OAUTH Partnership Error - Exception caught in class OAuthTunnelClient

book

Article ID: 37301

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) AXIOMATICS POLICY SERVER CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

Issue: 

We are trying to setup OAUTH Partnership with Google and Windows Live as the OAUTH Authorization server using this setup, but receiving the following errors:

When trying to access the OAUTH Partnership using the following URL (http://abc.ca.com/affwebservices/public/oauthtokenconsumer?AuthzServerID=Google), we receive the following error on the browser:

HTTP Status 403 - Request Forbidden. Transaction ID: 1711d0d1-8dabc518-86871e25-9f3f46d2-db2f3fee-bcd failed.

Additionally, we are receiving the below errors in FWSTraceLogs and Policy Server Trace logs respectively.

FWSTrace:

[11/22/2015][05:18:29][4176][7692][5943d488-997e73ef-283abbf0-0a173c11-dcf53006-8][OAuthTunnelClient][getAuthzServerByID][Exception caught in class OAuthTunnelClient, method getAuthzServerByID: java.lang.IllegalArgumentException: "Cannot parse bytes to a ProviderDataResponseData"]

Policy Server Trace Log:

[11/22/2015][00:18:29.835][00:18:29][7560][7408][CServer.cpp:6364][CServer::Tunnel][][][][][][][][][][][][][][][][][][][][][Status: Tunnel error: service 'smjavaapi', function 'JavaTunnelService'. java.lang.ClassNotFoundException: com.ca.federation.tunnel.oauth.OAuthAuthzServerByIDTunnelService]

Environment:  

Policy server: R12.52 SP01 CR01

SPS: R12.52 SP01 CR01

Cause: 

The error clearly indicates that the OAuthAuthzServerByIDTunnelService class does not exist in the Fedserver Jar file. If the fedserver jar file which is present in your policy server is not having the tunnel service class which causes this error.

Resolution:

Please update the Fedserver Jar file with tunnel service class and restart the policy server.

Environment

Release:
Component: SMFED