Reverse proxy query strings

Similar Messages

• Question to Proxy in Reading Query String

  Hi, our team have a problem, and let me state below:
  We use reverse proxy in machine A to redirect to machine B.
  Machine A is SJWS 6.1, and it has customized SAF.
  The SAF has one mission, which is to retrieve query string from each requests.
  The question is:
  When the SAF read the query string in body data( with netbuf_getc() ), the application in AP SRV cannot read anything about query string.
  In the contract way, if we let AP SRV to process data through query string first, and then we try to get body data( with netbuf_getc() ), NSAPI gets nothing.
  Any suggestion?!
  thanx.
  environment:
  ================
  machine A:
  Windows 2003 Server Enterprise (32 bits)
  Sun Java System Web Server 6.1 SP5 with Reverse Pxory Plug-in
  machine B:
  Windows 2003 Server Enterprise (32 bits)
  Sun Java System Application Server 8.1 (Enterprise, Platform both have been tried.)
  ================
  Message was edited by:
  potai.tsou

  The query string is part of the request URI. It is never part of the request body.
  I assume you mean that your SAF reads the request body to extract form data. If your SAF consumes the request body, that request body will not be available to other SAFs.
  It sounds like you should consider writing an input filter, not a SAF, that will process the request body. There's information on input filters in the NSAPI Programmer's Guide at http://docs.sun.com/source/817-1835-10/npgcfltr.html.

• Apache Reverse Proxy with Abap Web query

  Hi to all
    We are trying to configure apache 2 to work as a reverse proxy with web abap Netweaver installation.
  From inside the network the web query is fine.
  Running the query with the reverse proxy we have only the html code in the browser. All the scripts and css are not present.
  We checked some messages inside the forum and we have tried a lot of stuff without success.
  We use always linux (Fedora, Ubuntu with xampp or apache only) plus the html module or the publisher from http://apache.webthing.com.
  Our installation is like this the reverse proxy in the dmz and the netweaver to the inside off coarse, and we don't have the same domain name, i don't know if this is important.
  Any help/idea  is valuable.
  Thank you
  Yiannis

  Hi Olivier
  I have seen your solution in other messages but i didn't try it because i was trying to work with the html_proxy module.
  I read the documents you gave me plus some apache tutorials on the rewrite rule.
  In any case i have my installation working now.
  I did some extra changes in my config so now the rules are like that
  ProxyVia On
  ProxyBadHeader IsError
  ProxyRequests Off
  ProxyPreserveHost On
  ProxyPass /sap http://192.168.1.59:8001/sap
  ProxyPassReverse /sap http://192.168.1.59:8001/sap
  RewriteEngine On
  RewriteRule ^/(sap\(.*) http://192.168.1.59:8001/$1 [P,L]
  Thanks again for your help
  Yiannis

• How to disable query-string evaluation in OSB proxy service?

  OSB 10.3 proxy service evaluates the query String ?WSDL (are there more such parameters?). Usually the assigned WSDL will be returned this way.
  I want to use OSB as simple HTTP-proxy. There is no WSDL assigned. The proxy service should simply pass all parameters to the request pipeline. This works fine for parameters in general but not for WSDL. This produces the exception below.
  Does anyone have an idea how to disable this query string evaluation within OSB proxy service?
  Thanks
  Daniel
  <25.11.2009 15:43 Uhr MEZ> <Error> <WliSbTransports> <BEA-381304> <Exception in HttpTransportServlet.service: java.io.IOException: This service is not associated to a wsdl
  java.io.IOException: This service is not associated to a wsdl
  at com.bea.wli.sb.transports.http.ResourceRequestProcessor.securedInvoke(ResourceRequestProcessor.java:108)
  at com.bea.wli.sb.transports.http.ResourceRequestProcessor.process(ResourceRequestProcessor.java:61)
  at com.bea.wli.sb.transports.http.HttpTransportServlet$RequestHelper.handleMetadataRequest(HttpTransportServlet.java:314)
  at com.bea.wli.sb.transports.http.HttpTransportServlet$RequestHelper.service(HttpTransportServlet.java:215)
  at com.bea.wli.sb.transports.http.HttpTransportServlet.service(HttpTransportServlet.java:133)
  at weblogic.servlet.FutureResponseServlet.service(FutureResponseServlet.java:24)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
  at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
  at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:292)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:175)
  at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3498)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
  at weblogic.security.service.SecurityManager.runAs(Unknown Source)
  at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2180)
  at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2086)
  at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1406)
  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
  at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)

  Daniel,
  http://hostServer/contextpath?WSDL is common way of retrieving WSDL for service whcih supports one. The case you are suggesting is if the service does not have any wsdl associated, then it is good practice that caller be notified appropriately which is being done by OSB. OSB is indicating that the service for which we have used ?wsdl has no wsdl associated.
  I guess there is no way we can disable this feature for un-typed OSB services (services which doesn't have wsdl associated). Any reason why would we don't want exception when '?wsdl' is used?
  Manoj

• How do I use Sun Web Server 7.0u1 reverse proxy to change public URLs?

  Some of our installations use the Sun Web Server 7.0 (update 1, usually)
  for hosting some of the public resource and reverse-proxying other parts
  of the URI namespace from other backend servers (content, application
  and other types of servers).
  So far every type of backend server served a unique part of the namespace
  and there was no collision of names, and the backend resources were
  published in a one-to-one manner. That is, a backend resource like, say,
  http://appserver:8080/content/page.html would be published in the internet
  as http://www.publicsite.com/content/page.html
  I was recently asked to research whether we can rename some parts of
  the public URI namespace, to publish some or all resources as, say,
  http://www.publicsite.com/data/page.html while using the same backend
  resources.
  Another quest, possibly related in solution, was to make a tidy url for the
  first page the user opens of the site. That is, in the current solution when
  a visitor types the url "www.publicsite.com" in his or her browser, our web
  server returns an HTTP-302 redirect to the actual first page URL, so the
  browser sends a second request (and changes the URL in its location bar).
  One customer said that it is not "tidy". They don't want the URL to change
  right upon first rendering the page. They want the root page to be rendered
  instantly i the first HTTP request.
  So far I found that I can't solve these problems. I believe these problems
  share a solution because it relies on ability to control the actual URI strings
  requested by Sun Web Server from backend servers.
  Some details follow, now:
  It seems that the reverse proxy (Service fn="service-passthrough") takes
  only the $uri value which was originally requested by the browser. I didn't
  yet manage to override this value while processing a request, not even if
  I "restart" a request. Turning the error log up to "finest" I see that even
  when making the "service-passthrough" operation, the Sun Web Server
  still remembers that the request was for "/test" (in my test case below);
  it does indeed ask the backend server for an URI "/test" and that fails.
  [04/Mar/2009:21:45:34] finest (25095) www.publicsite.com: for host xx.xx.xx.83
  trying to GET /content/MainPage.html while trying to GET /test, func_exec reports:
  fn="service-passthrough" rewrite-host="true" rewrite-location="true"
  servers="http://10.16.2.127:8080" Directive="Service" DaemonPool="2b1348"
  returned 0 (REQ_PROCEED)My obj.conf file currently has simple clauses like this:
  # this causes /content/* to be taken from another (backend) server
  NameTrans fn="assign-name" from="/content" name="content-test" nostat="/content"
  # this causes requests to site root to be HTTP-redirected to a certain page URI
  <If $uri =~ '^/$'>
      NameTrans fn="redirect"
          url="http://www.publicsite.com/content/MainPage.html"
  </If>
  <Object name="content-test">
  ### This maps http://public/content/* to http://10.16.2.127:8080/content/*
  ### Somehow the desired solution should instead map http://public/data/* to http://10.16.2.127:8080/content/*
      Service fn="service-passthrough" rewrite-host="true" rewrite-location="true" servers="http://10.16.2.127:8080"
      Service fn="set-variable" set-srvhdrs="host=www.publicsite.com:80"
  </Object>
  I have also tried "restart"ing the request like this:
      NameTrans fn="restart" uri="/data"or desperately trying to set the new request uri like this:
      Service fn="set-variable"  uri="/magnoliaPublic/Main.html"Thanks for any ideas (including a statement whether this can be done at all
  in some version of Sun Web Server 7.0 or its opensourced siblings) ;)
  //Jim

  Some of our installations use the Sun Web Server 7.0 (update 1, usually)please plan on installing the latest service pack - 7.0 Update 4. these updates addresses potentially critical bug fixes.
  I was recently asked to research whether we can rename some parts of
  the public URI namespace, to publish some or all resources as, say,
  http://www.publicsite.com/data/page.html while using the same backend
  resources.> now, if all the resources are under say /data, then how will you know which pages need to be sent to which back end resources. i guess, you probably meant to check for /data/page.html should go to <back-end>/content/page.html
  yes, you could do something like
  - edit your corresponding obj.conf (<hostname>-obj.conf or obj.conf depending on your configuration)
  <Object name=¨default¨>
  <If $uri = ¨/page/¨>
  #move this nametrans SAF (for map directive - which is for reverse proxy within <if> clause)
  NameTrans.. fn=map
  </If
  </Object>
  and you could do https-<hostname>/bin/reconfig (dynamic reconfiguration) to check out if this is what you wanted. also, you might want to move config/server.xml <log-level> to finest and do your configuration . this way, you would get enough information on what is going on within your server logs.
  finally,when you are satisfied, you might have to run the following command to make your manual change into admin config repository.
  <install-root>/bin/wadm pull-config user=admin config=<hostname> <hostname>
  <install-root>/bin/wadm deploy-config --user=admin <hostname>
  you might want to check out this for more info on how you could use <if> else condition to handle your requirement.
  http://docs.sun.com/app/docs/doc/820-6599/gdaer?a=view
  finally, you might want to refer to this doc - which explains on ws7 request processing overview. this should provide you with some pointers as to what these different directives mean
  http://docs.sun.com/app/docs/doc/820-6599/gbysz?a=view
  >
  One customer said that it is not "tidy". They don't want the URL to change
  right upon first rendering the page. They want the root page to be rendered
  instantly i the first HTTP request.
  please check out the rewrite / restart SAF. this should help you.
  http://docs.sun.com/app/docs/doc/820-6599/gdada?a=view
  pl. understand that - like with more web servers - ordering of directives is very important within obj.conf. so, you might want to make sure that you verify the obj.conf directive ordering is what you want it to do..
  It seems that the reverse proxy (Service fn="service-passthrough") takes
  only the $uri value which was originally requested by the browser. I didn't
  yet manage to override this value while processing a request, not even if
  I "restart" a request. Turning the error log up to "finest" I see that even
  when making the "service-passthrough" operation, the Sun Web Server
  still remembers that the request was for "/test" (in my test case below);
  it does indeed ask the backend server for an URI "/test" and that fails.
  now, you are in the totally wrong direction. web server 7 includes a highly integrated reverse proxy solution compared to 6.1. unlike 6.1, you don´t have to download a separate plugin . however, you will need to manually migrate your 6.1 based reverse proxy settings into 7.0. please check out this blog link on how to set up a reverse proxy
  http://blogs.sun.com/amit/entry/setting_up_a_reverse_proxy
  feel free to post to us if you need any futher help
  you are probably better off - starting fresh
  - install ws7u4
  - use gui or CLI to create a reverse proxy and map one on one - say content
  http://docs.sun.com/app/docs/doc/820-6601/create-reverse-proxy-1?a=view
  if you don´t plan on using ws7 integrated web container (ability to process jsp/servlet), then you could disable java support as well. this should reduce your server memory footprint
  <install-root>/bin/wadm disable-java user=admin config=<hostname>
  <install-root>/bin/wadm create-reverse-proxy user=admin uri-prefix=/content server=<http://your back end server/ config=<hostname> --vs=<hostname>
  <install-root>/bin/wadm deploy-config --user=admin <hostname>
  now, you can check out the regular express processing and <if> syntax from our docs and try it out within <https-<hostname>/config/<hostname>-obj.conf> file and restart the server. pl. note that once you disable java, ws7 admin server creates <vs>-obj.conf and you need to edit this file and not default obj.conf for your changes to be read by server.
  >
  I have also tried "restart"ing the request like this:
  NameTrans fn="restart" uri="/data"
  ordering is very important here... you need to do this some thing like
  <Object name=default>
  <If not $restarted>
  NameTrans fn=restart uri from=/¨ uri=/foo.
  </If>

• Lync Reverse Proxy Alternatives

  When migrating from OCS 2007 to Lync 2010, we balked Microsoft’s recommendation to deploy Forefront Threat Management Gateway (or ISA) just to get the reverse proxy services. 
  TMG is way too expensive and complex for such a limited, simple use case.
  I didn't find much information on what people are using as free alternatives to ISA/TMG, so I decided to post this discussion in case there are others out there who are interested.
  We decided to use Apache 2.2 on Windows Server 2008 R2. 
  Here's how we configured it:
  Read here to understand what features require a reverse proxy, and follow the steps to configure your FQDNs, Network Adapters and (maybe) obtain an SSL Certificate for the reverse proxy. 
  http://technet.microsoft.com/en-us/library/gg398069.aspx
  Download and install the latest stable release of Apache with OpenSSL on your reverse proxy server. 
  http://httpd.apache.org/download.cgi
  We're using the same certificate on the reverse proxy that we use on our front end server (it has the appropriate SANs), so we need to convert it to PEM format for use with Apache:
  Use the Certificates MMC on your front end server to export the certificate and include the private key.
  Transfer the resultant .pfx file to your reverse proxy server.
  Use OpenSSL to convert your .pfx file to PEM:
  openssl pkcs12 -in c:\pathto\yourcert.pfx -out c:\pathto\yourcert.pem –nodes 
  Separate the private key from the certificate using notepad: 
  Open the new .pem file and cut the text from the beginning of the file through the end of the “----END RSA PRIVATE KEY----“ tag. 
  Save that text to a new file named
  yourcert.key. 
  Save
  yourcert.pem, which should now only include the certificate.
  Copy (or move) the certificate and private key to the Apache configuration directory. We like to use: C:\Program Files (x86)\Apache Software Foundation\Apache2.2\conf\extra\ssl
  for storing the certificates.
  Edit httpd.conf (typically in
  C:\Program Files (x86)\Apache Software Foundation\Apache2.2\conf) to enable and configure the proxy and SSL features:
  (See  http://httpd.apache.org/docs/2.2/mod/mod_proxy.html
   for more information on each directive)
  Uncomment the following lines, which will enable proxy and SSL:
  LoadModule proxy_module modules/mod_proxy.so
  LoadModule proxy_http_module modules/mod_proxy_http.so
  LoadModule ssl_module modules/mod_ssl.so
  Include conf/extra/httpd-ssl.conf
  Add the following lines to configure reverse proxy behavior:
  #Be a reverse proxy, not a forward proxy
  ProxyRequests Off
  #Accept requests from any client to any URL
  <Proxy *>
  Order Deny,Allow
  Allow from all
  </Proxy>
  #Set the network buffer to improve throughput
  ProxyReceiveBufferSize 4096
  #Configure the Reverse Proxy to forward all requests to your front end server on 4443
  ProxyPass / https://yourfrontend.domain.com:4443/
  ProxyPassReverse / https://yourfrontend.domain.com:4443/
  #Preserve Host Headers for Lync
  ProxyPreserveHost On
  Optionally, configure logging directives, bindings and server name.
  Save and close httpd.conf
  Edit httpd-ssl.conf (typically in conf\extra):
  Configure the session cache:
  Uncomment:
  SSLSessionCache “dbm:C:/Program Files (x86)/Apache Software Foundation/Apache2.2/logs/ssl_scache”
  Comment out:
  SSLSessionCache “shmcb:C:/Program Files (x86)/Apache Software Foundation/Apache2.2/logs/ssl_scache(512000)”
  Locate the <VirtualHost _default_:443> tag and configure the following:
  Add the following directive:
  SSLProxyEngine On
  Configure the path to your SSL Certificate saved in step 3-5 above:
  SSLCertificateFile “C:\Program Files (x86)\Apache Software Foundation\Apache2.2\conf\extra\ssl\yourcert.pem”
  Configure the path to your private key saved in step 3-5 above:
  SSLCertificateKeyFile “C:\Program Files (x86)\Apache Software Foundation\Apache2.2\conf\extra\ssl\yourcert.key”
  Optionally, configure the SSLCACertificateFile (you can download the appropriate bundle from your CA).
  Optionally, configure logging directives.
  Save and close httpd-ssl.conf
  Restart the Apache2.2 service
  Configure public DNS records and appropriate firewall rules to allow public http/https traffic to the external interface of your reverse proxy, and to allow the internal interface of
  the reverse proxy to talk to the front end Lync server on 8080 and 4443.
  From an external connection, test connectivity through the reverse proxy:
  Test
  https://dialin.company.com (friendly URL for getting dial-in information, if you’re using voice conferencing)
  Test the Lync Web App by setting up an online meeting and following the URL to join the meeting. 
  You can force the use of the web app by appending ?sl= to the end of the meet.company.com link. 
  See this for more information http://blogs.technet.com/b/jenstr/archive/2010/11/30/launching-lync-web-app.aspx
  Hope this information is helpful and saves some of you some money and trouble.
  Please contact me if you need further clarification or see any mistakes in my notes.
  Best regards,
  Kenneth Walden
  Enterprise Systems Supervisor
  GSD&M
  Austin, TX

  I'd like to thank you for this article.  We were setting up Apache RP for Lync .... needless to say they weren't too excited to learn this new (and highly complex with lots of specific undocumented requirements) Microsoft product.  Anyways, your
  blog saved me a LOT of headache.  I owe you big time. 
  AWESOME JOB. 
  -Greg
  *****EDIT***
  Decided to come back in there and post good information.  We had issues with EXTERNAL and ANONYMOUS users being able to attend a meeting.  The "DIALUP" url was working fine but the "MEETING" url was broken.  On our WFE servers we were getting
  the event error as below.   Turns out that our reverse proxy was not set to "PROXYPRESERVEHOST ON".  Once we put that in there ALL was good.
  Notice that the MEET portion was the only thing that was really broken.  So, if you can get DIALUP to work, but MEET doesn't ... your RP is working to FW the 443 to the 4443 correctly but you're RP is sending the wrong HEADER.  Look for
  http://10.x.x.x/meet/ or soemthing in the event logs. 
  Log Name:      Application
  Source:        ASP.NET 2.0.50727.0
  Date:          11/16/2011 1:26:35 PM
  Event ID:      1309
  Task Category: Web Event
  Level:         Warning
  Keywords:      Classic
  User:          N/A
  Computer:      OneofMyInternalWFEservers.local
  Description:
  Event code: 3005
  Event message: An unhandled exception has occurred.
  Event time: 11/16/2011 1:26:35 PM
  Event time (UTC): 11/16/2011 6:26:35 PM
  Event ID: b2039ecd0a62482284030f62e1e639d8
  Event sequence: 129
  Event occurrence: 28
  Event detail code: 0
  Application information:
      Application domain: /LM/W3SVC/34578/ROOT/meet-1-129658725547585993
      Trust level: Full
      Application Virtual Path: /meet
      Application Path: C:\Program Files\Microsoft Lync Server 2010\Web Components\Join Launcher\Ext\
      Machine name: MYWFE.local
  Process information:
      Process ID: 14204
      Process name: w3wp.exe
      Account name: NT AUTHORITY\NETWORK SERVICE
  Exception information:
      Exception type: HttpException
      Exception message: Server cannot append header after HTTP headers have been sent. 
  Request information:
      Request URL:
  https://FQDN:4443/meet/MyName/456456
      User host address: gatewayIP
      User: 
      Is authenticated: False
      Authentication Type: 
      Thread account name: NT AUTHORITY\NETWORK SERVICE
  Thread information:
      Thread ID: 7
      Thread account name: NT AUTHORITY\NETWORK SERVICE
      Is impersonating: False
      Stack trace:    at System.Web.HttpHeaderCollection.SetHeader(String name, String value, Boolean replace)
     at Microsoft.Rtc.Internal.WebServicesAuthFramework.OCSAuthModule.EndRequest(Object source, EventArgs e)
     at System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
     at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
  Custom event details:
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
      <Provider Name="ASP.NET 2.0.50727.0" />
      <EventID Qualifiers="32768">1309</EventID>
      <Level>3</Level>
      <Task>3</Task>
      <Keywords>0x80000000000000</Keywords>
      <TimeCreated SystemTime="2011-11-16T18:26:35.000000000Z" />
      <EventRecordID>4483</EventRecordID>
      <Channel>Application</Channel>
      <Computer>XXXXXXXXXXXXXXXXXX</Computer>
      <Security />
    </System>
    <EventData>
      <Data>3005</Data>
      <Data>An unhandled exception has occurred.</Data>
      <Data>11/16/2011 1:26:35 PM</Data>
      <Data>11/16/2011 6:26:35 PM</Data>
      <Data>b2039ecd0a62482284030f62e1e639d8</Data>
      <Data>129</Data>
      <Data>28</Data>
      <Data>0</Data>
      <Data>/LM/W3SVC/34578/ROOT/meet-1-129658725547585993</Data>
      <Data>Full</Data>
      <Data>/meet</Data>
      <Data>C:\Program Files\Microsoft Lync Server 2010\Web Components\Join Launcher\Ext\</Data>
      <Data>SNKXS300</Data>
      <Data>
      </Data>
      <Data>14204</Data>
      <Data>w3wp.exe</Data>
      <Data>NT AUTHORITY\NETWORK SERVICE</Data>
      <Data>HttpException</Data>
      <Data>Server cannot append header after HTTP headers have been sent.</Data>
      <Data>XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX</Data>
      <Data>/XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX</Data>
      <Data>10.71.1.1</Data>
      <Data>
      </Data>
      <Data>False</Data>
      <Data>
      </Data>
      <Data>NT AUTHORITY\NETWORK SERVICE</Data>
      <Data>7</Data>
      <Data>NT AUTHORITY\NETWORK SERVICE</Data>
      <Data>False</Data>
      <Data>   at System.Web.HttpHeaderCollection.SetHeader(String name, String value, Boolean replace)
     at Microsoft.Rtc.Internal.WebServicesAuthFramework.OCSAuthModule.EndRequest(Object source, EventArgs e)
     at System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
     at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean&amp; completedSynchronously)
  </Data>
    </EventData>
  </Event>

• Dynamic Query string in Receiver HTTP_AAE adapter

  Hi All,
       Currently I am working with a scenario where I need to use HTTP_AAE receiver adapter. I need to create the query string http://server:port/WebOrder?param=value dynamically.
  I created below mentioned UDF.
  DynamicConfiguration conf = (DynamicConfiguration) container.getTransformationParameters().get(StreamTransformationConstants.DYNAMIC_CONFIGURATION);
  DynamicConfigurationKey urlParameter1 = DynamicConfigurationKey.create( "http://sap.com/xi/XI/System/HTTP_AAE", "URLParamOne");
  conf.put(urlParameter1, "value");
  return "";
  In configuration part I entered below mentioned details in HTTP receiver adapter,
  Target Host: server
  Target Port: port
  Path: /WebOrder?
  Click Set Adapter specific Message properties
  Click URL Parameters
  I entered "param".
  But I am getting the below mentioned error.
  exception caught with cause com.sap.aii.adapter.http.api.HttpAdapterException: STATUS_CODE_NOT_OK-Not Found.
  Could you please help me here.
  Thanks
  Dipankar

  Dear Team,
  I am working on SAP PO 7.4 Single stack. we are have scenario to send sms to customers via portal system and the delivery status has to be updated in ECC. Failed to hit the sms portal by using the HTTP_AAE adapter.
  URL - http://103.112.70/smpp/sendsms?username=xxxxx&password=xxxxx&to=919797979797&from=919560054422&text=test message.
  Scenario - ECC(proxy) -> PO(HTTP adapter) -> SMS portal
  Development:
  ESR - In the mapping
  Five parameters- username , password , to , from and text from ECC to PO as part of request message.
  UDF -
  DynamicConfiguration conf = (DynamicConfiguration) container.getTransformationParameters().get(StreamTransformationConstants.DYNAMIC_CONFIGURATION);
  DynamicConfigurationKey parmValue;
  try{
                    parmValue = DynamicConfigurationKey.create( "http://sap.com/xi/XI/System/HTTP", "URLParamOne");
                    conf.put(parmValue, var1);
                    parmValue = DynamicConfigurationKey.create( "http://sap.com/xi/XI/System/HTTP", "URLParamTwo");
                    conf.put(parmValue, var2);
                    parmValue = DynamicConfigurationKey.create( "http://sap.com/xi/XI/System/HTTP", "URLParamThree");
                    conf.put(parmValue,  var3);
                    parmValue = DynamicConfigurationKey.create( "http://sap.com/xi/XI/System/HTTP", "URLParamFour");
                    conf.put(parmValue,  var4);
                    parmValue = DynamicConfigurationKey.create( "http://sap.com/xi/XI/System/HTTP", "URLParamFive");
                    conf.put(parmValue,  var5);
  }catch(Exception ex){}
  return "";
  Integration Directory-
  Communcation channel:
  Tranport Protocol - HTTP 1.1
  Message Protocol - GET
  General Tab-
  Addressing Mode - URL Address
  Target Host - 103.112.70
  Target Port - 80
  Path - smpp/sendsms
  Mainpayload Parameter Name - MT_SMS_Cust_Req
  Advanced Tab-
  Header fileds - EMPTY
  Query Parameters - sender party - enabled
                                sender service - enbled
                                Receiver Interface - enabled
                                Message ID - enabled
                                Quality of service - enabled
  Adapter -Specific Message Properties
  set Adapter -specific Message Properties - enabled
  URL parameters - enabled
  parameter 1(URLParamOne) - username
  parameter 2(URLParamTwo)-password
  parameter3(URLParamThree)-to
  parameter4(URLParamFour)-from
  parameter5(URLParamFive)-text
  After the configureations..The structture is not getting created as per the url format . In runtime PO system is sending only - smpp/sendsms to SMS portal and getting the response as Not authorized means the username&Password&to&from&text are not hitting the SMS porta.
  Please check the configurations and guide me if any configurations were missing.
  Regards,
  Teja.

• Forward parameters in reverse proxy configuration

  Hi,
  Looking at the detailed configuration in a reverse proxy rule in SJSWS, I have derived the following conclusions:
  1) Where the SJSWS listener has SSL-enabled, reverse proxy works on a HTTPS in, HTTP out basis.
  2) Details in the incoming request's SSL header, such as User DN, will be stripped out and remapped into the outgoing request as a custom header, e.g. "Proxy-user-dn".
  Can anybody tell me if I have gotten anything wrong above?
  We are currently switching over from an Apache/mod_proxy/mod_ssl --> Apache/mod_jk --> Apache Tomcat server setup to a hybrid model where SJSWS is the web server reverse proxying to Tomcat (old apps) and SJSAS (new apps).
  My question:
  All our apps use the User DN string as the user ID. Previously, we developed a custom module in Apache to read the DN at the Apache level and then rewrite it into the Basic Auth user name header in the outgoing request. The Tomcat webapp will then authenticate the user based on the Basic Auth user name property. Is it possible for me to remap it into something similar here in the SJSWS reverse proxy configuration?
  Thanks!
  Wong

  I am not a reverse proxy expert, but this Object-type SAF should forward userdn
  http://docs.sun.com/app/docs/doc/820-1062/6ncoqnq3b?l=en&a=view&q=forward-user-dn
  You can look for more such SAFs in this document.

• AD Query String for Group Membership

  Hi
  I have found that inbound mail to distributions groups (Ex07) are not being delivered. Running a trace, I am seeing they are failing on LDAP match. I tracked it down to the qroup query not working. We are using the default query. Running a test, it fails. I think that is the problem. I can mail the group internally just fine.
  Anyone have a good query string that will check for distribution groups? Below is the query being used. Thanks for the help.
  (&(memberOf={g})(proxyAddresses=smtp:{a}))

  Can you go to the LDAP section and provide all the fields that are relevant?
  I'll need the LDAP configuration fields (minus the password of course) and what you're using for the LDAP Accept.
  Well I opened a ticket with support, and it appears that I have them stumped. From what they tell me it isn't the ldap group query that is failing, but rather the ldap accept query failing.
  Sending to the group does work internally so It looks like ldap is good with the the proxy address, but ironport is failing on the query.
  Snippit from trace:
  Envelope Recipient Processing
  Envelope Recipient: [email protected]
  LDAP Accept Lookup: Result: failed
  Default Domain Processing: No Change
  Domain Map Processing: No Change
  Recipient Access Table Processing: Behavior: ACCEPT Matched On: [email protected]
  Alias Expansion: No Change

• How to send query string to OSB Business Service?

  Hi
  I need to call a Servlet which is accepting http get request.
  My system design is
  I have a web service interface that I need to expose to Front end application. I am using Proxy service for this.
  Then I have a servlet at end system and using Business service to send request to servlet.
  I need to pass username, password, jndi context and payload using url encoding.
  What all steps do I need to follow for this? How to create query string , which variable I need to play with inbound or outbound?
  I have gone through all the answers on this forum but could not understand much.
  Thanks
  Vibhor

  Hii
  I am still unable to send http get request to end service.
  In flow I have setted $outbound/transport/request-http/query-string too.
  But I have to send request with url encoding.
  How to encode query string and how can I check whether my request is going correctly or not, is there any variable in which complete url would be stored.
  Thanks
  Vibhor
  Edited by: Vibhor Rastogi on Sep 15, 2010 9:49 AM

• Oracle Service Bus-Outbound-Query String node

  Hi,
  i have created a proxy service and did all the message flows,the problem is that i cant see the outboud query string node. Is there any way to create the node and then assign values to it.

  There is this $header variable which you should populate before calling the BS. What is the type of BS? If it is WSDL BS , Any Soap BS then above solution will work. I assume that yours is WSDL based BS and setting $header should resolve this issue.
  AnyXML and Messaging type BS services requires that you create proper pay load (setting $header will not work).
  There is also other actions Set Transport Headers {outbound request/inbound response} which can be used to set transport related headers but not soap headers.
  Manoj

• Reverse proxy plugin does not like the POST method

  My second tier is not functionning properly when placed behind a S1WS6 with reverse proxy
  Client ====== SunOne web server with Passthrough ====== .NET app server & web services.
  The web server configuration (reverse proxy � libpassthrough.so) is configured and is working correctly when it comes to requesting normal pages, however a problem arises when the request is made either by:
  1- Invoking a web service on the .Net tier, or
  2- The .Net tier performs a server.transfer call within the same .net server (Page transfer)
  Keep in mind that the .Net tier works fine when not accessed through the reverse proxy.
  It seems that when a POST method is invoked, a Session Close is sent before data is sent back !!
  We tried to isolate the problem from different angles but came up short, the http server log shows that the request was made
  192.168.2.7 - - [14/Jul/2004:14:10:56 +0300] "POST /wavedms2.0/TestWebService/TestService.asmx HTTP/1.1" 100 0
  Although response 100 indicates that it is waiting for more, while the web service error shows the following:
  The underlying connection was closed: An unexpected error occurred on a receive.
  at System.Web.Services.Protocols.WebClientProtocol.GetWebResponse(WebRequest request)
  at System.Web.Services.Protocols.HttpWebClientProtocol.GetWebResponse(WebRequest request)
  at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
  at TestWebService.oWebService.MyWebSvc.HelloWorld()
  at TestWebService.Form1.button1_Click(Object sender, EventArgs e)
  In general, any page that uses POST method faces the same problem.I appreciate any help you can provide us with a solution on this issue.

  The Application Server plugin, libpassthrough.so, was designed to connect Web Server to Application Server. Unfortunately, it does not work with IIS which sends unsolicited "HTTP/1.1 100 Continue" responses.

• Reverse Proxy using S1AS7 with libpassthrough.so

  My second tier is not functionning properly when placed behind a S1AS7 with reverse proxy
  Client ====== SunOne web server with Passthrough ====== .NET app server & web services.
  The web server configuration (reverse proxy � libpassthrough.so) is configured and is working correctly when it comes to requesting normal pages, however a problem arises when the request is made either by:
  1- Invoking a web service on the .Net tier, or
  2- The .Net tier performs a server.transfer call within the same .net server (Page transfer)
  Keep in mind that the .Net tier works fine when not accessed through the reverse proxy.
  We tried to isolate the problem from different angles but came up short, the http server log shows that the request was made
  192.168.2.7 - - [14/Jul/2004:14:10:56 +0300] "POST /wavedms2.0/TestWebService/TestService.asmx HTTP/1.1" 100 0
  Although response 100 indicates that it is waiting for more, while the web service error shows the following:
  The underlying connection was closed: An unexpected error occurred on a receive.
  at System.Web.Services.Protocols.WebClientProtocol.GetWebResponse(WebRequest request)
  at System.Web.Services.Protocols.HttpWebClientProtocol.GetWebResponse(WebRequest request)
  at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
  at TestWebService.oWebService.MyWebSvc.HelloWorld()
  at TestWebService.Form1.button1_Click(Object sender, EventArgs e)
  I appreciate any help you can provide us with a solution on this issue.

  Thanks a million, yes it is exactly the same
  Do you know if this release is available for download / purchase????

• Reverse Proxy Configuration - Apache as an SSL reverse-proxy

  Hi,
  We have EP 6.0 SP 14 installed with SSL configured.
  We are in need to open the application to internet.
  For the same we have set up a reverse proxy server (Apache as SSL
  Reverse Proxy).
  Our requirement is to open the application to the internet with
  web address https://abc.domain.com.
  The issue is we are able to access the application from internet only when
  https://abc.domain.com/irj/potal is typed.
  (ie.) Mapping is working fine for
  https://abc.domain.com/irj/portal to
  our EP Portal address https://abc2.domain.com:50001/irj/portal
  And not working for mapping https://abc.domain.com to our EP Portal
  address https://abc2.domain.com:50001/irj/portal
  We have been working on to resolve this issue for days together but have been really unsuccessful
  Kindly help us in resolving the same asap.
  Note : The references we used are:
  1. SAP's document:
  "Apache Reverse Proxy Configuration for J2ee 6.20 and 6.40 Web Applications"
  2. Weblogs:
  The Reverse Proxy Series -- Part 1: Introduction
  The Reverse Proxy Series -- Part 3: Apache as a reverse-proxy
  The Reverse Proxy Series -- Part 3.1: Apache as an SSL reverse-proxy
  Regards,
  venkat.

  Thanks much for the feedback. We're using the default settings on the HTTP rule we have set up for the portal on the ISA server. We'll be looking into the details of what the default rule settings are, however we did find a note in the Microsoft Knowledge base detailing with the ISA server screening high bits in URL strings for Outlook Web Access (OWA). This generates a similar error message. Here is the link to the detailed note on the Microsoft web site:
  http://support.microsoft.com/?scid=kb;en-us;837865
  Also,we are going to be applying the SP1 upgrade to the ISA server (released in March) to see if this might be some type of issue that may have been identified and corrected by the service pack. We'll see what happens with that.
  One area where we can recreate the problem at will is when we set up the system landscape configuration. We can navigate to a system configuration object, however when we attempt to right click to edit the object we get the error. There are other circumstances where we get errors but that is one that occurs for sure. Anyone have any idea as to what might be special about that type of transaction??
  Thanks again.
  Rich

• Problems with apex and anychart (using reverse proxy)

  Hi,
  Im using 2 Servers. The first with Apache2 and the /i/ directory and the second with a Oracle XE Database.
  The imagedirectory is at the first server.
  Heres my Apache Setup:
  <Location /apex>
  Options None
  Order allow,deny
  allow from all
  ProxyPass http://..(remote_ip)..:8080/apex
  ProxyPassReverse http://..(remote_ip)..:8080/apex
  </Location>
  Alias /i/ /var/i/
  <Directory "/var/i/">
  Options None
  AllowOverride None
  Order allow,deny
  Allow from all
  </Directory>
  if I open a page with a anychart chart I get this error:
  "Flash Security Error
  Anychart can not be launched due to Flash Security Settings violation.
  Please refer to Security error Article in Anychart Documentation..."
  http://www.anychart.com/products/anychart/docs/users-guide/index.html?security-error.html
  I think I have to place a crossdomain.xml
  Placing the crossdomain.xml in example.com/ root-directory doesn't work?
  thanks for any help

  Hi Christoph,
  Yes, the APEX Listener works with Oracle XE. The APEX Listener is currently an Early Adopters release, and is available for download from here: http://www.oracle.com/technology/products/database/application_express/html/apex_listener_download.html. I would recommend reviewing the accompanying Installation Guide before proceeding. There's an 'APEX Listener Feedback' thread - APEX Listener Feedback - which may also proof useful to you. There's also another related thread on this topic: Re: #HOST# Substituin incorrect for charts via Reverse Proxy which discusses the replacement of the #HOST# substitution string.
  Regards,
  Hilary