Sending/Reading custom Strings in HTTP Header

Similar Messages

• Custom information in HTTP Header in an outgoing GWWS Request

  Hello Xu,
  Hello Everyone,
  With reference to the recent post activity in the post:
  [Adding custom information in HTTP Header in an outgoing request from GWWS|https://forums.oracle.com/forums/thread.jspa?threadID=2366358&tstart=0]
  We are looking for an option to send custom header information with the a webservice request (HTTP post) that happens via GWWS server.
  I prematurely marked that post as answered since we got a link to documentation in one of the answers, which suggests that problem has been taken care in TUXEDO11gR1.
  However, it would be difficult (almost impossible) for us to move to 11gR1 immediately.
  Since I marked that post as "answered" and I did not know if replies in that post will get any attention, I opened up this post.
  Xu (He) suggested (in reply to my previous post) that there might be a patch for our problem.
  It would be wonderful/perfect if we can get a patch for 10gR3!
  We are using the following:
  TUXEDO10gR3 PATCH LEV=44
  SALT Patch Lev = 15
  Please do let us know.
  Thank you again
  Sincere Regards,
  Mrugendra

  Maurice,
  Thanks for confirming this. (in the post: [Adding custom information in HTTP Header in an outgoing request from GWWS|https://forums.oracle.com/forums/thread.jspa?threadID=2366358&tstart=0] )
  It clarifies the doubts that I was having while reading through the documentation Xu pointed to.
  Yes, we need to add HTTP Headers (not SOAP header).
  For now we just need to add Basic Authentication HTTP Header for outbound service calls.
  We have developed a plugin to do that for now.
  And even if the salt plugin takes care of adding the Basic Authentication in the HTTP Header for outgoing calls, I guess we do not have any option to include some custom information in the HTTP Header which might be required in the future.
  At-least, not unless we request that enhancement.
  Bringing the plugin into our mix requires a lot of changes to our architecture including inclusion of AUTHSVR in the UBB,
  Which, in turn, makes it imperative to change the endpoint clients of our application.
  In addition to that, the incoming web service calls also need to include TUXEDO authentication information, which would again require either communicating the authentication information to the consumers of our service or device some kind of a proxy which would add the authentication information for all the incoming requests!
  With these facts in mind, we were wondering if we have an easier way to include the HTTP header information.
  As you say, Maurice, it seems it is not possible yet.
  Thank you again for your replies.
  Sincere Regards,
  Mrugendra

• Adding custom information in HTTP Header in an outgoing request from GWWS

  Is there a way to send custom header information with the a webservice request (HTTP post) that happens via GWWS server?
  All the methods I read about deal with managing the soap envelop that gets sent.
  We are looking for ways which will allow us to put custom information in the headers.
  I am aware there is something we can do using the Salt Plugins.
  For example, we can write a Out bound plugin which has a capability of putting the "Authentication:Basic..." in the header.
  Then there is message conversion plugin which deals with transformation of message, which gives us control over the soap body.
  Is it possible to put information in the header for outgoing request (from GWWS) to a specific web service?
  Thanks and Sincere Regards,
  Mrugendra

  Maurice,
  Thanks for confirming this.
  It clarifies the doubts that I was having while reading through the documentation Xu pointed to.
  Yes, we need to add HTTP Headers (not SOAP header).
  For now we just need to add Basic Authentication HTTP Header for outbound service calls.
  We have developed a plugin to do that for now.
  And even if the salt plugin takes care of adding the Basic Authentication in the HTTP Header for outgoing calls, I guess we do not have any option to include some custom information in the HTTP Header which might be required in the future.
  At-least, not unless we request that enhancement.
  Bringing the plugin into our mix requires a lot of changes to our architecture including inclusion of AUTHSVR in the UBB,
  Which, in turn, makes it imperative to change the endpoint clients of our application.
  In addition to that, the incoming web service calls also need to include TUXEDO authentication information, which would again require either communicating the authentication information to the consumers of our service or device some kind of a proxy which would add the authentication information for all the incoming requests!
  With these facts in mind, we were wondering if we have an easier way to include the HTTP header information.
  As you say, Maurice, it seems it is not possible yet.
  Thank you again for your replies.
  Sincere Regards,
  Mrugendra

• How best to send double byte characters as http params

  Hi all
  I have a web app that accepts text that can be in many languages.
  I build up a http string and send the text as parameters to another webserver. Hence, whatever text I receive i need to be able to represent on a http query string.
  The parameters are sent as urlencoded UTF8. They are decoded by the second webserver back into unicode and saved to the db.
  Occassionally i find a character that i am unable to convert to a utf8 string and send as a parameter (usually a SJIS character). When this occurs, the character is encoded as '3F' - a question mark.
  What is the best way to send double byte characters as http parameters so they always are sent faithfully and not as question marks? Is my only option to use UTF16?
  example code
  <code>
  public class UTF8Test {
  public static void main(String args[]) {
  encodeString("\u7740", "%E7%9D%80"); // encoded UTF8 string contains question mark (3F)
  encodeString("\u65E5", "%E6%97%A5"); // this other japanese character converts fine
  private static void encodeString(String unicode, String expectedResult) {
  try {
  String utf8 = new String(unicode.getBytes("UTF8"));
  String utf16 = new String(unicode.getBytes("UTF16"));
  String encoded = java.net.URLEncoder.encode(utf8);
  String encoded2 = java.net.URLEncoder.encode(utf16);
  System.out.println();
  System.out.println("encoded string is:" + encoded);
  System.out.println("expected encoding result was:" + expectedResult);
  System.out.println();
  System.out.println("encoded string16 is:" + encoded2);
  System.out.println();
  } catch (Exception e) {
  e.printStackTrace();
  </code>
  Any help would be greatly appreciated. I have been struggling with this for quite some time and I can hear the deadline approaching all too quickly
  Thanks
  Matt

  Hi Matt,
  one last visit to the round trip issue:
  in the Sun example, note that UTF8 encoding is used in the method that produces the byte array as well as in the method that creates the second string. This is equivalent to calling:
  String roundTrip = new String(original.getBytes("UTF8"), "UTF8");//sun exampleWhereas, in your code you were calling:
  String utf8 = new String(unicode.getBytes("UTF8"))//Matt's code
  [/code attracted
  The difference is crucial.  When you call the string constructor without a second (encoding) argument, the default encoding (usually Cp1252) is used.  Therefore your code is equivalent toString utf8 = new String(unicode.getBytes("UTF8"), "Cp1252")//Matt's code
  i.e.you are encoding with one transformation format and decoding back with a different transformation format, so in general you won't get your original string back.
  Regarding safely sending multi-byte characters across the Internet, I'm not completely sure what the situation is because I don't do it myself. (When our program is run as an applet, the only interaction it has with the web server is to download various files). I've seen lots of people on this forum describing problems sending multi-byte characters and I can't tell whether the problem is with the software or with the programming. Two possible methods come to mind (of course you need to find out what your third party software is doing):
  1) use the DataOutput/InputStreams writeUTF/readUTF methods
  2) use the InputStreamReader/OutputStreamWriter pair with UTF8 encoding
  See this thread:
  http://forum.java.sun.com/thread.jsp?forum=16&thread=168630
  You should stick to UTF8. It is designed so that the bytes generated by encoding non-ASCII characters can be safely transmitted across the Internet. Bytes generated by UTF16 can be just about anything.
  Here's what I suggest:
  I am running a version of the Sun tutorial that has a program running on a server to which I can send a string and the program sends back the string reversed.
  http://java.sun.com/docs/books/tutorial/networking/urls/readingWriting.html
  I haven't tried sending multi-byte characters but I will do so and test whether there are any transmission problems. (Assuming that the Sun cgi program itself correctly handles characters).
  More later,
  regards,
  Joe
  P.S.
  I thought one the reasons for the existence of UTF8 was to
  represent things like multi-byte characters in an ascii format?Not exactly. UTF8 encodes ascii characters into single bytes with the same byte values as ASCII encoding. This means that a document consisting entirely of ASCII characters is the same whether it was encoded as UTF8 or ASCII and can consequently be read in any ASCII document reader (e.g.notepad).

• SOAP Sender Adatper - Read custom http header field

  Hello,
  i try to read a custom http header into the dynamic configuration of a message - but it is not working as expected - in ASMA i configured to get the value of MYHEADER1 into XHEADERNAME1 - when testing with a MYHEADER1 value, the value is not put into XHEADERNAME1.
  Is it possible to get custom HTTP Headers in the message?
  bf
  franz

  I have quite the same problem!
  I try to make the receiver determination based on the content of XHeaderName1, but none of the Dynamic Configuration parameters is shown in the sxi_monitor.
  I've described my scenario in more detail in this thread
  http://scn.sap.com/message/13586532#13586532
  Does anyone have an idea?

• OSB Http Transport Custom Authenticatiion (X509 in Http header)

  Hello!
  I'm trying to solve this case. We have F5 Load balancer that terminates SSL Connections From client to the OSB. When terminating the SSL, the LB adds the clients certificate into headers of the Http request going to OSB.
  OSb proxy service is configured to use custom authentication with token type X509 (only choice in the OSB console).
  What happens when I send the request to OSB, is that I get http code 401 (unauthorized) this error on server log:
  ####<Sep 27, 2011 3:08:05 PM EEST> <Error> <WliSbTransports> <appserver02> <MANSERV02> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <> <> <1317125285598> <BEA-381327> <Transport-level custom token identity assertion failed
  java.lang.ClassCastException: java.lang.String cannot be cast to [Ljava.security.cert.X509Certificate;
  The HTTP header sent to OSB is in the messages below.
  It has also been wihotu the BEGIN CERTIFICATE and END CERTIFICATE lines with same results.
  Can somebody help me in:
  a) Should the certificate be sent in what form from LB to OSB.
  b) How should the OSB/WLS be configured for this to work?
  OSB version is 10.3.1.
  Request to the server is:
  POST /prjTemplateService/ProxyServices/psvcHelloWolrdWSSSLInterface HTTP/1.1
  Accept-Encoding: gzip,deflate
  Content-Type: text/xml;charset=UTF-8
  SOAPAction: "urn:#HelloWorldOperation"
  User-Agent: Jakarta Commons-HttpClient/3.1
  Host: <ip_here>
  Content-Length: 459
  SSLClientCertStatus: ok
  SSLClientCertb64: -----BEGIN CERTIFICATE-----
  MIICHDCCAYUCBE2sABcwDQYJKoZIhvcNAQEEBQAwVTELMAkGA1UEBhMCRkkxCzAJ
  BgNVBAgTAkZJMQ4wDAYDVQQHEwVFc3BvbzEMMAoGA1UEChMDRVpaMQswCQYDVQQL
  EwJUQzEOMAwGA1UEAxMFSnVzc2kwHhcNMTEwNDE4MDkxMDQ3WhcNMTEwNzI3MDkx
  MDQ3WjBVMQswCQYDVQQGEwJGSTELMAkGA1UECBMCRkkxDjAMBgNVBAcTBUVzcG9v
  MQwwCgYDVQQKEwNFWloxCzAJBgNVBAsTAlRDMQ4wDAYDVQQDEwVKdXNzaTCBnzAN
  BgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEAvEPjEn3tvG3YuXlsLZnE7ZOKUJIF0Foy
  c1hp+k7dyGUoHu3Phva7eVOO1cmHaGkFHkg+EnnK3+/Y58EMQAEwPOfQTj0/vSSk
  cEx2X/2p2W7ACldJlYMxx2ZdFa1qaKTXtoieLy23/kJI+ZTfIoB+nmZiPRE9Hq8p
  LTPlcMWVFnkCAwEAATANBgkqhkiG9w0BAQQFAAOBgQC3EZMQieOy4PFh+95R6W7/
  3xaaRm/BzmEU/Wf9JweEwrnttdSmRKsxx9vSkADnD0J7jGO+koym5CWvJHbox4Sk
  QMRPFaTOBRD4hzZeJMidds1LSzUm/QE9PXzjS/HLSjBBs5DmZfdR+uXPSFqTROkd
  87R5veuPX5KeKQHs8iesTw==
  -----END CERTIFICATE-----
  SSLClientCertSN: 4d:ac:00:17
  <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:urn="urn:Hello:client">
  <soapenv:Body>
  <urn:HelloWorldRequest>
  <urn:FirstName>Jolly</urn:FirstName>
  <urn:Surname>Roger</urn:Surname>
  </urn:HelloWorldRequest>
  </soapenv:Body>
  </soapenv:Envelope>
  Response from OSB:
  HTTP/1.1 401 Unauthorized
  Connection: close
  Date: Fri, 30 Sep 2011 08:32:33 GMT
  Content-Length: 1518
  Content-Type: text/html
  X-Powered-By: Servlet/2.5 JSP/2.1
  <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Draft//EN">
  <HTML>
  <HEAD>
  <TITLE>Error 401--Unauthorized</TITLE>
  <META NAME="GENERATOR" CONTENT="WebLogic Server">
  </HEAD>
  <BODY bgcolor="white">
  <FONT FACE=Helvetica><BR CLEAR=all>
  <TABLE border=0 cellspacing=5><TR><TD><BR CLEAR=all>
  <FONT FACE="Helvetica" COLOR="black" SIZE="3"><H2>Error 401--Unauthorized</H2>
  </FONT></TD></TR>
  </TABLE>
  <TABLE border=0 width=100% cellpadding=10><TR><TD VALIGN=top WIDTH=100% BGCOLOR=white><FONT FACE="Courier New"><FONT FACE="Helvetica" SIZE="3"><H3>From RFC 2068 <i>Hypertext Transfer Protocol -- HTTP/1.1</i>:</H3>
  </FONT><FONT FACE="Helvetica" SIZE="3"><H4>10.4.2 401 Unauthorized</H4>
  </FONT><P><FONT FACE="Courier New">The request requires user authentication. The response MUST include a WWW-Authenticate header field (section 14.46) containing a challenge applicable to the requested resource. The client MAY repeat the request with a suitable Authorization header field (section 14.8). If the request already included Authorization credentials, then the 401 response indicates that authorization has been refused for those credentials. If the 401 response contains the same challenge as the prior response, and the user agent has already attempted authentication at least once, then the user SHOULD be presented the entity that was given in the response, since that entity MAY include relevant diagnostic information. HTTP access authentication is explained in section 11.</FONT></P>
  </FONT></TD></TR>
  </TABLE>
  </BODY>
  </HTML>

  >
  by using Client Cert authentication I have to set HTTPS required to true.
  >
  Yes.
  >
  When I try to invoke this service with http request, it redirects to https service.
  This actually just trashes the entire idea of terminating SSL in the load balancer.
  >
  Not necessarily. Although direct HTTP request to WebLogic is redirected to HTTPS enabled port, you can still use this settings with WebLogic plugin. I'm not aware of your deployment, but I use Apache plugin for WebLogic, terminate SSL on Apache and I'm still able to send requests authenticated by certificate from client through HTTPS.
  I don't know about F5, but I guess there should be similar feature as well.
  http://download.oracle.com/docs/cd/E12840_01/wls/docs103/cluster/load_balancing.html

• SENDING DATA IN HTTP HEADER

  I want to send some data in HTTP HEADER and then tranfer the request to JSP using REQUEST DISPATCHER.
  //SOMETHING LIKE THIS //
  String Newheader="Some Value";
  String NewHeaderValue="Some New Value";
  response.addHeader(NewHeader,NewHeaderValue);
  RequestDispatcher dispatcher = getServletContext().getRequestDispatcher("/auth/Some.jsp");
  and printing header in JSP , but unable to get it . Can somebody help me out.

  To what I understand is setting a header in response is not going to give you in JSP page. because in JSP what you are doing is request.getHeader.
  Response header set in a filter is for the browser. if you really want to set a header in filter and then get it back in JSP then you need to use a RequestWrapper class
  Some thing similar to this, if you notice that the getHeader method is overriden
  class RequestWrapper extends HttpServletRequestWrapper {
       String remoteUserHeaderName;
       String userName;
       public RequestWrapper(HttpServletRequest request){
            super(request);          
       public RequestWrapper(HttpServletRequest request,String remoteUserHeaderName,String userName){
            super(request);          
            this.remoteUserHeaderName = remoteUserHeaderName;
            this.userName = userName;
       @Override
       public String getHeader(String header) {
            // TODO Auto-generated method stub
            if (remoteUserHeaderName != null && userName != null && header.equals(remoteUserHeaderName)) {
                 return userName;
            else {
                 return super.getHeader(header);
  }

• Make process manger send additional http header when querying WSDL ?

  Hello,
  is there a possibility to send an additional, custom http header when
  process manager reads WSDL from a webserver.
  Backgrund info: all our WSDLs are hosted on a special webserver which
  needs this field. Changing to another kind of repository is not an option.
  It would be nice if we could add some parameter to the appserver or domain
  configuration to add this field as a default for each request.
  Note that we don´t need the http field if we call partnerLinks. It´s only required for
  WSDL-query (= the URLs given in bpel.xml / </partnerLinkBinding> )
  Thanks in advance
  Bernd

  Hi,
  It is a memory or buffer related problem. Contact your BASIS.
  Looks like there is a shortage of space. Analyse the dump in ST22 and look for its proposals.
  OSS note 965351 might be applicable (if you are on 640/ unix).
  regards,
  NR

• OIF11g - Help on sending user attributes in HTTP header

  Hello, I have a OIF11g setup configured for both IdP and SP. Upon successfull authentication against LDAP, I need to end some user attributes on the HTTP header to the SP application. I do no have OAM in my setup, so there is no option of Webgate or Policy Manager to do that. As far as I read the config doc, I'm in the impression that we need to write a custom authentication engine to accept user credentials and code to authenticate against LDAP and also add attributes to the response header.
  Before I go down that path, just wanted to confirm if anybody has done this with OIF?
  Thanks,
  Sunil.

  Bernhard:
  Actually the headers are not set to null. I have an intermediate index.jsp page which is the first page that is redirected to by the AM - it is this page which calls my LoginServlet.
  The value appears consistently on this index.jsp page but after it is forwarded to the LoginServlet it starts behaving inconsistently. I check the system.out log in my websphere /logs folder and that tells me that LoginServlet does not consistenly get these values from the header.
  The wierd part is that if I use cookies or attributes, it works perfectly - each time every time. However, only in the case of headers (which is the method i am required to do) it behaves inconsistently.
  ANY feedback/help on this would be really appreciated bern.. thanks..
  ~saahil

• How to set custom HTTP header for single sign on

  Currently we just begin to use an application called "etran". This application requires user name and password to login. Now, my assignment is to integrate etran application in our internal application. This means that somewhere in our internal application, there is a link leads to the etran application.
  It is going to be single sign on, that means that once user logs into our internal application, when he/she clicks on the etran link, no sign on to etran is needed.
  I consult with the technical people in etran. they said that our internal application needs to send a "login request" to etran via SSL with the user's information encoded in base 64 format. etran captures the HTTP header containing user authentication and authorization information, and parses the required information from the HTTP header.
  My question is that how I set user information in HTTP header? From my understanding, once I am able to set the user information in HTTP header, it is in base 64 format?
  Thanks in advance for your help.

  sharon38_74 wrote:
  they said that our internal application needs to send a "login request" to etran via SSL with the user's information encoded in base 64 format. etran captures the HTTP header containing user authentication and authorization information, and parses the required information from the HTTP header.
  My question is that how I set user information in HTTP header? From my understanding, once I am able to set the user information in HTTP header, it is in base 64 format?Your application need to act like a proxy. You can invoke a HTTP request programmatically using java.net.URLConnection. You can set request headers using URLConnection#setRequestProperty(). Also see the API docs: [http://java.sun.com/javase/6/docs/api/java/net/URLConnection.html]. You only need to know the header field name where to set the Base64-encoded value in. You need to Base64-encode the value yourself.

• How to send a signed SOAP message with additional HTTP Header fields

  Our Partner's integration requirements are that we send them asynchronous SOAP messages, that are digitally signed, and whose HTTP headers contains 5 or 6 additional header fields, of which 3 or 4 will need to be dynamically set during the message mapping.  I believe we can use the HTTP adapter for adding new fields to the HTTP header, but don't believe it supports signing.  I believe that the SOAP adapter supports signing, but I'm not clear on how to use it to add fields to the HTTP header.  What is the most straight-forward way to achieve both the signing of the message and the addition of the HTTP header values?
  Thanks,
  Kurt

  >>>What is the most straight-forward way to achieve both the signing of the message and the addition of the HTTP header values?
  Use Java mapping for both.
  1) Signing the message
  You can digitally sign the soap message using many standard api like WSS4j? or  refer Java XML signature API which comes in Jdk1.6.
  Refer these links
  WSS4J  -  http://ws.apache.org/wss4j/axis.html
  Java XML signature : http://java.sun.com/developer/technicalArticles/xml/dig_signature_api/
  2) >>whose HTTP headers contains 5 or 6 additional header fields, of which 3 or 4 will need to be dynamically set during the message mapping
  Use Dynamic configuration API to set the additional header fields during message mapping.

• Custom Http header in remote object

  Hi, how to set custom http header in http request while using remote object in flex?

  Thank You, Patrick.
  You are best :)
  I read this APEX_WEB_SERVICE documentation before,
  but after I read once more time
  I found most important words "global variable g_request_headers".
  I think these variables must be described more in documentation.
  On APEX I did:
  1) Create New Page -> Form -> Form and Report On Webservice Results.
  2) Set all webservice paramters in page wizard.
  3) And create a new page process after submit:
  Begin
  apex_web_service.g_request_headers(1).name := 'username';
  apex_web_service.g_request_headers(1).value := ' ... ';
  apex_web_service.g_request_headers(2).name := 'password';
  apex_web_service.g_request_headers(2).value := ' ... ';
  End;
  4) It's most important that this process must be done before the webservice process.
  Good luck

• Read Http header in Flex

  Hi, I have a Flex web application accessed through a portal by users
  of different organisations.
  When user logs on to portal, user can access the Flex application without further authentication. However I need to know user credentials
  in order to control the functionality within the Flex app.
  If I can read the Http Header when Flex app is initialised, I will get all the required info.
  In jsp, I can use request.getHeader("")
  What is the best way to read Http Headers from a Flex App?

  <mx:Application xmlns:mx="http://www.adobe.com/2006/mxml" layout="absolute" creationComplete="load()">
  <mx:Script>
          <![CDATA[
          public var xmlLoader:URLLoader=new URLLoader();
  function load():void{
              var xmlString:URLRequest = new URLRequest("items.xml");
            xmlLoader.load(xmlString);
          xmlLoader.addEventListener(Event.COMPLETE,init);
     function init(event:Event):void{
         var xDoc:XMLDocument = new XMLDocument();
      xDoc.ignoreWhite = true;
     var  myXML:XML=XML(xmlLoader.data);  
     var fr:String=myXML.items.item[0].Value.toString();
  ]]>
      </mx:Script>
  </mx:Application>
  Suppose this is ur items.xml file
  <items>
    <item>
      <name>jk</name>
      <Value>high</Value>
    </item>
    <item>
      <name>coat</name>
  <Value>medium</Value>
    </item>
     <item>
  <name>milk</name>
  <Value>low</Value>
     </item>
  </items>
  May be u need some imports
  Then the output will be :high(becoz items is  a xml list containing many xml nodes...item[0] is first xml node and Value is the element..toString methods converts it into a string)

• Custom HTTP Header

  Is there any way to add custom http header (not soap header) into Soap request sending by BPEL server to soap server
  Regards
  J

  Looks like it possible via the Partner Link properties: httpUsername and httpPassword
  Check http://www.oracle.com/technology/pub/articles/bpel_cookbook/chandran.html
  Under step 4.
  Regards Pete

• Send a json string to an HTTP in labview

  Hi,
  I need to assing values to an HTTP site by sending a json string, I have been trying using the HTTP client PUT vi with no success, does anyone have an easy way of sending a json string to an HTTP site in labview thru the PUT method???
  Thank you

  What have you tried?
  This should work as a basic example:
  If you have LabVIEW 2013 or newer, there are built-in VIs for encoding/decoding JSON strings to/from LabVIEW clusters.
  Certified LabVIEW Architect, Certified TestStand Developer
  NI Days (and A&DF): 2010, 2011, 2013, 2014
  NI Week: 2012, 2014
  Knowledgeable in all things Giant Tetris and WebSockets