Custom information in HTTP Header in an outgoing GWWS Request

Similar Messages

• Adding custom information in HTTP Header in an outgoing request from GWWS

  Is there a way to send custom header information with the a webservice request (HTTP post) that happens via GWWS server?
  All the methods I read about deal with managing the soap envelop that gets sent.
  We are looking for ways which will allow us to put custom information in the headers.
  I am aware there is something we can do using the Salt Plugins.
  For example, we can write a Out bound plugin which has a capability of putting the "Authentication:Basic..." in the header.
  Then there is message conversion plugin which deals with transformation of message, which gives us control over the soap body.
  Is it possible to put information in the header for outgoing request (from GWWS) to a specific web service?
  Thanks and Sincere Regards,
  Mrugendra

  Maurice,
  Thanks for confirming this.
  It clarifies the doubts that I was having while reading through the documentation Xu pointed to.
  Yes, we need to add HTTP Headers (not SOAP header).
  For now we just need to add Basic Authentication HTTP Header for outbound service calls.
  We have developed a plugin to do that for now.
  And even if the salt plugin takes care of adding the Basic Authentication in the HTTP Header for outgoing calls, I guess we do not have any option to include some custom information in the HTTP Header which might be required in the future.
  At-least, not unless we request that enhancement.
  Bringing the plugin into our mix requires a lot of changes to our architecture including inclusion of AUTHSVR in the UBB,
  Which, in turn, makes it imperative to change the endpoint clients of our application.
  In addition to that, the incoming web service calls also need to include TUXEDO authentication information, which would again require either communicating the authentication information to the consumers of our service or device some kind of a proxy which would add the authentication information for all the incoming requests!
  With these facts in mind, we were wondering if we have an easier way to include the HTTP header information.
  As you say, Maurice, it seems it is not possible yet.
  Thank you again for your replies.
  Sincere Regards,
  Mrugendra

• How to delete server information in http header?

  Hello,
  how could i delete the server information in the http-header?
  HTTP/1.1 500 Internal Server Error
  connection: close
  server: SAP J2EE Engine/7.00   <--- this here
  date: Tue, 11 Nov 2008 08:27:08 GMT
  pragma: no-cache
  content-type: text/html;charset=ISO-8859-1
  content-length: 2046
  set-cookie: saplb_*=(icdus445_PA3_03)39216850; Version=1; Path=/
  Best regards,
  Dennis

  Hi,
  the solution is to set the value for UseServerHeader to false.
  This can be done from the VisualAdmin for the HTTP service of all servers + dispatcher.
  Thanks for the support
    Christian Birkle

• How to get the user and groups information from http header

  Hi All,
  In my current scneario, we are using Siteminder for SSO setup.. And in this process, after authentication and authorization, they are going to append the user information and group information of the user into a HTTP header and it will be sent back to our presentation services.. We have to extract the user information and group information from the http header.
  My HTTP header will look like as follows..
  SM_USER XYZ
  SM_USERDN CN=Firstname\, Lastname\, xyz, OU=GPO-Low Level Security,OU=Domain Users,OU=BU FDT,
  SM_USERGROUPS CN=GG-CA-SiteminderAdmins, OU=Global,OU=Domain Groups, DC=com^CN=GG-ServiceDeskAdmin-TCCORPCEFS
  And also if anyone explain me the overall working of SSO in detail like how presentation services will make a connection to BI server( I guess using Impersonator User), and also how our BI server will read the URL from presentation services and the over all working flow in our OBIEE..
  Thanks a lot....

  Please use the search! this topic has come up lots of times already.

• Sending/Reading custom Strings in HTTP Header

  Hey people,
  I'm developing a J2ME application in which I'm trying to send a Message object (a few Strings such as Content, Nickname etc) to a Servlet. Serialization would be nice but since J2ME doesn't support it, I would have to come up with a custom one. I am looking for an easier way to send the strings I need to the other side.
  Can I use some of the HTTP headers in a POST request set to my custom Strings (using setRequestProperty when constructing them)?
  I know it's probably inefficient or "unethical" but if a dirty trick is what it takes... Since I'm controlling both sides of the connection, I am prepared to make it happen, one way or the other.
  Can someone come up with a viable solution?
  Any help would be greatly appreciated!

  Thank you for your prompt answer.
  I will give it a shot but I fear there's bound to be some trouble:
  1. Since the text messages sent can be of arbitrary size and I will definitely need some extra fields (such as smileys ;), color, etc - you get the gist) the header can be long. Thus, big overhead on a small device. But it sure beats creating byte[] for serialization.
  2. Some of the characters used in the "encoding" of the message, such as ",<,>,?,& etc cannot be used by in the actual body of the message - it would confuse the "decoding" on the other side.
  I might be trying to hit two birds with one stone here but the goal is to get a few "text" attributes across as painlessly as possible (for the device, not me..)
  You gave me food for thought tho, have some $ ;).

• ContentType in HTTP Header issue while sending webservice request

  I have a client application deployed on weblogic10.3.4 which access a remote web application (on websphere5.1).
  The soap request fails because WebSphere5.1 does not accept double quote around utf-8 in ContentType header of HTTP.
  e.g:
  Content-Type: text/xml;charset=utf-8 is valid
  Content-Type: text/xml;charset="utf-8" is not valid
  This can be fixed on glassfish by upgrading metro library.
  But how can I fix this problems on weblogic server?
  I found weblogic8.1 doc which says this issue has been fixed (CR198996), but why does it still exist on 10.3.4?
  Any suggestions would be appreciate.

  Hi _MiRichter,
  Well Done!
  Thank you very much for sharing the solution to us.
  Best Regards,
  Amy Peng
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• How to set custom HTTP header for single sign on

  Currently we just begin to use an application called "etran". This application requires user name and password to login. Now, my assignment is to integrate etran application in our internal application. This means that somewhere in our internal application, there is a link leads to the etran application.
  It is going to be single sign on, that means that once user logs into our internal application, when he/she clicks on the etran link, no sign on to etran is needed.
  I consult with the technical people in etran. they said that our internal application needs to send a "login request" to etran via SSL with the user's information encoded in base 64 format. etran captures the HTTP header containing user authentication and authorization information, and parses the required information from the HTTP header.
  My question is that how I set user information in HTTP header? From my understanding, once I am able to set the user information in HTTP header, it is in base 64 format?
  Thanks in advance for your help.

  sharon38_74 wrote:
  they said that our internal application needs to send a "login request" to etran via SSL with the user's information encoded in base 64 format. etran captures the HTTP header containing user authentication and authorization information, and parses the required information from the HTTP header.
  My question is that how I set user information in HTTP header? From my understanding, once I am able to set the user information in HTTP header, it is in base 64 format?Your application need to act like a proxy. You can invoke a HTTP request programmatically using java.net.URLConnection. You can set request headers using URLConnection#setRequestProperty(). Also see the API docs: [http://java.sun.com/javase/6/docs/api/java/net/URLConnection.html]. You only need to know the header field name where to set the Base64-encoded value in. You need to Base64-encode the value yourself.

• SENDING DATA IN HTTP HEADER

  I want to send some data in HTTP HEADER and then tranfer the request to JSP using REQUEST DISPATCHER.
  //SOMETHING LIKE THIS //
  String Newheader="Some Value";
  String NewHeaderValue="Some New Value";
  response.addHeader(NewHeader,NewHeaderValue);
  RequestDispatcher dispatcher = getServletContext().getRequestDispatcher("/auth/Some.jsp");
  and printing header in JSP , but unable to get it . Can somebody help me out.

  To what I understand is setting a header in response is not going to give you in JSP page. because in JSP what you are doing is request.getHeader.
  Response header set in a filter is for the browser. if you really want to set a header in filter and then get it back in JSP then you need to use a RequestWrapper class
  Some thing similar to this, if you notice that the getHeader method is overriden
  class RequestWrapper extends HttpServletRequestWrapper {
       String remoteUserHeaderName;
       String userName;
       public RequestWrapper(HttpServletRequest request){
            super(request);          
       public RequestWrapper(HttpServletRequest request,String remoteUserHeaderName,String userName){
            super(request);          
            this.remoteUserHeaderName = remoteUserHeaderName;
            this.userName = userName;
       @Override
       public String getHeader(String header) {
            // TODO Auto-generated method stub
            if (remoteUserHeaderName != null && userName != null && header.equals(remoteUserHeaderName)) {
                 return userName;
            else {
                 return super.getHeader(header);
  }

• OSB Http Transport Custom Authenticatiion (X509 in Http header)

  Hello!
  I'm trying to solve this case. We have F5 Load balancer that terminates SSL Connections From client to the OSB. When terminating the SSL, the LB adds the clients certificate into headers of the Http request going to OSB.
  OSb proxy service is configured to use custom authentication with token type X509 (only choice in the OSB console).
  What happens when I send the request to OSB, is that I get http code 401 (unauthorized) this error on server log:
  ####<Sep 27, 2011 3:08:05 PM EEST> <Error> <WliSbTransports> <appserver02> <MANSERV02> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <> <> <1317125285598> <BEA-381327> <Transport-level custom token identity assertion failed
  java.lang.ClassCastException: java.lang.String cannot be cast to [Ljava.security.cert.X509Certificate;
  The HTTP header sent to OSB is in the messages below.
  It has also been wihotu the BEGIN CERTIFICATE and END CERTIFICATE lines with same results.
  Can somebody help me in:
  a) Should the certificate be sent in what form from LB to OSB.
  b) How should the OSB/WLS be configured for this to work?
  OSB version is 10.3.1.
  Request to the server is:
  POST /prjTemplateService/ProxyServices/psvcHelloWolrdWSSSLInterface HTTP/1.1
  Accept-Encoding: gzip,deflate
  Content-Type: text/xml;charset=UTF-8
  SOAPAction: "urn:#HelloWorldOperation"
  User-Agent: Jakarta Commons-HttpClient/3.1
  Host: <ip_here>
  Content-Length: 459
  SSLClientCertStatus: ok
  SSLClientCertb64: -----BEGIN CERTIFICATE-----
  MIICHDCCAYUCBE2sABcwDQYJKoZIhvcNAQEEBQAwVTELMAkGA1UEBhMCRkkxCzAJ
  BgNVBAgTAkZJMQ4wDAYDVQQHEwVFc3BvbzEMMAoGA1UEChMDRVpaMQswCQYDVQQL
  EwJUQzEOMAwGA1UEAxMFSnVzc2kwHhcNMTEwNDE4MDkxMDQ3WhcNMTEwNzI3MDkx
  MDQ3WjBVMQswCQYDVQQGEwJGSTELMAkGA1UECBMCRkkxDjAMBgNVBAcTBUVzcG9v
  MQwwCgYDVQQKEwNFWloxCzAJBgNVBAsTAlRDMQ4wDAYDVQQDEwVKdXNzaTCBnzAN
  BgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEAvEPjEn3tvG3YuXlsLZnE7ZOKUJIF0Foy
  c1hp+k7dyGUoHu3Phva7eVOO1cmHaGkFHkg+EnnK3+/Y58EMQAEwPOfQTj0/vSSk
  cEx2X/2p2W7ACldJlYMxx2ZdFa1qaKTXtoieLy23/kJI+ZTfIoB+nmZiPRE9Hq8p
  LTPlcMWVFnkCAwEAATANBgkqhkiG9w0BAQQFAAOBgQC3EZMQieOy4PFh+95R6W7/
  3xaaRm/BzmEU/Wf9JweEwrnttdSmRKsxx9vSkADnD0J7jGO+koym5CWvJHbox4Sk
  QMRPFaTOBRD4hzZeJMidds1LSzUm/QE9PXzjS/HLSjBBs5DmZfdR+uXPSFqTROkd
  87R5veuPX5KeKQHs8iesTw==
  -----END CERTIFICATE-----
  SSLClientCertSN: 4d:ac:00:17
  <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:urn="urn:Hello:client">
  <soapenv:Body>
  <urn:HelloWorldRequest>
  <urn:FirstName>Jolly</urn:FirstName>
  <urn:Surname>Roger</urn:Surname>
  </urn:HelloWorldRequest>
  </soapenv:Body>
  </soapenv:Envelope>
  Response from OSB:
  HTTP/1.1 401 Unauthorized
  Connection: close
  Date: Fri, 30 Sep 2011 08:32:33 GMT
  Content-Length: 1518
  Content-Type: text/html
  X-Powered-By: Servlet/2.5 JSP/2.1
  <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Draft//EN">
  <HTML>
  <HEAD>
  <TITLE>Error 401--Unauthorized</TITLE>
  <META NAME="GENERATOR" CONTENT="WebLogic Server">
  </HEAD>
  <BODY bgcolor="white">
  <FONT FACE=Helvetica><BR CLEAR=all>
  <TABLE border=0 cellspacing=5><TR><TD><BR CLEAR=all>
  <FONT FACE="Helvetica" COLOR="black" SIZE="3"><H2>Error 401--Unauthorized</H2>
  </FONT></TD></TR>
  </TABLE>
  <TABLE border=0 width=100% cellpadding=10><TR><TD VALIGN=top WIDTH=100% BGCOLOR=white><FONT FACE="Courier New"><FONT FACE="Helvetica" SIZE="3"><H3>From RFC 2068 <i>Hypertext Transfer Protocol -- HTTP/1.1</i>:</H3>
  </FONT><FONT FACE="Helvetica" SIZE="3"><H4>10.4.2 401 Unauthorized</H4>
  </FONT><P><FONT FACE="Courier New">The request requires user authentication. The response MUST include a WWW-Authenticate header field (section 14.46) containing a challenge applicable to the requested resource. The client MAY repeat the request with a suitable Authorization header field (section 14.8). If the request already included Authorization credentials, then the 401 response indicates that authorization has been refused for those credentials. If the 401 response contains the same challenge as the prior response, and the user agent has already attempted authentication at least once, then the user SHOULD be presented the entity that was given in the response, since that entity MAY include relevant diagnostic information. HTTP access authentication is explained in section 11.</FONT></P>
  </FONT></TD></TR>
  </TABLE>
  </BODY>
  </HTML>

  >
  by using Client Cert authentication I have to set HTTPS required to true.
  >
  Yes.
  >
  When I try to invoke this service with http request, it redirects to https service.
  This actually just trashes the entire idea of terminating SSL in the load balancer.
  >
  Not necessarily. Although direct HTTP request to WebLogic is redirected to HTTPS enabled port, you can still use this settings with WebLogic plugin. I'm not aware of your deployment, but I use Apache plugin for WebLogic, terminate SSL on Apache and I'm still able to send requests authenticated by certificate from client through HTTPS.
  I don't know about F5, but I guess there should be similar feature as well.
  http://download.oracle.com/docs/cd/E12840_01/wls/docs103/cluster/load_balancing.html

• SOAP Sender Adatper - Read custom http header field

  Hello,
  i try to read a custom http header into the dynamic configuration of a message - but it is not working as expected - in ASMA i configured to get the value of MYHEADER1 into XHEADERNAME1 - when testing with a MYHEADER1 value, the value is not put into XHEADERNAME1.
  Is it possible to get custom HTTP Headers in the message?
  bf
  franz

  I have quite the same problem!
  I try to make the receiver determination based on the content of XHeaderName1, but none of the Dynamic Configuration parameters is shown in the sxi_monitor.
  I've described my scenario in more detail in this thread
  http://scn.sap.com/message/13586532#13586532
  Does anyone have an idea?

• Custom Http header in remote object

  Hi, how to set custom http header in http request while using remote object in flex?

  Thank You, Patrick.
  You are best :)
  I read this APEX_WEB_SERVICE documentation before,
  but after I read once more time
  I found most important words "global variable g_request_headers".
  I think these variables must be described more in documentation.
  On APEX I did:
  1) Create New Page -> Form -> Form and Report On Webservice Results.
  2) Set all webservice paramters in page wizard.
  3) And create a new page process after submit:
  Begin
  apex_web_service.g_request_headers(1).name := 'username';
  apex_web_service.g_request_headers(1).value := ' ... ';
  apex_web_service.g_request_headers(2).name := 'password';
  apex_web_service.g_request_headers(2).value := ' ... ';
  End;
  4) It's most important that this process must be done before the webservice process.
  Good luck

• Custom HTTP Header

  Is there any way to add custom http header (not soap header) into Soap request sending by BPEL server to soap server
  Regards
  J

  Looks like it possible via the Partner Link properties: httpUsername and httpPassword
  Check http://www.oracle.com/technology/pub/articles/bpel_cookbook/chandran.html
  Under step 4.
  Regards Pete

• Re: Passing HTTP Header Information

  I am calling a web service ( using generated client stubs)
  Is it possible to share HTTP header information to this call ?
  Sample code is :
  SimpleTestSoap echoPort = SimpleTest_Impl().getSimpleTestSoap();
  String test = echoPort.xxxxMethos();
  How do I pass an array of cookies(from the request object ) to this call ?
  Thanks

  I am calling a web service ( using generated client stubs)
  Is it possible to share HTTP header information to this call ?
  Sample code is :
  SimpleTestSoap echoPort = SimpleTest_Impl().getSimpleTestSoap();
  String test = echoPort.xxxxMethos();
  How do I pass an array of cookies(from the request object ) to this call ?
  Thanks

• Adding port in http header information??

  I have a standard HTTPS to HTTP conversion going through a CSS 11506. The CSS terminates the SSL and then passes the cleartext traffic to the backend server via port 8011. The backend server receives this traffic on port 8011 but the http header does not specify port 8011 at the end of the url (e.g. http://mywebsite.com:8011/content but only passes through http://mysebsite.com/content). The backend server thinks this traffic has come in on port 80 and reports a 302 error (redirect). Is there some way the CSS can add the :8011 port number into the http header for all traffic bound to the backend server?
  Many thanks,
  Frank

  No, there is no way to add the port to the host info.
  You can run 2 different instances of the server - each one on its own port - so they don't need to verify the port inside the http request.
  Gilles.

• Custom Inserted HTTP Header not showing up in Iplanet Logs

  ALL:
  I have some iPlanet Enterprise/6.0 web servers sitting behind a LoadBalancer. The LoadBalancer is setup in an 'one-armed mode', and takes a client HTTP request passes it onto the server, but during this process, changes the client source IP to that of local static IP that the LoadBalancer has. Due to our setup we cannot change this.
  By changing the client source IP to a local address, we have lost any useful user session tracking that was done by source IP.
  To get around this, I have the LoadBalancer inserting an HTTP header with the client real source IP. Reading the NSAPI Programmer's Guide (Table 7-1 "http://docs.sun.com/source/816-5686-10/07_magnu.htm"), there is an option "%Req->headers.headername%" that can be used with 'flex-int' to log any header value.
  My output from snoop looks as follows:
  HTTP: ----- HyperText Transfer Protocol -----
  HTTP:
  HTTP: GET /plugin.do HTTP/1.1
  HTTP: OrigClientAddr:10.5.4.28
  HTTP: Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*
  HTTP: Accept-Language: en-us
  HTTP: Accept-Encoding: gzip, deflate
  HTTP: User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
  HTTP:
  I have set the value to "%Req->headers.OrigClientAddr%" and it still does not show up in the log file. Any clues?
  Works fine in Apache with:
  LogFormat "%h %l %u %t \"%r\" %>s %b \"%{OrigClientAddr}i\" \"%{User-Agent}i\"" headerinsert
  CustomLog logs/access_log headerinsert

  Always nice to find resolution to one's own question.
  Fix was to change the header value to all lower case.
  From:
  "%Req->headers.OrigClientAddr%"
  To:
  "%Req->headers.origclientaddr%"