App Connect

App Connect

Join this online user group to communicate across IBM product users and experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only

  • 1.  SSL socket operation. APP Connect Enterprise Toolkit

    Posted Mon June 05, 2023 02:17 PM
    Edited by Gabriel Marte Blanco Mon June 05, 2023 04:09 PM

    I'm trying to call an keycloak API wuch should return an access token through IBM App Connect Toolkit locally... I'm using the following flow: Http Input Node -> Http Request Node -> Http Reply node. IBM App Connect should not verify SSL certificate to call this API... but when I Try to record it and run the flow I get the following error message: 

    HTTP request for "

    http://localhost:7800/api

    " returned HTTP status code 500.
Error Response:
 <?xml version="1.0" encoding="UTF-8"?><SOAP-ENV:Envelope xmlns:SOAP-ENV="

    http://schemas.xmlsoap.org/soap/envelope/

    " xmlns:xsd="

    http://www.w3.org/2001/XMLSchema

    " xmlns:xsi="

    http://www.w3.org/2001/XMLSchema-instance

    ">
<SOAP-ENV:Body>
<SOAP-ENV:Fault>
<faultcode>SOAP-ENV:Server</faultcode>
<faultstring>BIP3113E: Exception detected in message flow HTTPInputMessageFlow (integration node integration_server) </faultstring>
<faultactor>

    http://localhost:7800/api

    </faultactor>
<detail>
            <text>Exception. BIP2230E: Error detected whilst processing a message in node 'HTTPInputMessageFlow.HTTP Request'. : /jenkins/slot0/product-build/WMB/src/WebServices/WSLibrary/ImbWSRequestNode.cpp: 806: ImbWSRequestNode::evaluate: ComIbmWSRequestNode: HTTPInputMessageFlow#FCMComposite_1_9
BIP3162S: An HTTP error occurred. The HTTP Request-Line was: ''POST KEYCLOAKPATH HTTP/1.1
: /jenkins/slot0/product-build/WMB/src/WebServices/WSLibrary/ImbWSRequestNode.cpp: 718: ImbWSRequestNode::evaluate: : 
BIP3152S: Socket error detected whilst invoking Web service located at host 'KEYCLOAKHOSTNAME.com', port 443, path '/auth/realms/zsecuritycompliance/protocol/openid-connect/token'. : /jenkins/slot0/product-build/WMB/src/WebServices/WSBase/ImbWSRequest.cpp: 678: Imb::WSRequest::makeWSRequest: : 
BIP3165S: An error occurred whilst performing an SSL socket operation. Operation: 'setSSLOptions'. Error Text: 'java.security.NoSuchAlgorithmException: TLSv1.3 SSLContext not available'. : /jenkins/slot0/product-build/WMB/src/WebServices/WSBase/Socket.cpp: 1266: Imb::SocketJNIManager::handleGeneralJavaException: : </text>
         </detail>
</SOAP-ENV:Fault>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>. 
Check the Error Log or check the .metadata/.log file in your workspace for details of the error which can be passed to IBM Support.



    ------------------------------
    Caique Dutra Santos
    ------------------------------



  • 2.  RE: SSL socket operation. APP Connect Enterprise Toolkit

    Posted Tue June 06, 2023 01:21 AM

    Hi Caique.

    It seems to be the call to KEYCLOAKHOSTNAME.COM at port 443 that fails. Have you set up trust store for this call? Which version of ACE are you using? 

    From the error it seems it is trying to use TLSv1.3:

    'setSSLOptions'. Error Text: 'java.security.NoSuchAlgorithmException: TLSv1.3 SSLContext not available'

    Thanks,

    Lars



    ------------------------------
    Lars Dehli
    ------------------------------

    Original Message


  • 3.  RE: SSL socket operation. APP Connect Enterprise Toolkit

    Posted Tue June 06, 2023 08:52 AM
    Edited by Caique Dutra Santos Tue June 06, 2023 08:52 AM

    Hi Lars, thanks for answering !!

    1-) I'm using IBM App Connect Enterprise Toolkit version: 12.0.8.0

    2 -) How can I set up truststore  on ACE Toolkit? 

    I changed the protocol to "SSL" and got the following error: 

    occurred. The HTTP Request-Line was: 'POST /auth/realms/zsecuritycompliance/protocol/openid-connect/token HTTP/1.1
\nBIP3152S: Socket error detected whilst invoking Web service located at host keycloak-ibmz-scc-demo.apps.zsccocp4.pok.stglabs.ibm.com, port 443, path /auth/realms/zsecuritycompliance/protocol/openid-connect/token. \nBIP3165S: An error occurred whilst performing an SSL socket operation. Operation: connect. Error Text: javax.net.ssl.SSLHandshakeException: com.ibm.jsse2.util.j: PKIX path building failed: com.ibm.security.cert.IBMCertPathBuilderException: unable to find valid certification path to requested target. "}}. 
Check the Error Log or check the .metadata/.log file in your workspace for details of the error which can be passed to IBM Support.



    ------------------------------
    Caique Dutra Santos
    ------------------------------

    Original Message


  • 4.  RE: SSL socket operation. APP Connect Enterprise Toolkit

    Posted Wed June 07, 2023 02:56 AM

    Hi again.

    Now it seems, from the error message, that a trust store is missing. 

    Are you running ACE with node and server or only server?

    Check out these links on how to get started on setting up a trust store:
    https://www.ibm.com/docs/en/SSTTDS_12.0/com.ibm.etools.mft.doc/ac56640_.html
    https://www.ibm.com/docs/en/SSTTDS_12.0/com.ibm.etools.mft.doc/ab60250_.html

    You basically have to define a trust store, add the missing key, give it a password then inform your node or server about this information. Then you need to restart node or server. 

    Cheers,

    Lars



    ------------------------------
    Lars Dehli
    ------------------------------

    Original Message