Authenticating URL gives IllegalArgumentException

Similar Messages

• How to read Authentication URL in HTTP System

  Hi,
  I have created HTTP System and have given authentication URL  . I need to read  authentication URL from the iview i created using <System.somenameforauthurl> property . Please let me know the System property name for authntication URL. I don't want to use app integrator since my iview only recognizes HTTP system. Thanks in advance.
  Regards
  Vasudevan Gopalan

  You will need to find the system by its alias, using http://help.sap.com/javadocs/NW04S/SPS09/ep/com/sap/portal/pcm/system/package-summary.html
  Then you can find the appropriate attribute.

• Portal Console URL gives 404

  Hello,
  How come when I try to deploy my portal ear project from the eclipse, I'm able to access the Portal Console "http://localhost:7001/myPortalEARAdmin"
  However, when I try to deploy the same ear from the WL server console and it is successfully installed and I can access the application, but the portal console url gives me "Error 404--Not Found."
  I'm using weblogic 10.3.2, is there any configurations I need to do in the weblogic-application.xml?
  Thanks,

  Brilliant :)
  The problem was that it needs the application.xml in the ear which was generated by the eclipse by default
  If the project already exists, you can right-click the EAR project and select Java EE Tools > Generate Deployment Descriptor Stub.
  Thanks,

• Consuming Websphere Portlets in spaces using WSRP WSDL url gives error.

  Sr#3-6516739281
  Ver- 11.1.1.6.0 spaces.
  Hi ,
  Customer consuming a websphere portlets in spaces
  Producer: Websphere portal server
  Consumer - Webcenter spaces 11.1.1.6.0
  WSDL url - http://192.168.0.50:9080/producer/wsdl/wsrp_service.wsdl
  WSRP 2.0 portlets hosted on IBM WebSpere application server (v. 7.1) are not rendered at all in spaces. Registration part goes fine and when click the test button after registration it says successful.
  but when we go the spaces page the portlet is not rendered and says - Portlet consumer error and the following stack trace traced in spaces server logs .
  The thrown exception is:
  <3-Dec-2012 4:21:33 o'clock PM EST> <Error> <oracle.portlet.binding> <BEA-000000> <An error has occured for Portlet Binding portlet2581387127.
  oracle.adf.model.portlet.binding.PortletModelException: Unable to get portlet response (Internal Error) for portlet binding portlet2581387127.
       at oracle.adf.model.portlet.binding.PortletBinding$InnerPortletModel.getPortletRendition(PortletBinding.java:1476)
       at oracle.adfinternal.model.portlet.binding.ActivityPortletModelWrapper.getPortletRendition(ActivityPortletModelWrapper.java:151)
       at oracle.adfinternal.view.faces.renderkit.rich.portlet.PortletRenderer.encodeAll(PortletRenderer.java:916)
       at oracle.adf.view.rich.render.RichRenderer.encodeAll(RichRenderer.java:1396)
       at org.apache.myfaces.trinidad.render.CoreRenderer.encodeEnd(CoreRenderer.java:341)
       at org.apache.myfaces.trinidad.component.UIXComponentBase.encodeEnd(UIXComponentBase.java:767)
       at javax.faces.component.UIComponent.encodeAll(UIComponent.java:937)
       at org.apache.myfaces.trinidad.render.CoreRenderer.encodeChild(CoreRenderer.java:405)
       at oracle.adf.view.rich.render.RichRenderer.encodeChild(RichRenderer.java:2633)
       at oracle.adfinternal.view.faces.renderkit.rich.customizable.PanelCustomizableRenderer.encodeChildrenVertically(PanelCustomizableRenderer.java:1039)
       at oracle.adfinternal.view.faces.renderkit.rich.customizable.PanelCustomizableRenderer.encodeAll(PanelCustomizableRenderer.java:350)
       at oracle.adf.view.rich.render.RichRenderer.encodeAll(RichRenderer.java:1396)
       at org.apache.myfaces.trinidad.render.CoreRenderer.encodeEnd(CoreRenderer.java:341)
       at org.apache.myfaces.trinidad.component.UIXComponentBase.encodeEnd(UIXComponentBase.java:767)
       at javax.faces.component.UIComponent.encodeAll(UIComponent.java:937)
       at org.apache.myfaces.trinidad.render.CoreRenderer.encodeChild(CoreRenderer.java:405)
       at org.apache.myfaces.trinidad.rend
  This works fine in .net and other consumers.
  Please see the screen shots attached to SR-
  WCP_PortletProducerRegistration.png - registration screen in spaces
  WCP_Error.png - Error when try to see the portlet in spaces page.
  WC_Spaces.out -logs with the above error.
  We also tried to register this is Jdevelooper. This gives different error in registration it self.
  screen shot- JDeveloper-WSRPProducerRegistration.docx
  Please shed some light on this to proceed further.

  Sr#3-6516739281
  Ver- 11.1.1.6.0 spaces.
  Hi ,
  Customer consuming a websphere portlets in spaces
  Producer: Websphere portal server
  Consumer - Webcenter spaces 11.1.1.6.0
  WSDL url - http://192.168.0.50:9080/producer/wsdl/wsrp_service.wsdl
  WSRP 2.0 portlets hosted on IBM WebSpere application server (v. 7.1) are not rendered at all in spaces. Registration part goes fine and when click the test button after registration it says successful.
  but when we go the spaces page the portlet is not rendered and says - Portlet consumer error and the following stack trace traced in spaces server logs .
  The thrown exception is:
  <3-Dec-2012 4:21:33 o'clock PM EST> <Error> <oracle.portlet.binding> <BEA-000000> <An error has occured for Portlet Binding portlet2581387127.
  oracle.adf.model.portlet.binding.PortletModelException: Unable to get portlet response (Internal Error) for portlet binding portlet2581387127.
       at oracle.adf.model.portlet.binding.PortletBinding$InnerPortletModel.getPortletRendition(PortletBinding.java:1476)
       at oracle.adfinternal.model.portlet.binding.ActivityPortletModelWrapper.getPortletRendition(ActivityPortletModelWrapper.java:151)
       at oracle.adfinternal.view.faces.renderkit.rich.portlet.PortletRenderer.encodeAll(PortletRenderer.java:916)
       at oracle.adf.view.rich.render.RichRenderer.encodeAll(RichRenderer.java:1396)
       at org.apache.myfaces.trinidad.render.CoreRenderer.encodeEnd(CoreRenderer.java:341)
       at org.apache.myfaces.trinidad.component.UIXComponentBase.encodeEnd(UIXComponentBase.java:767)
       at javax.faces.component.UIComponent.encodeAll(UIComponent.java:937)
       at org.apache.myfaces.trinidad.render.CoreRenderer.encodeChild(CoreRenderer.java:405)
       at oracle.adf.view.rich.render.RichRenderer.encodeChild(RichRenderer.java:2633)
       at oracle.adfinternal.view.faces.renderkit.rich.customizable.PanelCustomizableRenderer.encodeChildrenVertically(PanelCustomizableRenderer.java:1039)
       at oracle.adfinternal.view.faces.renderkit.rich.customizable.PanelCustomizableRenderer.encodeAll(PanelCustomizableRenderer.java:350)
       at oracle.adf.view.rich.render.RichRenderer.encodeAll(RichRenderer.java:1396)
       at org.apache.myfaces.trinidad.render.CoreRenderer.encodeEnd(CoreRenderer.java:341)
       at org.apache.myfaces.trinidad.component.UIXComponentBase.encodeEnd(UIXComponentBase.java:767)
       at javax.faces.component.UIComponent.encodeAll(UIComponent.java:937)
       at org.apache.myfaces.trinidad.render.CoreRenderer.encodeChild(CoreRenderer.java:405)
       at org.apache.myfaces.trinidad.rend
  This works fine in .net and other consumers.
  Please see the screen shots attached to SR-
  WCP_PortletProducerRegistration.png - registration screen in spaces
  WCP_Error.png - Error when try to see the portlet in spaces page.
  WC_Spaces.out -logs with the above error.
  We also tried to register this is Jdevelooper. This gives different error in registration it self.
  screen shot- JDeveloper-WSRPProducerRegistration.docx
  Please shed some light on this to proceed further.

• BO Mobile url gives error with hostname

  Dear All,
  We had done the BO Mobile installation for DEV Landscape and it is compelted without any errors.
  Now when we are testing the URL with the localhostname it is working fine and gives result.
  But the same url with the PUBLIC IP Address(Hostname is not yet finialized) is giving time out error.
  Do I need ot define the public ip/host name any where is Tomcat Configuration or is it due to any network/hostname configuration issue.
  Any idea please suggest.
  Thanks & Regards,
  S Kumar

  Hi Kumar,
  it seems that your connections are fine, as you are able to connect using localhost.
  however, if using public IP it is trying to time out, may be because, it is either failing to resolve the external to internal IP ( NAT ) or proxy settings can cause the problem with public IP.
  Check with your network Admin, if you are able to use public ip and open http://publicip:8080 from your ipad?
  Regards,
  Atul B

• WLAN Controller Displays Interface IP in Web Authentication URL Instead of FQDN

  Hi,
  Can someone offer any help with the issue below please?
  I have a guest wlan configured on a Cisco 2106 WLAN controller. Guest users are redirected to a Web Authenticaion page when they try to access the internet through a web browser, and can only proceed by succesfully authenticating with the controller.
  The problem I have is that the guest users are presented with an SSL certficate error before they hit the web authentication page. I have installed an SSL certificate from Verisign on the controller, and have configured an FQDN for the interface that is used for the guest wlan. However, the certificate error still persists because when the user is re-redirected to the web auth page, the URL in the address bar is presented as the IP address of the interface instead of the FQDN, For example, when a user is redirected, the address bar in their web browser displays; https://1.1.1.5/ instead of https://guestwifi.domain.com/ The SSL certificate that is installed on the controller is securing the FQDN of the interface.
  I'm not sure if i'm missing something here, but i'm struggling to find how to get the FQDN to display instead of the IP.
  Thanks,
  Paul

  I'm not following what you mean when you sayd "FQDN for the interface that is used for the guest wlan"......
  I assume you configured the Virtual Interface  to have the dns entry as guestwifi.domain.com but clients are still being redirected to the virtual IP itself and not the dns name? 
  The only reason I can think of for that happening was if the WLC had not been rebooted since applying the DNS name to the Virtual Interface (it takes a reboot to modify client redirect stuff, the same goes for http vs https).
  so guestwifi.domain.com should have a DNS entry resolving to 1.1.1.5, that entry should be on your virtual interface, and upon reboot you should always redirect to guestwifi.domain.com unless you manually type https://1.1.1.5 in the browser.

• Ceating a desktop shortcut for a URL gives an error upon click

  After I drag to the desktop a shortcut appears. In properties it lists the correct URL. When I click to open the error "Unable to open this internet shortcut. The protocol "http" does not have a registered program.
  This happens with IE as well as Firefiox. FF is my goto browser. Win 7, FF 18.
  Any ideas?

  Make sure that you have set Firefox as the default browser.
  *http://kb.mozillazine.org/Default_browser
  *https://support.mozilla.org/kb/How+to+make+Firefox+the+default+browser
  *https://support.mozilla.org/kb/Setting+Firefox+as+the+default+browser+does+not+work

• Authenticating URL in LDAP

  Hi All,
  Currently I'm structuring my Directory Tree.
  I need to define rights for my users.
  I have 3 users, usrAdm, usr1, usr2. I should have 2 rights - rightAdm, and rightUsr.
  In each of my right i should define 2 parameters, 1, javaclassname= some java classname 2, url = someurl.
  Then i should map my usrAdm = rightAdm and usr1,usr2 = rightUsr such that javaclassname and url vary from admin and users
  How to make this entries and mapping in Sun Directory Server. Even pointers to documents will help

  Class of Service (CoS) might be a good option. CoS allows you to put virtual (computed) attributes on an entry. As long as you have a way to determine if an entry should have admin or user privileges (by using an LDAP search filter), the CoS will populate the appropriate javaclassname and URL attributes.
  Look in the "Sun ONE Directory Server 5.2 Administration Guide" for Class of Service.

• Windows authentication on Intranet site on IIS8.5 works when using the IP of the site, but not the URL.

  I have an intranet website on server 2012R2 with IIS8.5.
  When I access the site by IP address, the site prompts for windows authentication and it only permits access to the areas the logged in user is allowed.
  When I access the site by URL, Firefox prompts for authentication and gives the correct access, but when I access the URL from IE or Chrome, the site never prompts for credentials and the entire site is wide open to anyone.
  I have anonymous authentication disabled, Windows authentication enabled, and basic authentication enabled, set to default to our domain, so the user doesn't have to type domain\username.
  I left the site bindings open, because when I bind to an IP or host name, the intranet site stops working.
  Can anybody tell me what I am doing wrong???

  When I access the site by URL, Firefox prompts for authentication and gives the correct access, but when I access the URL from IE or Chrome, the site never prompts for credentials
  and the entire site is wide open to anyone.
  Are you accessing the site from a domain-joined workstation? It's possible that it looks wide open because IE and Chrome are using your existing Windows credentials without any prompting, whereas Firefox is not automatically using these creds so is prompting.

• Informacast Paging server - URL Authentication

  For configuring CUCM 9.1 for Informacast paging , we have to change under Phone URL Parameters >> URL Authentication >> "URL Pointing to paging server ( paging server IP Address) .  Here we are changing CUCM IP address to  Paging Server IP .  How does it impact on other services, features and functionalities ?

  Lisa - really glad to know, this helped you!
  Regards to your second query please change both the Phone authentication and Secure phone Authentication URL to http informacast URL.
  Please refer here:
  http://www.cisco.com/c/en/us/support/docs/unified-communications/paging-server/117059-configure-informacast-00.html#anc7
  -Terry
  Please rate all helpful posts

• Configuring SSO to a URL iView

  hi everyone......
  i'm relatively new to EP....
  and my requirement is.....
  i've created a URL iView and when i logon to the portal.....i need my <b>yahoo or gmail inbox</b> to appear in this URL iView.....
  i read frm a thread that i need to confgure SSO for this by creating a system....
  can u plz guide me how to configure SSO and also the usermapping.......
  help is highly appreciated....
  thanks and regards,
  Sudheer

  Hi Sudheer,
  Please Ensure The following:
  SSO with Yahoo:
  UPLOAD:
  1.Upload the par in PCD
  SYSTEM CREATION:
  1)Create ->System from par -> select com.sap.portal.howtos.webapp -> web application->give name & Id
  2)Properties-->object->system definition
         Name of the server : login.yahoo.com
         Port : (empty)
         URI :/config/login
  3)create alias
  4)set user Mapping
  IVIEW CREATION:
  1)Iview from par
  2)Iview type:com.sap-appintegrator.sap
  3)template:generic
  4)Properties Setting:
       System : (system alias name )
       URL Template :<System.protocol>://<System.server><System.uri>?<Authentication>
       URL Template fragment for UserMapping: <System.protocol>://<System.server><System.uri>?<Authentication>
  Regards,
  Ramganesan K.

• Form Authentication Servlet  and MD5

  Dear forum,
  I have the following servlet to authenticate a user via form. If you go to the root url you get the login html and the authentication works fine but if the user knows the url of a specific html just by typing the url gives access to the page without going through the authentication. The website is composed of htmls and servlets. How can I force the authentication for the htmls and the servlets. I included at the bottom how I added the Login servlet to the web.xml. I suspect that the servlet definition in the web.xml is the problem.
  Also I would like to use MD5 encryption, would someone suggest how this can be accomplished.
  Thanks.
  This is the code:
  import java.io.*;
  import java.util.*;
  import javax.servlet.http.*;
  import javax.servlet.*;
  import java.sql.*;
  import javax.sql.*;
  public class LoginServlet extends HttpServlet {
    public void doPost (
       HttpServletRequest     request,
       HttpServletResponse     response
      ) throws ServletException, IOException
    String item = request.getParameter("account");  
    doGet(request,response);
    public void doGet (
       HttpServletRequest     request,
       HttpServletResponse     response
      ) throws ServletException, IOException
     HttpSession session = request.getSession(true);
     PrintWriter out = response.getWriter();
       try {
            String driverName="sun.jdbc.odbc.JdbcOdbcDriver";
            String dbUrl="jdbc:odbc:Virtual_Library_DB";
            Class.forName(driverName);
            Connection db =DriverManager.getConnection(dbUrl,"","");
            if ((session.getAttribute("user") == null) || (!session.getAttribute("ip").equals(request.getRemoteAddr()))){
                 PreparedStatement pStmt = db.prepareStatement("SELECT * FROM Login WHERE Login.account =? AND Login.password=? ");
                 pStmt.setString(1, request.getParameter("account"));
                 pStmt.setString(2, request.getParameter("password"));
                          pStmt.setString(3, request.getParameter("level"));
                 ResultSet rs = pStmt.executeQuery();
                  System.out.println("hello");
                 if(!rs.next()){
                      System.out.println("Account is not valid.");
                      request.setAttribute("msg", "Account is not valid.");
                      RequestDispatcher rd = request.getRequestDispatcher("LoginInvalid.html");
                      rd.forward(request, response);
                 else do {
                      int id = rs.getInt(1);
                      String account = rs.getString(2);
                      session.setAttribute("user", new Integer(id));
                      session.setAttribute("account", account);
                      session.setAttribute("ip", request.getRemoteAddr());
                      System.out.println("User " + session.getAttribute("user") +" has logged on.");
                      request.setAttribute("msg", "User has logged on.");
                      RequestDispatcher rd = request.getRequestDispatcher("index.html");
                      rd.forward(request, response);
                 } while(rs.next());
                 rs.close();
            else {
                 System.out.println("User has already logged on.");
                      request.setAttribute("msg", "User has already logged on.");
                      RequestDispatcher rd = request.getRequestDispatcher("index.html");
                      rd.forward(request, response);
            db.close();
       catch(Exception exp){
            System.out.println("Exception: "+ exp);
     out.close();
  web.xml
  <servlet>
      <servlet-name>LoginServlet</servlet-name>
      <servlet-class>LoginServlet</servlet-class>
    </servlet>
  <servlet-mapping>
      <servlet-name>LoginServlet</servlet-name>
      <url-pattern>/LoginServlet</url-pattern>
    </servlet-mapping>

  Check the session in the servlets that are allowed only for logged-in users.
  public class ServletUtils
      public static boolean checkLogin(HttpServletRequest request, HttpServletResponse response)
          HttpSession session = request.getSession(false); // false = don't create a new session if not logged in
          if (session != null)
              return true;
          Logging.log("tried to access page without login, redirecting to login");
          ...redirect to login.html...
          return false;
      // At the start of your doGet()'s:
      if (!checkLogin(request, response))
          return;Do you really need static documents to be authenticated? dot.gif's and all? Someone can make a zip file of them anyway and post it to their own web site or Kazaa.
  If you have a couple of html pages you want authenticated, easiest is to write them as servlets (+ maybe JSP's) and do the login check there.
  Ok, let's say you have ...what, an "image database" (heh) that you want available to logged-in users only. Write a servlet that serves those pages. That servlet checks the session, and then copies the appropriate file to the user (remember to set content type; consider caching the files if hit rate is very high.) The servlet would be called like /images/show?id=gerbilsex/closeup.gif to fetch the named file. Put the files outside the web server's document directory so they are not accessible except through the servlet. Perform strict checks on the file name to disallow nastiness like id=../../../etc/passwd. A similar database solution is also possible. Another variant is to map a servlet to a "virtual directory name" and get the actual file name from the URL path -- similar to the ?id= solution, except the URLs don't have parameters.
  About md5: md5 isn't an encryption algorithm, it is a hash algorithm (aka "message digest" or "fingerprint"). It can't be decrypted. What do you really want to accomplish - encryption or hashing?

• XI Web Service Authentication problem

  Hi,
  I have a XI Web Service that our third-party PeopleSoft client is trying to consume. I tested the Web Service and that works. I used SOAP client testing tool that I have which posts SOAp message to the web service URL. Before i use this tool using Internext Explorer, I attempt to connect to the Web Service URL (by putting the entire web service URL in the Address Bar), it prompts me for the user name & password and upon successful authentication, MessageServlet gives me a success message.Once authenticated, i am successfully able to post SOAP messages to the Web Service URL.
  I provided my PeopleSoft team with the WSDL document, they uploaded into their system, made some configs, and the SOAP message that they are generating is as below
  As you can see in the SOAp message, they are attempting to pass the user name and password in SOAP header and I understand XI ignores SOAP headers OR that is at least not the way to authenticate.
  Shouldn't they be able to somehow authenticate themselves against SOAP adapter using User name and password that we provided them with and the send SOAP messages?
  ********<soap:Envelope xmlns:SOAP-ENC="http://schemas.xmlsoap.org/soap/encoding/" xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><soap:Header>
  <wsse:Security soap:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
  <wsse:UsernameToken><wsse:Username>user name</wsse:Username><wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">password</wsse:Password></wsse:UsernameToken></wsse:Security></soap:Header><soap:Body><MI_EMP_ADDR_CHG_OSSERVICE xmlns="https://pics.sco.ca.gov"><PERSON_ID>BB000001</PERSON_ID><START_DATE>20100501</START_DATE><ADDR_LINE1>100 MAIN ST</ADDR_LINE1><ADDR_LINE2/><CITY>CORONA</CITY><COUNTY>RIVERSIDE</COUNTY><STATE>CA</STATE><ZIP_CODE>91881</ZIP_CODE></MI_EMP_ADDR_CHG_OSSERVICE></soap:Body></soap:Envelope>
  I will appreciate any ideas.
  Thanks,
  Saurabh

  Indeed, they should take care of the authentication according to supported XI mechanisms, as explained here :
  http://help.sap.com/saphelp_nw04/helpdata/en/1f/7e2441509fa831e10000000a1550b0/content.htm
  There is also a note #891877 that explains security level settings for SOAP adapter
  Chris

• How to set Alias name for URL or change  URL..

  Hi:
  I am using Apache Tomcat as web server, it contains multiple web applications.
  Url for one of this application is, e.g. http://localhost:8080/myapplication. This particular url work fine.
  But i want to use only mypage word instead of all the above url.
  So how to set or map this?
  Thank You,
  Anup Desai.

  Thank you.
  I tried to set the displayname (using setPersonal function)
  Still its not working.
  I feel it is because during authentication we give the login name (which is taken as the display name).
  Is there any way to change without touching configuration level properties in exchange server 2007.
  thanks in advance

• Webservice with HTTP authentication

  Hi,
  how do i supply the userid an password for a http authenticated webservice.  I already choose the option for http authentication on the security tab on the logical port.
  Alos tried to find it in the Visual Admin to the server but i am stuck.
  Greetings Danny.

  There are two ways to do this
  <b>Option 1: Hard code the Username/Password</b>
  For this, use the method _setUser and _setPassword.
  These are methods for your model class Request_<WebService>_PortType.... (the model class for the webservice). I invoked these methods in the wdDoInit method of the component controller class.
  For example, i imported the WSDL for the RFC SXMB_GET_MESSAGE_LIST and used it like this:
  Request_SXMB_GET_MESSAGE_LISTPortType_SXMB_GET_MESSAGE_LIST oRequest =
  new Request_SXMB_GET_MESSAGE_LISTPortType_SXMB_GET_MESSAGE_LIST();
  oRequest._setUser("bcuser");
  oRequest._setPassword("password");
  <b>Option 2: Use HTTP Destinations</b>
  Open Visual Administrator and goto node Services, Destination Service. Create a HTTP destination with the URL of the webservice, maybe choose basic authentication and give the username / password. Now, you could use this HTTP destination in the component controller class. Even though there is a method _setHTTPDestinationName, this did not work for me. I had to write the following code to retrieve the URL, username, password from the HTTP destination
  import javax.naming.Context;
  import javax.naming.InitialContext;
  import javax.naming.NamingException;
  import java.net.HttpURLConnection;
       InitialContext ctx ;
       Object obj;
       DestinationService dstService;
       Destination destination;
       HTTPDestination httpDestination ;
       HttpURLConnection httpurlconnection = null;
       Properties destprop = null;
       String url = "";
       String username = "";
       String password = "";
            ctx = new InitialContext();
            obj = ctx.lookup(DestinationService.JNDI_KEY);
            dstService = (DestinationService) obj;          
            destination = dstService.getDestination("HTTP","NC_IS");
            destprop = destination.getDestinationProperties();
            httpDestination = (HTTPDestination) destination;
            url = httpDestination.getUrl();
            username = destprop.getProperty("USERNAME");
            password = destprop.getProperty("PASSWORD");  
  (I know the java code sucks and the purists will hang me; nevertheless it works)
  Besides the code, you need to do the following as well:
  (1) In the Package explorer, select your project, right click, cick on "Set Additional Libraries.."
  (2) Select security.class and tc/sec/destinations/interface
  (3) Click on menu Project > Properties, goto Webdynpro refereces node in the tree and add the following
      (a) Interface References: tcsecdestinations~interface
      (b) Service References: tcsecdestinations~service
  All the best, try option 1 first before you embark on the second one.
  Regards, Parag.