HTTP Header parameters in iView.

Similar Messages

• What happened to my HTTP header parameters??

  The dispatcher in front of the NW WAS is eating the HTTP header parameters that our tool puts in the HTTP header before sending the request.  Is there a way to tell the dispatcher to not drop our stuff?  Perhaps a configuration setting?  I didn't find any.
  Our tool puts some parameters into the HTTP header.  When I set a break in my servlet running on NW WAS, I see:
      referer:
      Cookie:
      etc.
  but I don't see the parameters we put there. 
  This is the NW SneakPreview download.

  Hi Farokh,
  I think there should be much problem passing parameters  through the Url. I am sorry however that I have not worked much on the Servlet but on WebDynpro, which I can share with you if its of any use to you.
  Regards
  Noufal

• What happens to the HTTP header parameters I put there?

  Our tool puts some parameters into the HTTP header. But, it appears that the Dispatcher is not passing them to the WAS.  Could this be?
  Is there a way to tell the Dispatcher to not drop our HTTP header stuff? Perhaps a configuration setting? I didn't find any.
  When I set a break in my servlet running on NW WAS, I see:
  referer:
  Cookie:
  etc.
  but I don't see the parameters we put there.
  This is the NW SneakPreview download.

  Hi Farokh,
  I think there should be much problem passing parameters  through the Url. I am sorry however that I have not worked much on the Servlet but on WebDynpro, which I can share with you if its of any use to you.
  Regards
  Noufal

• Can I send an HTTP Header from an iView

  Hello Developers,
  I'm trying to run an external web application from a URL iView.  In the URL I point it to a reverse proxy that starts the web application.  The reverse proxy requires a user name in the field HTTP_USER.  Sending a value as a URL Parameter doesn't work.
  My question is, can I include the Portal users name in a HTTP Header and sendt the Header from the iView?
  Thank you

  Hello,
  you can get the servlet response and set a header value using the following code :
  HttpServletResponse res = aRequest.getServletResponse(true);
  res.setHeader("header name","header value");
  Hope it helps.
  Regards
  Guillaume

• Adding HTTP Header parameters

  Hi , Can someone please throw some light on how we can add a new parameter in HTTP header for a WSDL call. I will be using a Web-service adapter to invoke a wsdl and the requirement is to pass a HTTP Header parameter with each call, this parameter would be interpreted by an intermediary system before the call actually goes to target system.

  In 10.1.3.5, there were several examples or samples in the Oracle BPEL folder. I think there were ones called HTTPGetService and HTTPPostService. You might check to see if they are still around.

• Parameters from HTTP header and HTTP parameter

  All,
  I am very new to APEX. Our new application needs to get two values, one from a HTTP header and the second from a HTTP parameter. I do not know how to do this. Is there an existing function like GET_HTTP_HEADER.val?
  Thanks for any help.
  Fred

  user7183753 wrote:
  Andy,
  Thanks for the quick reply. The OWA_UTIL will give me static information.owa_util.get_cgi_env should be able to get any http header information that you require.
  You can modify the dads.conf file to allow non-standard HTTP headers to be passed through, you add a PlsqlCGIEnvironmentList entry e.g.
  PlsqlCGIEnvironmentList AuthorizedUser
  If your users access an external URL to be authenticated and then that external system forwards to you with the new header showing the authenticated user name, you could pick up that 'AuthorizedUser' header as part of your own authentication mechanism.

• Any way to get HTTP header in web dynpro Java?

  Is there any way to get HTTP header in web dynpro java? This method gives me the params. Is params same as header? It doesn't have any way to retrieve header data. I am on NW 7.0.19
  WDProtocolAdapter.getProtocolAdapter().getRequestObject().getParameter("param");

  Dear Faraz,
  I'm afraid the code you've pasted is only to retrieve URL parameters.
  Have you tried this document to see if it offers any good hint:
  [http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/b0446f5c-fcb9-2910-e082-88becbe3ddc9]
  Not sure if you can process the HTTP header with a WD4J.
  An alternative could be to develop some Portal component in plain JAVA working as a proxy to call your WD4J afterwards.
  That portal component would process your HTTP header and forward any parameter to your WD4J.
  But this is me just guessing.
  Kind Regards
  /Ricardo

• Which OAM setting for passing values in HTTP header to application

  Experts, what is the setting in OAM 11gR2 that is set to pass a userid pulled from a LDAP directory (which is already configured with OAM) as a HTTP Header to an application.
  This is typically in cases where OAM is protecting or providing to protected resources on a Web Server or application.
  Is this setting (in OAM) by default set to userid? I wanted to know exactly where and how to set this value in OAM Console settings.

  In the protected resource policy and protected authorization policy in the responses tab set parameters to return headers for example if you want to return userid under name set header name like user_name, type header and the value as $user.userid. By default I guess OAM_REMOTE_USER is set in the http headers which contains the user id.

• ESB requires "SOAPAction" to be set in HTTP header?

  I'm trying to insert an ESB flow between an existing web service and client. The service and client were previously built with Apache Axis.
  By generating an appropriate WSDL (doc/wrapped rather than Axis' default RPC style) for the existing service, I'm able to connect the ESB to the service.
  The problem is that the existing client (built using Axis) sets the SOAPAction in the HTTP header to empty (SOAPAction: ""), and the ESB appears to require this to be set to the desired operation. If this is a hard requirement, then I can't directly connect the existing client to the ESB flow.
  So, the question is whether it's possible to have the ESB relax the requirement for the SOAPAction header. And if so, how?
  If I can't get the ESB to accept SOAP requests with an empty SOAPAction, then I'll have to create a custom adapter or insert an additional proxy layer (yuk). Anyone else have any suggestions?

  This is all done automatically by FB.
  Just to try something out I just now made a simple app with a label only and tried to upload to Google... FAILED!!!!
  "Market requires versionCode to be set to a positive 32-bit integer in AndroidManifest.xml"
  LOL, FB can't even create this. :-/
  <?xml version="1.0" encoding="utf-8" standalone="no"?>
  <application xmlns="http://ns.adobe.com/air/application/3.1">
  <!-- Adobe AIR Application Descriptor File Template.
            Specifies parameters for identifying, installing, and launching AIR applications.
            xmlns - The Adobe AIR namespace: http://ns.adobe.com/air/application/3.1
                                The last segment of the namespace specifies the version
                                of the AIR runtime required for this application to run.
            minimumPatchLevel - The minimum patch level of the AIR runtime required to run
                                the application. Optional.
  -->
  Message was edited by: KesherMedia.Com

• SOAP Sender Adatper - Read custom http header field

  Hello,
  i try to read a custom http header into the dynamic configuration of a message - but it is not working as expected - in ASMA i configured to get the value of MYHEADER1 into XHEADERNAME1 - when testing with a MYHEADER1 value, the value is not put into XHEADERNAME1.
  Is it possible to get custom HTTP Headers in the message?
  bf
  franz

  I have quite the same problem!
  I try to make the receiver determination based on the content of XHeaderName1, but none of the Dynamic Configuration parameters is shown in the sxi_monitor.
  I've described my scenario in more detail in this thread
  http://scn.sap.com/message/13586532#13586532
  Does anyone have an idea?

• Http header setting in servlet

  Hello,
  I want to set the header parameters of http response in my servlet.
  I set parameters as below:
            theResponse.setHeader("Request Version", "HTTP/1.1");
            theResponse.setStatus(200);
            theResponse.setHeader("Date", "Wed, 18 Apr 2007 09:24:04 GMT");
            theResponse.setHeader("Server", "Tomcat");
            theResponse.addCookie(theRequest.getCookies()[0]);
            theResponse.setHeader("pragma", "no-cache"); // HTTP 1.0
            theResponse.setHeader("Cache-Control", "no-cache"); // HTTP 1.1
            theResponse.setHeader("Expires", "Mon, 26 Jul 1997 05:00:00 GMT"); // a past date
            theResponse.setDateHeader("Last-Modified", (new java.util.Date()).getTime());
            theResponse.setHeader("Connection", "close");
            theResponse.setContentType("text/plain");
  //some other things...
            PrintWriter aPrintWriter = theResponse.getWriter();
            aPrintWriter.write("this is the string to be put into the body part of the http packet.");
  However, I am checking what I am sending as response using the ethereal network sniffing tool and seeing the result below:
  HTTP/1.1 200 OK\r\n
  Request Version: HTTP/1.1
  Response Code: 200
  Server: Apache-Coyote/1.1\r\n
  Content-Length: 68\r\n
  Date: Tue, 24 Apr 2007 17:55:10 GMT\r\n
  \r\n
  Data (68 bytes)
  I am setting header parameters as it should be.. But it doesn't care about my parameters and Tomcat puts some values that it selects..
  Where is my fault? Can anyone recommend sth please..? I am really stucked here..
  Thanks & Regards

  Hello,
  It looks like your question is really related to Tomcat (coyote). However if you want to control the server name on OC4J you can do it, see this blog entry:
  - OC4J tip: changing the server information
  Regards
  Tugdual Grall

• SSO to other apps via HTTP header variable

  We are on NW EP6.0 SP16. We need to add the "user id" as http header variable so that other apps which are non SAP can access our header variable and log on with that user id. Is this available by default? Or we want to achieve this how best we can achieve this.
  We can use the code to get the user id and add it to header variable. If we use this route which is the jsp page we need to add the code?
  Thanks

  Hi,
    we can you login modules provided by SAP to accomplish this.. you can use header variable authentication login module to acheive your requirement.
    please refer: http://help.sap.com/saphelp_nw04/helpdata/en/8f/ae29411ab3db2be10000000a1550b0/frameset.htm
  Hope that helps.
  Regards,
  S.Divakar

• Single-Sign-On (SSO) configuration on JAVA Stack through HTTP Header method

  Hello SDN community,
  in the context of a Proof of Concept, we are testing the integration of Microsoft Sharepoint Portal with SAP Backend (addin) systems.
  As the architecture impose use an external scenario (access from the internet), we couldn't use the Kerberos (SPNego) solution and thus we chosed the http header solution which in short uses an intermediary web server (in this case the IIS of the MOSS solution) which will act as authority.
  I miss information on how the workflow works for this http header authentication method. Through the visual administrator of the addin JAVA stack, it is possible to configure each application with a customized authentication (a choice of security modules). But this all that I know.
  My task is to configure SSO. From a sharepoint portal, the user should be able to access Web Dynpros and BSPs. I imagine that the very first call to a webdynpro or bsp (or maybe when we log on the sharepoint portal), the request to the WDP or BSP will first be forwareded by the intermediary server to the JAVA stack (or is it the SAP dispatcher that has to be configured).
  Is there an application to be built on the java stack to deal with the authentication, modify http header?
  What will the Java stack return? a sap long ticket? a token?
  How will the redirect work (to by example a BSP which is in the ABAP stack)?
  SAP preconise to secure with SSL the link between the intermediary web server and the JAVA stack, is IP restriction also a solution?
  A lot of questions about how this SSO http header should work,
  I would be very greatful for any help, or info,
  Kind regards,
  Tanguy Mezzano

  Hi Tanguy,
  to tell you the truth I'm really unsure about what you are trying to achieve. When I started posting to your thread I thought all you wanted was trying to access your J2EE engine via Browser and authenticate against the engine using HTTP Header Variables. Nevermind:
  Here are some answers to your question:
  in fact I did succeed, the problem was that even after domain-relaxation done by the J2EE, I had to change the domain of th SAP cookie to the bbbb.domain.com to be understood (I would have thought that all hosts in/under domain .domain would have accepted such a cookie but it seems that no...).
  The server does not care about the domain because Cookies in an HTTP Request do not contain any domain information. The domain is just important when the Cookie is set by the server so your Client (Browser) will know in which cases the Cookie may be sent or not. So if your domain is xxx.yyy.domain.com and your cookie is issued to .domain.com then your Browser will definitely sent it to all hosts under .domain.com (This includes xxx.yyy.domain.com etc.)
  My current scenario is: in a first request get a SAP Logon Ticket from the Java Stack, then change its domain and then directly call the backend with it.
  You can do that but there is no Client involved in this scenario. So this is useful if you just want to test the functionality (e.g. authentication to J2EE using Header Variables (This works finally!!!) and then use the fetched Logon Ticket to test SSO against any trusted Backend!!)
  So everything's is in a Java Client application without using any redirection.
  If I understand you, you're solution is from the Browser call a servlet (which is deployed on the Java Stack and has no authentication schema) by passing to it our http header.
  No, you should initially authenticate somewhere! I thought that maybe you had some resource you access before accessing the Java Stack. This could be any application (e.g. deployed on a Tomcat or JBOSS or other server or if you like even SAP J2EE). After authenticating there you are aware of the username and could use it to  procceed (e.g. Authenticate against the J2EE using the same user and HTTP Header authentication for that particular user!)
  That servlet will transfer the http header (with the HttpClient app) in order to get from the Java Stack a SAP Logon ticket, and then to redirect to the resource and by sending back the cookie in client browser. Am I correct?
  This was just a suggestion because I realized that there was no Client ever involved in any of your testing (looked strange to me!). I was just thinking that it would be easier for you to just get the Cookie into your Browser so your Browser would do the rest for you (in your case finally send the Logon Ticket Cookie to your Backend to test SSO using Logon Tickets!).
  The AuthenticatorServlet somehow serves as a Proxy to your client because your client is not able to set the Header Variable. That's why I initially suggested to use a Proxy (e.g. Apache) for that purpose. The problem is just that if you use a Proxy you will have to tell it somehow which username it should set in the Header Variable (e.g. using a URL Parameter or using a personalized client certificate and fetch the username (e.g. cn=<username> from the certificate!)
  This way of doing would simplify the calls for sso for each new application needing authentication, instead of having all code each time in it...
  I'm stuck again! Do you want to authenticate an End User or do you want to authenticate an application that needs to call any resources in your Backend that requires authentication?
  So my problem now, is how to call the servlet from the client browser:
  I'm trying to call my servlet from the browser but I don't succeed. I am able to understand how to reach a jsp from the Java Stack, but not to reach a servlet. I don't find the path to my servlet:
  <FORM method="POST" action="SSORedirect2" >
  A JSP is a servlet too. There is just no JAVA Class involved!
  You do not need any POST Request to invoke a Servlet.
  I see that my servlet is deployed, but I don't how what path to give to my form to invoke the servlet, here follows my web.xml
    <?xml version="1.0" encoding="UTF-8" ?>
    <!DOCTYPE web-app (View Source for full doctype...)>
  - <web-app>
    <display-name>WEB APP</display-name>
    <description>WEB APP description</description>
  - <servlet>
    <servlet-name>SSOredirect2</servlet-name>
    <servlet-class>com.atosorigin.examples.AuthenticatorServlet</servlet-class>
    </servlet>
  - <servlet>
    <servlet-name>SSORedirect2.jsp</servlet-name>
    <jsp-file>/SSORedirect2.jsp</jsp-file>
    </servlet>
  - <security-constraint>
    <display-name>SecurityConstraint</display-name>
  - <web-resource-collection>
    <web-resource-name>WebResource</web-resource-name>
    <url-pattern>/*</url-pattern>
    <http-method>GET</http-method>
    <http-method>POST</http-method>
    </web-resource-collection>
  - <auth-constraint>
    <role-name>DefaultSecurityRole</role-name>
    </auth-constraint>
    </security-constraint>
  - <security-role>
    <role-name>DefaultSecurityRole</role-name>
    </security-role>
    </web-app>
  If you have an AuthenticatorServlet Class all you need is to add the Servlet Mapping in your web.xml file
  e.g.
  <servlet>
    <description>
    </description>
    <display-name>AuthenticatorServlet</display-name>
    <servlet-name>AuthenticatorServlet</servlet-name>
    <servlet-class>com.atosorigin.examples.AuthenticatorServlet</servlet-class>
  </servlet>
  <servlet-mapping>
    <servlet-name>AuthenticatorServlet</servlet-name>
    <url-pattern>/AuthenticatorServlet</url-pattern>
  </servlet-mapping>
  You can directly call the Servlet in your Browser by calling the URL provided in the url-pattern of your Servlet mapping ( in this case /AuthenticatorServlet). The engine will invoke the Class "com.atosorigin.examples.AuthenticatorServlet" in the background and do whatever you defined there!
  I have also to pass my http header and the redirectUrl in the GET request.
  If you like! I just suggested this for testing purposes. As I stated before you need a way to tell your proxy (or in your case AuthenticatorServlet) which user should be set when calling the Engine in order to authenticate using HTTP Header. You could use the URL Paramater to define the user you actually want to use when you set the Header Variable.
  I just introduced the redirectURL because you were talking about redirects all the time. So if you finally want to call the Backend you could define the Backend URL in the redirectURL Parameter and the Servlet will make sure that you are redirected to this location after the whole process!
  Thx for your input very helpful,
  But again 0 points
  Cheers

• How do I set the Http Header POST URL in SAAJ?

  Hi ,
  I am a newbie in the field of web services. I was trying to create a SOAP request with Http Header POST information having a POST url like
  the following:
  POST /OMASTI.xml HTTP/1.1
  Content-Type: multipart/related; boundary="eladeladeladeladeladeladeladeladelad"; type=text/xml; start=11814460
  Content-Length: 54596
  Host: unspecified
  SOAPAction: ""
  to that effect I did the following in the SAAJ client:
  MimeHeaders md = message.getMimeHeaders();
            md.setHeader("SOAPAction" ,"\"\"");
            md.setHeader("POST" ,"/OMASTI.xml");
  However what I got was :
  POST / HTTP/1.1
  Accept: text/xml, text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2
  SOAPAction: ""
  POST: /OMASTI.xml
  Content-Type: multipart/related; type="text/xml"; boundary="----=_Part_2_32124414.1153146262750"
  Content-Length: 3352
  Cache-Control: no-cache
  Pragma: no-cache
  User-Agent: Java/1.5.0_07
  Host: www.google.com
  Connection: keep-alive
  I have two POSTs in the header. How do I fix it? Please Help ASAP.
  Regards,
  Zeus

  Hi,
  Please forgive my ignorance. I did the same as you said. and then checked the Http request being sent out using ethreal software... it was the same as I had told earlier. Is only POST supported by the connection object? And the does the URL that comes in the Mime header as POST refer to the URL to which the request was sent? what I mean is that if the mime header says
  POST /OMASTI.xml HTTP 1.1, does it mean that the URL that was passed to the connection object was "/OMASTI.xml" ? I had given the url as http://www.google.com to test the request being sent.. I only have a sample SOAP request which shows a HTTP header with the post url as I said before. I need to create a SOAP request with the same sort of Http header and the body needs to follow a certain OMA-STI protocol. My experience in the SOAP domain is almost nil. So please enlighten me.
  Thanks in advance,
  zeus

• SSRS web services 401 if you pass "Authorization" http header

  We use both SSRS 2008 R2 and 2012. When i access a report using url access (direct ssrs server hit) and add a "Authorization: Bearer xyzelkalklsjsdfalsjdf" http header, i get a 401 from somewhere in the request pipeline. I have a custom httpmodule
  registered at the top of the chain which does some OAuth related security checks. But when this header is included, the request never reaches the httpmodule. If i change the header slightly ex: "YAuthorization: ljlxzcvc..", then the request reaches
  the httpmodule and everything works. So obviously SSRS is looking for a particular header named "Authorization" and does something with it. Point to note: we have implemented a custom forms authentication module and we are doing some rich authorization
  using the extensible ssrs api. 
  Now my questions are:
  1. What is happening here? Who is acting on my request before my HttpModule registered on top in ssrs\reporting service\web.config gets it?
  2. How do i ensure my httpmodule executes before whatever component is terminating my request with a 401

  Sorry if this sounds like I am new to this but I am.
  So, the extended version is the format that would be used if you were not utilizing the files that the wsdl2java function creates?
  And this is done to when you want more flexibiility for the user to call your service?
  So, you would push to have the stub files used when you want to control how the web service is used?
  thanks for the feedback.