ESB requires "SOAPAction" to be set in HTTP header?

Similar Messages

• How to set custom HTTP header for single sign on

  Currently we just begin to use an application called "etran". This application requires user name and password to login. Now, my assignment is to integrate etran application in our internal application. This means that somewhere in our internal application, there is a link leads to the etran application.
  It is going to be single sign on, that means that once user logs into our internal application, when he/she clicks on the etran link, no sign on to etran is needed.
  I consult with the technical people in etran. they said that our internal application needs to send a "login request" to etran via SSL with the user's information encoded in base 64 format. etran captures the HTTP header containing user authentication and authorization information, and parses the required information from the HTTP header.
  My question is that how I set user information in HTTP header? From my understanding, once I am able to set the user information in HTTP header, it is in base 64 format?
  Thanks in advance for your help.

  sharon38_74 wrote:
  they said that our internal application needs to send a "login request" to etran via SSL with the user's information encoded in base 64 format. etran captures the HTTP header containing user authentication and authorization information, and parses the required information from the HTTP header.
  My question is that how I set user information in HTTP header? From my understanding, once I am able to set the user information in HTTP header, it is in base 64 format?Your application need to act like a proxy. You can invoke a HTTP request programmatically using java.net.URLConnection. You can set request headers using URLConnection#setRequestProperty(). Also see the API docs: [http://java.sun.com/javase/6/docs/api/java/net/URLConnection.html]. You only need to know the header field name where to set the Base64-encoded value in. You need to Base64-encode the value yourself.

• How do I set the Http Header POST URL in SAAJ?

  Hi ,
  I am a newbie in the field of web services. I was trying to create a SOAP request with Http Header POST information having a POST url like
  the following:
  POST /OMASTI.xml HTTP/1.1
  Content-Type: multipart/related; boundary="eladeladeladeladeladeladeladeladelad"; type=text/xml; start=11814460
  Content-Length: 54596
  Host: unspecified
  SOAPAction: ""
  to that effect I did the following in the SAAJ client:
  MimeHeaders md = message.getMimeHeaders();
            md.setHeader("SOAPAction" ,"\"\"");
            md.setHeader("POST" ,"/OMASTI.xml");
  However what I got was :
  POST / HTTP/1.1
  Accept: text/xml, text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2
  SOAPAction: ""
  POST: /OMASTI.xml
  Content-Type: multipart/related; type="text/xml"; boundary="----=_Part_2_32124414.1153146262750"
  Content-Length: 3352
  Cache-Control: no-cache
  Pragma: no-cache
  User-Agent: Java/1.5.0_07
  Host: www.google.com
  Connection: keep-alive
  I have two POSTs in the header. How do I fix it? Please Help ASAP.
  Regards,
  Zeus

  Hi,
  Please forgive my ignorance. I did the same as you said. and then checked the Http request being sent out using ethreal software... it was the same as I had told earlier. Is only POST supported by the connection object? And the does the URL that comes in the Mime header as POST refer to the URL to which the request was sent? what I mean is that if the mime header says
  POST /OMASTI.xml HTTP 1.1, does it mean that the URL that was passed to the connection object was "/OMASTI.xml" ? I had given the url as http://www.google.com to test the request being sent.. I only have a sample SOAP request which shows a HTTP header with the post url as I said before. I need to create a SOAP request with the same sort of Http header and the body needs to follow a certain OMA-STI protocol. My experience in the SOAP domain is almost nil. So please enlighten me.
  Thanks in advance,
  zeus

• Error in setting up HTTP Header Variable Authentication

  Hi,
  I am trying to set-up SSO for SAP Biller Direct aplication (deployed on SAP J2EE 7.0) using HTTP Header variable authentication.
  As per SAP documentation I have created a new login module "HeaderVariableLoginModule" pointing to class "com.sap.security.core.server.jaas.HeaderVariableLoginModule".
  Then I have added this new login module to Statck "Ticket" and the new config looks as below. HTTP header when UID is passed is USI_LOP.
  Name                                                                                Flag                                            Options
  com.sap.security.core.server.jaas.HeaderVariableLoginModule    Sufficient                                    ume.configuration.active= tue,
                                                                                  Header=USI_LOP
  BasicPasswordLoginModule                                                           Optional
  CreateTicketLoginModule                                                                 Optional                                         ume.configuration.active= tue
  EvaluateTicketLoginModule                                                              Sufficient                                      ume.configuration.active= tue
  The problem I am now having is that the authentication through HTTP_HEADEr does not work. Even though I ahve increased the trace level for JAAS module to debug, there is not any type of information generated in the log.
  Each time I call the Biller Direct URL from the extrenal web server which also passes the HEADER variable for Authntication, the authrisation just fails and I am being shown a Logon Screen to pust UID/PASSWORD.
  Can someone please guide me, how I can debug this? There is very no information whether anyone tried to login with HEADER varibale and that has failed...
  Also, I am not pretty sure whether I am using the right Authentication Stack, which is is Ticket in my case..
  But when I enter the application without any URL redirects and enter UID and password directly for Biller Direct, I get the following in log file, which makes me believe that I am using the right stack.
  LOGIN.OK
  User: CONDLG
  Authentication Stack: ticket
  Login Module                                                               Flag        Initialize  Login      Commit     Abort      Details
  1. com.sap.security.core.server.jaas.HeaderVariableLoginModule             SUFFICIENT  ok          false      false                
  2. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule   OPTIONAL    ok          true       true                 
  3. com.sap.security.core.server.jaas.CreateTicketLoginModule               OPTIONAL    ok          true       true                 
  4. com.sap.security.core.server.jaas.EvaluateTicketLoginModule             SUFFICIENT  ok          false      false                
  Central Checks                                                                                true                 
  Any help will be very much apprecated..
  Thanks,
  Vikrant Sud

  Vikrant,
  The reason why it is not working is because your login modules in ticket stack are in wrong order and with wrong flags. The first one should be EvaluateTicketLoginModule with flag=SUFFICIENT, then the Header Variable login module, with flag=OPTIONAL, then CreateTicketLoginModule with flag=SUFFICIENT, then BasicPasswordLoginModule with flag=REQUISITE, and lastly CreateTicektLoginModule with flag=OPTIONAL
  Thanks,
  Tim

• Content-Type is net being set in HTTP header. Server returns 400 Bad Request error.

  Hi,
  I am trying to access an XML WebService. This service requires the content type of the request to be set to "text/xml". As you can see in the source code, I am setting the req.ContentType property to "text/xml".
  However, this content type seems not to be added to the HTTP headers. The server returns a 400 Bad Request error as can be seen in the log.
  I've attached a System.Net.trace log and it states:
  [Public Key]
  Algorithm: RSA
  Length: 2048
  Key Blob: 30 82 01 0a 02 82 01 01 00 bc 09 30 8a 1e 03 4d 7a ea 16 d3 a8 5e d8 5b 00 c4 8a c5 9f 26 bd 7d d6 cb 8b d0 db bd 93 2d 2b 3b 84 f6 20 79 83 34 67 51 37 21 ea 56 5e 18 d8 a3 db 72 43 0e 14 77 e2 64 cb 07 b6 2a 81 c7 f5 16 dd 19 c7 d9 68 0b 3a 81 5c f0 05 c9 ed 2b 37 00 31 41 37 8b 3a 73 4a 4d ab d7 d8 87 79 35 82 01 97 e3 3c be bb 84 e5 94 bb 87 52 e3 9f b5 fb 3e 33 38 c3 eb 73 42 ee ba 1e c5 4a 33 18 a1 0d 8a d2 10 a8 c5 3....
  System.Net Information: 0 : [26780] SecureChannel#31884011 - Remote certificate was verified as valid by the user.
  System.Net Information: 0 : [26780] ConnectStream#26966483 - Sending headers
  API-VERSION: 1
  Host: test.myhost.com
  Content-Length: 329
  Expect: 100-continue
  Connection: Keep-Alive
  System.Net Information: 0 : [26780] Connection#3888474 - Received status line: Version=1.1, StatusCode=100, StatusDescription=Continue.
  System.Net Information: 0 : [26780] Connection#3888474 - Received headers
  System.Net Information: 0 : [26780] Connection#3888474 - Received status line: Version=1.1, StatusCode=400, StatusDescription=Bad Request.
  System.Net Information: 0 : [26780] Connection#3888474 - Received headers
  0: Content-type
  1: text/xml
  X-Debug-Token: a810dc
  X-Debug-Token-Link: /service/_profiler/a810dc
  Connection: keep-alive
  Content-Length: 3440
  Cache-Control: no-cache
  Content-Type: text/html; charset=UTF-8
  Date: Tue, 14 Apr 2015 11:07:11 GMT
  Server: Apache
  ...and here's the implementation of the web request:
  private void ButtonSend_Click(object sender, EventArgs e)
  WebHeaderCollection whCol = new WebHeaderCollection();
  whCol.Add("API-VERSION", "1");
  //whCol.Add("Content-Type", "text/xml; charset=UTF-8"); <-- That doesn't work in .NET. Content-Type has to be set on the ContentType-Property
  string msg = _textBoxReq.Text;
  HttpWebRequest req = (HttpWebRequest)WebRequest.Create(_textBoxURL.Text);
  byte[] data = Encoding.UTF8.GetBytes(msg);
  req.Method = "POST";
  req.ContentType = "text/xml; charset=UTF-8";
  req.ContentLength = data.Length;
  req.Headers = whCol;
  req.GetRequestStream().Write(data, 0, data.Length);
  string xml = "";
  try
  using (HttpWebResponse resp = (HttpWebResponse)req.GetResponse())
  using (System.IO.StreamReader sr = new System.IO.StreamReader(resp.GetResponseStream()))
  xml = sr.ReadToEnd().Trim();
  catch (WebException we)
  using (System.IO.StreamReader sr = new System.IO.StreamReader(we.Response.GetResponseStream()))
  xml = sr.ReadToEnd().Trim();
  _textBoxRes.Text = xml;
  Can anyone help?
  Thanks,
  MiRi

  Hi _MiRichter,
  Well Done!
  Thank you very much for sharing the solution to us.
  Best Regards,
  Amy Peng
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• How to Set UserId in Http Header for SSO?

  Hello All,
  I have a requirement to set the userid into the HTTP Header so that i can use the "Header Variables for User Authentication" module provided by SAP to achieve the SSO .
  Could some 1 let me know how can I achieve this? I know abt the HTTPServlet.setheader() method, But i need to set it using my JAVA application. Is there any way to set the HTTP Header using Java. I have already done a lot of googling, but havent got any results.
  I am sure that, there must definitely be a way in which we can add the user id into the HTTP header, in all the results, they tell abt adding it using the HTTP Servlet or PHP and so on, but i need to add it from JAVA.(setting REMOTE_USER as "mysapuserid")
  I have already added the "HeaderVariableLoginModule" in my login stack in the 2nd position, as per
  http://help.sap.com/saphelp_nw04/helpdata/en/8f/ae29411ab3db2be10000000a1550b0/frameset.htm
  Any pointers will be helpful,
  Meghana
  Edited by: Meghana Phadke on Apr 14, 2008 2:49 PM

  Hi
  As I understand, your java application is an EP client, check framework HttpClient :
  http://hc.apache.org/httpclient-3.x/
  http://hc.apache.org/httpclient-3.x/tutorial.html
  Hope this help
  Jakub Krecicki

• HTTP Header SOAPAction Problem

  hi Everyone,
  this is an extract of my test soap program:
  SOAPConnectionFactory soapfactory = SOAPConnectionFactory.newInstance();
  SOAPConnection connection = soapfactory.createConnection();
  URL endpoint = new URL("http://url.asmx");
  MessageFactory messagefactory = MessageFactory.newInstance();
  SOAPMessage message = messagefactory.createMessage();
  SOAPPart soapPart = message.getSOAPPart();
  SOAPEnvelope envelope = soapPart.getEnvelope();
  SOAPBody body = envelope.getBody();
  soapFactory = SOAPFactory.newInstance();
  Name insertNewUser = soapFactory.createName("insertNewUser","","namespace");
  SOAPBodyElement bodyElement = body.addBodyElement(insertNewUser);
  response = connection.call(message, endpoint);
  response.writeTo(System.out);
  connection.close();when i send the call, this the response from the server:
  <?xml version="1.0" encoding="utf-8"?>
  <soap:Envelope xmlns:soap="...">
  <soap:Body>
  <soap:Fault>
  <faultcode>soap:Client</faultcode>
  <faultstring>Server did not recognize the value of HTTP Header SOAPAction:.</faultstring>
  <detail />
  </soap:Fault>
  </soap:Body>
  </soap:Envelope>
  This is my question:
  How can I set the HTTP Header SOAPAction?
  Thanks.
  Roberto

  Hi try out the following code.
  MimeHeaders hd = message.getMimeHeaders();
  hd.addHeader("SOAPAction", "http://tempuri.org/HelloWorld");This will add the SOAP Action header to ur HTTP headers.
  Regards
  Aditya

• Setting a response header in a CQ5 publishing instance

  I want to disable caching in a CQ component and I have the following line in my jsp (documentation):
  response.setHeader("Dispatcher", "no-cache");
  If I insert the component in a page and load the page in an authoring instance everything works as expected and I get an HTTP header named Dispatcher with the content no-cache.
  Now if I do the same on a publishing instance (same configuration with CQ_RUNMODE='publish' and same content) the component works but for setting the HTTP header.
  Any idea on why the two instances could behave differently?

  I checked that the code is published and I tried to generate a minimal example.
  While removing unnecessary stuff from the page I noticed that after a given threshhold the header is generated.
  This buy just removing HTML (no code). I reach a point where if I remove a simple
  <div></div>
  the page is correctly delivered with the header, if I insert it back the header is no more there.
  Could this be related to HTTP chunking? If yes how can I disable it to debug?

• Custom Http header in remote object

  Hi, how to set custom http header in http request while using remote object in flex?

  Thank You, Patrick.
  You are best :)
  I read this APEX_WEB_SERVICE documentation before,
  but after I read once more time
  I found most important words "global variable g_request_headers".
  I think these variables must be described more in documentation.
  On APEX I did:
  1) Create New Page -> Form -> Form and Report On Webservice Results.
  2) Set all webservice paramters in page wizard.
  3) And create a new page process after submit:
  Begin
  apex_web_service.g_request_headers(1).name := 'username';
  apex_web_service.g_request_headers(1).value := ' ... ';
  apex_web_service.g_request_headers(2).name := 'password';
  apex_web_service.g_request_headers(2).value := ' ... ';
  End;
  4) It's most important that this process must be done before the webservice process.
  Good luck

• How can I set "SOAPAction" http header using SAAJ

  When I send soap request, http header's like below
  SOAPAction: ""
  But, I'd like to send like this
  SOAPAction: "http://tempuri.org/HelloWorld"
  How can I that using SAAJ ?
  My code is
  String xml = "<?xml version=\"1.0\" encoding=\"utf-8\"?>\n" +
  "<soap:Envelope xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xmlns:xsd=\"http://www.w3.org/2001/XMLSchema\" xmlns:soap=\"http://schemas.xmlsoap.org/soap/envelope/\">\n" +
  " <soap:Body>\n" +
  " <HelloWorld xmlns=\"http://tempuri.org/\" />\n" +
  " </soap:Body>\n" +
  "</soap:Envelope>";
  Document doc = DocumentBuilderFactory.newInstance().newDocumentBuilder().parse(new ByteArrayInputStream(xml.getBytes()));
  DOMSource domSource = new DOMSource(doc);
  SOAPMessage message = MessageFactory.newInstance().createMessage();
  message.setProperty(SOAPMessage.CHARACTER_SET_ENCODING, "utf-8");
  message.setProperty(SOAPMessage.WRITE_XML_DECLARATION, "true");
  message.getSOAPPart().setContent(domSource);
  message.writeTo(System.out);
  SOAPConnection connection = SOAPConnectionFactory.newInstance().createConnection();
  SOAPMessage response = connection.call(message, helloURL);
  connection.close();
  SOAPBody body = response.getSOAPBody();
  if ( body.hasFault() )
  SOAPFault newFault = body.getFault();
  System.out.println("SoapBody has fault.");
  System.out.println("code=" + newFault.getFaultCodeAsName());
  System.out.println("message=" + newFault.getFaultString());
  System.out.println("actor=" + newFault.getFaultActor());
  else
  System.out.println("Call Successed.");
  System.out.println(body);
  }

  message.getMimeHeaders().addHeader("SOAPAction", "http://tempuri.org/HelloWorld");

• Setting HTTP header in soapMessage

  Hi,
  How can i set an specific HTTP header when using a SOAPConnection to send a SOAPMessage ?
  Please help,
  Pieter
  ps: it the Authorization header, so without it the other part won't accept my post !

  Pieterrr/ddossot
  I need to do the same thing. I have the code in place but it is still not adding the MimeHeaders to HTTPRequest object. I have the jxm-api.jar, and saaj-api.jar in my classpath.
  What am i doing wrong?
  This is my code
            try{
            // Create SOAP message
            MessageFactory factory = MessageFactory.newInstance();
            SOAPMessage message = factory.createMessage();
            // Create SOAP envelope
            SOAPPart soapPart = message.getSOAPPart();
            SOAPEnvelope envelope = soapPart.getEnvelope();
            SOAPHeader hh = envelope.getHeader();
            MimeHeaders headers = message.getMimeHeaders();
                      SOAPHeader     soapHeader = message.getSOAPHeader();
                      //headers.removeHeader("soapaction");
            headers.setHeader("soapction", "http://tempuri.org/GetData");
            String Hdr_Version_Name = "Version";
            String Hdr_Version_Value = "1.0";
            String Hdr_OnBehalfOf_Name = "OnBehalfOf";
            String Hdr_OnBehalfOf_Value = "";
            String Hdr_Role_Name = "Role";
            String Hdr_Role_Value = "1";
            String Hdr_EndPoint_Name = "EndPoint";
            String Hdr_EndPoint_Value = "001";
            String Hdr_ServiceId_Name = "ServiceId";
            String Hdr_ServiceId_Value = "001";
            String Hdr_DateTime_Name = "DateTime";
            String Hdr_DateTime_Value = "10/22/02";
            String Hdr_ClientApplication_Name = "ClientApplication";
            String Hdr_ClientApplication_Value = "APP001";
            String Hdr_TraceWebMethod_Name = "TraceWebMethod";
            String Hdr_TraceWebMethod_Value = "false";
            String Hdr_ClientTouchPoint_Name = "ClientTouchPoint";
            String Hdr_ClientTouchPoint_Value = "ClientTouchPoint";
            String Hdr_ChannelInfo_Name = "ChannelInfo";
            String Hdr_ChannelInfo_Value = "ChannelInfo";
            String Hdr_Environment_Name = "Environment";
            String Hdr_Environment_Value = "WINOS";
            String Hdr_USER_Name = "MUSER";
            String Hdr_USER_Value ="";
            String Hdr_SESSIONID_Name = "SESSIONID";
            String Hdr_SESSIONID_Value ="";
            String SAML_ASSERTION_Cookie_Name = "SAML_ASSERTION";
            String SAML_ASSERTION_Cookie_Value ="";
            String Hdr_tmsasessionticket_Name = "http_tmsamlsessionticket";
            String Hdr_tmsasessionticket_Value = token;
            headers.setHeader(Hdr_Version_Name,Hdr_Version_Value);
            headers.setHeader(Hdr_OnBehalfOf_Name,Hdr_OnBehalfOf_Value);
            headers.setHeader(Hdr_Role_Name,Hdr_Role_Value);
            headers.setHeader(Hdr_EndPoint_Name,Hdr_EndPoint_Value);
            headers.setHeader(Hdr_ServiceId_Name,Hdr_ServiceId_Value);
            headers.setHeader(Hdr_DateTime_Name,Hdr_DateTime_Value);
            headers.setHeader(Hdr_ClientApplication_Name,Hdr_ClientApplication_Value);
            headers.setHeader(Hdr_TraceWebMethod_Name,Hdr_TraceWebMethod_Value);
            headers.setHeader(Hdr_ClientTouchPoint_Name,Hdr_ClientTouchPoint_Value);
            headers.setHeader(Hdr_ChannelInfo_Name,Hdr_ChannelInfo_Value);
            headers.setHeader(Hdr_Environment_Name,Hdr_Environment_Value);
            headers.setHeader(Hdr_USER_Name,Hdr_USER_Value);
            headers.setHeader(Hdr_SESSIONID_Name,Hdr_SESSIONID_Value);
            // Necessary For Secure method
            headers.addHeader(Hdr_tmsasessionticket_Name, Hdr_tmsasessionticket_Value);
                 headers.addHeader("otc_header", "otcderiv");
            envelope.addNamespaceDeclaration("xsi","http://www.w3.org/2001/XMLSchema-instance");
            envelope.addNamespaceDeclaration("xsd","http://www.w3.org/2001/XMLSchema");
            envelope.addNamespaceDeclaration("soap","http://schemas.xmlsoap.org/soap/envelope/");
            boolean rem = envelope.removeNamespaceDeclaration("soapenv");
            SOAPBody body = envelope.getBody();
            soapPart.setContentId("");
            Name bodyName = envelope.createName("GetData", "", "http://tempuri.org/");
            SOAPBodyElement createuser = body.addBodyElement(bodyName);
            SOAPConnectionFactory scFactory = SOAPConnectionFactory.newInstance();
            message.saveChanges();
            SOAPConnection con = scFactory.createConnection();
            URL endpoint = new URL("http://abc.xyz.com/securitymanager.asmx");
            System.out.println("INPUT=" + envelope.toString());
            SOAPMessage responsex = con.call(message, endpoint);
            // print the response message
            ByteArrayOutputStream soapResponseStream = new ByteArrayOutputStream();
            responsex.writeTo(soapResponseStream);
            String sOutput = soapResponseStream.toString();
            //System.out.println("OUTPUT=" + sOutput);
            System.out.println(sOutput);
            }catch(Exception e)
            e.printStackTrace();
            }

• Server did not recognize the value of HTTP Header SOAPAction: .

  hello friends,
  I am wrote a WebService client as below
  import org.apache.axis.client.Call;
  import org.apache.axis.client.Service;
  import javax.xml.namespace.QName;
  public class AtmuClient
  public static void main(String [] args) {
  try {
  String req="request";
  String endpoint ="http://10.1.3.104/mims/service.asmx?WSDL";
  String nameSpaceUri = "http://www.cum.com/MIMS";
  Service service = new Service();
  Call call = (Call) service.createCall();
  call.setTargetEndpointAddress( new java.net.URL(endpoint) );
  call.setOperationName(new QName(nameSpaceUri, "echoString") );
  String ret = (String) call.invoke( new Object[] { req } );
  System.out.println("Sent 'Hello!', got '" + ret + "'");
  } catch (Exception e) {
  System.err.println(e.toString());
  the out put I am getting is
  Server did not recognize the value of HTTP Header SOAPAction: .
  what still I need to incorporate to my code. Do i need to add any methods still ? and one more thing is do i need to write WSDD for this? how ?. can any bady guide me
  thanQ for any greatful guidance.
  HAN.

  Try setting an empty header object for the Call
  SOAPContext ctx = new SOAPContext();
       Header header = new Header();
       Call call = new Call("", "", params, header, "", ctx);   Regards
  Byju Joy

• How to set Custom HTTP headers in HTTP binding?

  How to set custom HTTP headers before sending the Rest based request in HTTP binding?

  sharon38_74 wrote:
  they said that our internal application needs to send a "login request" to etran via SSL with the user's information encoded in base 64 format. etran captures the HTTP header containing user authentication and authorization information, and parses the required information from the HTTP header.
  My question is that how I set user information in HTTP header? From my understanding, once I am able to set the user information in HTTP header, it is in base 64 format?Your application need to act like a proxy. You can invoke a HTTP request programmatically using java.net.URLConnection. You can set request headers using URLConnection#setRequestProperty(). Also see the API docs: [http://java.sun.com/javase/6/docs/api/java/net/URLConnection.html]. You only need to know the header field name where to set the Base64-encoded value in. You need to Base64-encode the value yourself.

• Which OAM setting for passing values in HTTP header to application

  Experts, what is the setting in OAM 11gR2 that is set to pass a userid pulled from a LDAP directory (which is already configured with OAM) as a HTTP Header to an application.
  This is typically in cases where OAM is protecting or providing to protected resources on a Web Server or application.
  Is this setting (in OAM) by default set to userid? I wanted to know exactly where and how to set this value in OAM Console settings.

  In the protected resource policy and protected authorization policy in the responses tab set parameters to return headers for example if you want to return userid under name set header name like user_name, type header and the value as $user.userid. By default I guess OAM_REMOTE_USER is set in the http headers which contains the user id.

• Problem setting Unicode (utf-8) in http header using tomcat

  Hi:
  I am trying to set a file name in utf-8 to http header using the following code:
  response.setContentType("text/html; charset=utf-8");
  response.setHeader("Content-disposition", "attachment; filename=&#35299;&#27770;.zip");
  // I actually has file name in utf-8 here to set to the header, and I know that the name is correctly
  // and I also looked into the response object MimeHeaders object and saw the head is correctly there
  then write the content of zip file using ServletOutputStream.
  The problem I have is that the file name is not displayed correctly when prompted to save or open in the pop up window next. I found out using Fiddler that the request header is wrong:
  Content-disposition: attachment; filename=&#65533;zn&#65533;�.zip
  I am using Tomcat 5.0.28. Any idea how to get this working?
  Thanks in advance!

  You are setting the charset for the content to be UTF-8. (That is why the method is called setContentType.) But HTTP headers are not part of the content and so that has no effect on the header.
  The original specification for HTTP only allowed US-ASCII characters in headers. It is possible that more recent versions have features that allow for non-ASCII header data, but I don't know if that is the case or how you would use those features if they exist.