificate file file-path.
Description
This message is issued when GWWS failed to load the trusted certificate file at file-path.
Action
Check if the file exist; If the file exist, check if GWWS has the privilege to access the file.
1241
ERROR: PEM file file-name syntax error [ln lineno], expect 'BEGIN' tag instead of 'END' tag.
Description
The certificate file in PEM format is not correctly constructed. A certificate data body should be enclosed by "-----BEGIN CERTIFICATE-----" and "-----END CERTIFICATE-----" tags.
Action
Check if the certificate file is in correct format.
1242
ERROR: PEM file file-name [ln lineno, col column]: character is not Base64 character.
Description
A non-base64 character is found when GWWS is loading the certificate. The certificate data should include only base64 characters.
Action
Create correct certificates.
1243
ERROR: PEM file file-name [ln lineno]: The certificate is too big ( > 128KB ).
Description
GWWS detects the size of the loaded certificate is large than 128KB. GWWS rejects the certificate.
Action
Check if the certificate file is in correct PEM format.
1244
ERROR: PEM file file-name [ln lineno]: sytax error.
Description
GWWS detects syntax error in the certificate file when loading the file into memory.
Action
Check if the certificate file is in correct PEM format.
1245
ERROR: Unsupported certificate (internal error code error-code).
Description
The trusted certificate or files in certifcate path include certificates which are not supported by SALT. SALT support RSA and DSA X.509 certificates.
Action
Check if the certificate is a valid RSA or DSA X.509 certificate.
 |
 |
 |