[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: HTTP 1.1/500 Error with Different user profiles
Looks like a security issue. Do you need to authenticate or pass a
user/password?
xmlns:a="[6][1]http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss
-wss
ecurity-secext-1.0.xsd">a:InvalidSecurity</s:Value></s:Subcode></s:Code
><s:Reason><s:Text xml:lang="el-GR">An error occurred when verifying
security for the
message.</s:Text></s:Reason></s:Fault></s:Body></s:Envelope>
On Wed, Feb 6, 2013 at 1:54 PM, Vasilios Pierrakos
<[2]vpierrakos@xxxxxxxxx> wrote:
Thank you for the quick response. Below you may find the logs:
Correct:
HTTPAPI Ver 1.24 released 2012-01-23
OS/400 Ver V7R1M0
http_setauth(): entered
http_persist_open(): entered
http_long_ParseURL(): entered
DNS resolver retrans: 2
DNS resolver retry : 2
DNS resolver options: x'00000136'
DNS default domain: ***.**
DNS server found: **.**.**.**
DNS server found: **.**.**.**
https_init(): entered
--------------------------------------------------------------------
---
--------------
Dump of local-side certificate information:
--------------------------------------------------------------------
---
--------------
--------------------------------------------------------------------
---
--------------
Dump of server-side certificate information:
--------------------------------------------------------------------
---
--------------
Cert Validation Code = 0
-----BEGIN CERTIFICATE-----
****************************************
-----END CERTIFICATE-----
Serial Number: **:**:**:**:**:**:**:**:**:**:**:**:**:**:**:**
Common Name: **********************
Issuer CN: **********************
Version: 03
not before: 20120405174414
not after: 20291231230000
pub key alg: *.*.***.*******.*.*.*
Protocol Used: TLS Version 1
http_persist_post(): entered
http_persist_req(POST) entered.
http_long_ParseURL(): entered
do_oper(POST): entered
There are 0 cookies in the cache
POST
/**********************/**********************/*********************
*HT
TP/1.1
Host: **********************:****
User-Agent: http-api/1.24
Content-Type: application/soap+xml
SOAPAction: http://**********************/**********************/
Content-Length: 1627
Authorization: Basic **********************
senddoc(): entered
<here goes the XML>
recvresp(): entered
HTTP/1.1 200 OK
Content-Length: 1630
Content-Type: application/soap+xml; charset=utf-8
Server: Microsoft-IIS/7.5
X-Powered-By: [1][3]ASP.NET
Date: Wed, 06 Feb 2013 18:17:19 GMT
SetError() #13: HTTP/1.1 200 OK
recvresp(): end with 200
recvdoc parms: identity 1630
header_load_cookies() entered
recvdoc(): entered
SetError() #0:
<here goes the response XML>
http_close(): entered
With Error:
HTTPAPI Ver 1.24 released 2012-01-23
OS/400 Ver V7R1M0
http_setauth(): entered
http_persist_open(): entered
http_long_ParseURL(): entered
DNS resolver retrans: 2
DNS resolver retry : 2
DNS resolver options: x'00000136'
DNS default domain: ***.**
DNS server found: **.**.**.**
DNS server found: **.**.**.**
https_init(): entered
--------------------------------------------------------------------
---
--------------
Dump of local-side certificate information:
--------------------------------------------------------------------
---
--------------
--------------------------------------------------------------------
---
--------------
Dump of server-side certificate information:
--------------------------------------------------------------------
---
--------------
Cert Validation Code = 0
-----BEGIN CERTIFICATE-----
****************************************
-----END CERTIFICATE-----
Serial Number: **:**:**:**:**:**:**:**:**:**:**:**:**:**:**:**
Common Name: **********************
Issuer CN: **********************
Version: 03
not before: 20120405174414
not after: 20291231230000
pub key alg: *.*.***.*******.*.*.*
Protocol Used: TLS Version 1
http_persist_post(): entered
http_persist_req(POST) entered.
http_long_ParseURL(): entered
do_oper(POST): entered
There are 0 cookies in the cache
POST
/**********************/**********************/*********************
*HT
TP/1.1
Host: **********************:****
User-Agent: http-api/1.24
Content-Type: application/soap+xml
SOAPAction: http://**********************/**********************/
Content-Length: 1627
Authorization: Basic **********************
senddoc(): entered
<Here goes the XML>
recvresp(): entered
HTTP/1.1 500 Internal Server Error
Content-Length: 576
Content-Type: application/soap+xml; charset=utf-8
Server: Microsoft-IIS/7.5
X-Powered-By: [2][4]ASP.NET
Date: Wed, 06 Feb 2013 18:30:50 GMT
SetError() #13: HTTP/1.1 500 Internal Server Error
recvresp(): end with 500
recvdoc parms: identity 576
header_load_cookies() entered
recvdoc(): entered
SetError() #0:
<s:Envelope
xmlns:s="[3][5]http://www.w3.org/2003/05/soap-envelope";
xmlns:a="[4][6]http://www.w3.org/2005/08/addressing";><s:Header><a:Ac
tion
s:mustUnderstand="1">[5][7]http://www.w3.org/2005/08/addressing/soap
/fault
</a:Action></s:Header><s:Body><s:Fault><s:Code><s:Value>s:Sender</s:
Val
ue><s:Subcode><s:Value
xmlns:a="[6][8]http://docs.oasis-open.org/wss/2004/01/oasis-200401-w
ss-wss
ecurity-secext-1.0.xsd">a:InvalidSecurity</s:Value></s:Subcode></s:C
ode
><s:Reason><s:Text xml:lang="el-GR">An error occurred when
verifying
security for the
message.</s:Text></s:Reason></s:Fault></s:Body></s:Envelope>
SetError() #13: HTTP/1.1 500 Internal Server Error
http_close(): entered
Thank you in advance.
On 6 February 2013 20:15, Mike Krebs
<[7][9]mkrebs@xxxxxxxxxxxxxxxxxx>
wrote:
Not quite enough information as a 500 error is coming from the
server you are contacting and should not have a problem with the
local user.
Can you share the debug logs when it works and when it doesn't?
-----Original Message-----
From: [8][10]ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx
[mailto:[9][11]ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx] On Behalf Of
Vasilios
Pierrakos
Sent: Wednesday, February 06, 2013 10:29 AM
To: HTTPAPI and FTPAPI Projects
Subject: HTTP 1.1/500 Error with Different user profiles
Dear All,
I am experiencing a strange problem:
I get HTTP 1.1/ 500 error with one user and not with another. The
error
displayed in the Debug Log is that the security of the message
cannot
be
verified.
That's really strange since both users call the same RPG Program. I
have
checked the Certificates permissions, object permissions etc. The
user
that
successfully calls the service is *QSECOFR. The thing is that I even
tried
changing the user who gets the 500 error to *QSECOFR and nothing
happens......
Any help?
--------------------------------------------------------------------
---
This is the FTPAPI mailing list. To unsubscribe, please go to:
[10][12]http://www.scottklement.com/mailman/listinfo/ftpapi
--------------------------------------------------------------------
---
References
1. [13]http://ASP.NET/
2. [14]http://ASP.NET/
3. [15]http://www.w3.org/2003/05/soap-envelope
4. [16]http://www.w3.org/2005/08/addressing
5. [17]http://www.w3.org/2005/08/addressing/soap/fault
6.
[18]http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecuri
ty-secext-1.0.xsd
7. mailto:[19]mkrebs@xxxxxxxxxxxxxxxxxx
8. mailto:[20]ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx
9. mailto:[21]ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx
10. [22]http://www.scottklement.com/mailman/listinfo/ftpapi
--------------------------------------------------------------------
---
This is the FTPAPI mailing list. To unsubscribe, please go to:
[23]http://www.scottklement.com/mailman/listinfo/ftpapi
--------------------------------------------------------------------
---
References
1. http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wss
2. mailto:vpierrakos@xxxxxxxxx
3. http://ASP.NET/
4. http://ASP.NET/
5. http://www.w3.org/2003/05/soap-envelope
6. http://www.w3.org/2005/08/addressing
7. http://www.w3.org/2005/08/addressing/soap/fault
8. http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wss
9. mailto:mkrebs@xxxxxxxxxxxxxxxxxx
10. mailto:ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx
11. mailto:ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx
12. http://www.scottklement.com/mailman/listinfo/ftpapi
13. http://ASP.NET/
14. http://ASP.NET/
15. http://www.w3.org/2003/05/soap-envelope
16. http://www.w3.org/2005/08/addressing
17. http://www.w3.org/2005/08/addressing/soap/fault
18. http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd
19. mailto:mkrebs@xxxxxxxxxxxxxxxxxx
20. mailto:ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx
21. mailto:ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx
22. http://www.scottklement.com/mailman/listinfo/ftpapi
23. http://www.scottklement.com/mailman/listinfo/ftpapi
-----------------------------------------------------------------------
This is the FTPAPI mailing list. To unsubscribe, please go to:
http://www.scottklement.com/mailman/listinfo/ftpapi
-----------------------------------------------------------------------