So I now know that the createResourceAssociation was added to the wsdl
on IDM 4.

But the RMA works on a purely IDM 3.61/RBPM 3.7 system (whether it's
supported or not, the client has already licensed IDM 4 and they don't
have time to do the upgrade yet). So I was assuming that the API must be
there in 3.7...

Using soapUI I tried the createResourceAssociation and was able to
successfully do a role resource association on IDM 4. On RBPM 3.7 the
same call returns an error (see below).

So if RMA works, is it using some other method of performing
role-resource associations? If so, how can I do this in workflow or
policy? Or am I forced to force the client to upgrade?

thanx
Rob

Request:

<soapenv:Envelope
xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/"
xmlns:ser="http://www.novell.com/role/service">
<soapenv:Header/>
<soapenv:Body>
<ser:createResourceAssociationRequest>
<!--Optional:-->
<ser:resourceAssociation>
<ser:approvalOverride>false</ser:approvalOverride>
<ser:dynamicParameters>
<!--Zero or more repetitions:-->
<ser:dynamicparameter>
<ser:expression>false</ser:expression>
<ser:key>EntitlementParamKey</ser:key>
<ser:value>ACS</ser:value>
</ser:dynamicparameter>
</ser:dynamicParameters>
<ser:entityKey>?</ser:entityKey>
<ser:localizedDescriptions>
<!--Zero or more repetitions:-->
<ser:localizedvalue>
<ser:locale>en</ser:locale>
<ser:value>Default</ser:value>
</ser:localizedvalue>
</ser:localizedDescriptions>
<ser:resource>cn=Delegated
Administration,cn=ResourceDefs,cn=RoleConfig,cn=Ap pConfig,cn=RBAC-UserApplication,cn=IDM-IDVDriverSet,ou=idm,ou=services,o=acme</ser:resource>

<ser:role>cn=ACS-Gatekeepers,cn=ACS,cn=Level10,cn=RoleDefs,cn=RoleC onfig,cn=AppConfig,cn=RBAC-UserApplication,cn=IDM-IDVDriverSet,ou=idm,ou=services,o=acme</ser:role>

<ser:status>50</ser:status>
</ser:resourceAssociation>
</ser:createResourceAssociationRequest>
</soapenv:Body>
</soapenv:Envelope>

reply

<SOAP-ENV:Envelope
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:xsd="http://www.w3.org/2001/XMLSchema"
xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Header/>
<SOAP-ENV:Body>
<SOAP-ENV:Fault>
<faultcode>SOAP-ENV:Server</faultcode>
<faultstring>no serializer found for
"java.io.EOFException"</faultstring>
<detail>
<ns1:stackTrace xsi:type="ns1:stackTrace"
xmlns:ns1="http://www.novell.com/wssdk">
<ns1:dump
xsi:type="xsd:string">com.novell.soa.ws.binding.Ma rshalerNotFoundException:
no serializer found for "java.io.EOFException"
at
com.novell.soa.ws.impl.soap.LiteralEncodingStyle.w riteObject(LiteralEncodingStyle.java:414)
at
com.novell.soa.ws.impl.soap.ServerResponseImpl.wri teException(ServerResponseImpl.java:81)
at
com.novell.idm.nrf.soap.ws.role.IRemoteRole_Servic eSkeleton._invoke(IRemoteRole_ServiceSkeleton.java :1321)
at
com.novell.soa.ws.server.ServletSkeleton.invokeEnd Point(ServletSkeleton.java:208)
at
com.novell.soa.ws.impl.soap.MessageHandlerInvoker. invokeServerMessageHandlers(MessageHandlerInvoker. java:348)
at
com.novell.soa.ws.impl.soap.SOAPHandler.handleServ erRequest(SOAPHandler.java:84)
at
com.novell.soa.ws.server.ServletSkeleton.doPost(Se rvletSkeleton.java:317)
at javax.servlet.http.HttpServlet.service(HttpServlet .java:727)
at javax.servlet.http.HttpServlet.service(HttpServlet .java:820)
at
weblogic.servlet.internal.StubSecurityHelper$Servl etServiceAction.run(StubSecurityHelper.java:227)
at
weblogic.servlet.internal.StubSecurityHelper.invok eServlet(StubSecurityHelper.java:125)
at
weblogic.servlet.internal.ServletStubImpl.execute( ServletStubImpl.java:292)
at weblogic.servlet.internal.TailFilter.doFilter(Tail Filter.java:26)
at
weblogic.servlet.internal.FilterChainImpl.doFilter (FilterChainImpl.java:42)
at com.novell.common.auth.JAASFilter.doFilter(JAASFil ter.java:108)
at
weblogic.servlet.internal.FilterChainImpl.doFilter (FilterChainImpl.java:42)
at com.novell.common.auth.sso.SSOFilter.doFilter(SSOF ilter.java:91)
at com.novell.common.auth.sso.SAPFilter.doFilter(SAPF ilter.java:37)
at
weblogic.servlet.internal.FilterChainImpl.doFilter (FilterChainImpl.java:42)
at
com.novell.soa.common.i18n.BestLocaleServletFilter .doFilter(BestLocaleServletFilter.java:233)
at
weblogic.servlet.internal.FilterChainImpl.doFilter (FilterChainImpl.java:42)
at
weblogic.servlet.internal.WebAppServletContext$Ser vletInvocationAction.run(WebAppServletContext.java :3496)
at
weblogic.security.acl.internal.AuthenticatedSubjec t.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(Un known Source)
at
weblogic.servlet.internal.WebAppServletContext.sec uredExecute(WebAppServletContext.java:2180)
at
weblogic.servlet.internal.WebAppServletContext.exe cute(WebAppServletContext.java:2086)
at
weblogic.servlet.internal.ServletRequestImpl.run(S ervletRequestImpl.java:1406)
at weblogic.work.ExecuteThread.execute(ExecuteThread. java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java :173)</ns1:dump>
</ns1:stackTrace>
</detail>
</SOAP-ENV:Fault>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>


--
Robert Rawson
Subject Area Master - Identity and Access Management
------------------------------------------------------------------------
rrawson's Profile: http://forums.novell.com/member.php?userid=4898
View this thread: http://forums.novell.com/showthread.php?t=450586