What does "WSDoAllReceiver: security processing failed (actions mismatch)" mean?

Each SOAP message that is sent contains a WS-Security header. This header contains items such as the sender's X.509 certificate, the signature over the message, a timestamp stating when the message was sent, and any SAML tokens.

Apache WSS4J, the security library used by the GRIA software, is configured to process a particular sequence of items in this header. If the list of items sent doesn't exactly match the list that it is expecting then you get this error. For example, any of the following could cause this error:

• Failing to include a time-stamp.
• Sending a SAML token to a GRIA 5.0 service (GRIA 5.1 and later can cope with SAML tokens).
• Including all the required tokens, but in a different order.

If you got this error while trying to write your own client then check that you are sending exactly the same elements as the normal GRIA client, and in the same order.

If you got the error when using the GRIA 5.1 client with a GRIA 5.0.x service then ensure that you do not have any membership group selected. There is a known bug where 'forgetting' the membership service does not remove any existing token from the client's cache. Restarting the client will fix this problem.