Issue: 

We are trying to setup OAUTH Partnership with Google and Windows Live as the OAUTH Authorization server using this setup, but receiving the following errors:

When trying to access the OAUTH Partnership using the following URL (http://abc.ca.com/affwebservices/public/oauthtokenconsumer?AuthzServerID=Google), we receive the following error on the browser:

HTTP Status 403 - Request Forbidden. Transaction ID: 1711d0d1-8dabc518-86871e25-9f3f46d2-db2f3fee-bcd failed.

Additionally, we are receiving the below errors in FWSTraceLogs and Policy Server Trace logs respectively.

FWSTrace:

[11/22/2015][05:18:29][4176][7692][5943d488-997e73ef-283abbf0-0a173c11-dcf53006-8][OAuthTunnelClient][getAuthzServerByID][Exception caught in class OAuthTunnelClient, method getAuthzServerByID: java.lang.IllegalArgumentException: "Cannot parse bytes to a ProviderDataResponseData"]

Policy Server Trace Log:

[11/22/2015][00:18:29.835][00:18:29][7560][7408][CServer.cpp:6364][CServer::Tunnel][][][][][][][][][][][][][][][][][][][][][Status: Tunnel error: service 'smjavaapi', function 'JavaTunnelService'. java.lang.ClassNotFoundException: com.ca.federation.tunnel.oauth.OAuthAuthzServerByIDTunnelService]

Environment:  

Policy server: R12.52 SP01 CR01

SPS: R12.52 SP01 CR01

Cause: 

The error clearly indicates that the OAuthAuthzServerByIDTunnelService class does not exist in the Fedserver Jar file. If the fedserver jar file which is present in your policy server is not having the tunnel service class which causes this error.

Resolution:

Please update the Fedserver Jar file with tunnel service class and restart the policy server.