ASG
IBM
Zystems
Cressida
Icon
Netflexity
 
  MQSeries.net
Search  Search       Tech Exchange      Education      Certifications      Library      Info Center      SupportPacs      LinkedIn  Search  Search                                                                   FAQ  FAQ   Usergroups  Usergroups
 
Register  ::  Log in Log in to check your private messages
 
RSS Feed - WebSphere MQ Support RSS Feed - Message Broker Support

MQSeries.net Forum Index » WebSphere Message Broker (ACE) Support » Web Services Request authentication.

Post new topic  Reply to topic
 Web Services Request authentication. « View previous topic :: View next topic » 
Author Message
venky
PostPosted: Tue Mar 13, 2007 9:48 am    Post subject: Web Services Request authentication. Reply with quote

Master

Joined: 08 Jul 2003
Posts: 205

Hi,

We are planning to WMB as a web services client for one of our integration requirements. We will be using WMB 6.0.2 Http Request node to send out the soap/http request.

Our Web services vendor requires that Each web service request must contain a valid username and password for the requesting user.

I tried to look at the properties of the Http request node, but couldn't find any place where I could set the username/password. Can anyone please help me with this ?

venky.
Back to top
View user's profile Send private message
marcin.kasinski
PostPosted: Tue Mar 13, 2007 10:28 am    Post subject: Re: Web Services Request authentication. Reply with quote

Sentinel

Joined: 21 Dec 2004
Posts: 850
Location: Poland / Warsaw

venky wrote:
Hi,

We are planning to WMB as a web services client for one of our integration requirements. We will be using WMB 6.0.2 Http Request node to send out the soap/http request.

Our Web services vendor requires that Each web service request must contain a valid username and password for the requesting user.

I tried to look at the properties of the Http request node, but couldn't find any place where I could set the username/password. Can anyone please help me with this ?

venky.



You should know how to send user and password.

I mean what kind of authentication it is.

Is is Basic-Auth or something else.

Somethimes some services reads username and password from HTTP headers.


First you should ask your vendor how you should authenticate and then if you dont know you should ask here how implement this kind of authentication with broker .


Marcin


Last edited by marcin.kasinski on Wed Mar 14, 2007 10:29 am; edited 1 time in total
Back to top
View user's profile Send private message Visit poster's website
venky
PostPosted: Tue Mar 13, 2007 11:53 am    Post subject: Reply with quote

Master

Joined: 08 Jul 2003
Posts: 205

They are requesting us to send the authentication information in the SOAP header.

Do you have a document or link that has detail information regarding this ?

Thanks for your help.

Venky
Back to top
View user's profile Send private message
Lisa
PostPosted: Tue Mar 13, 2007 11:58 am    Post subject: Reply with quote

Master

Joined: 07 Jun 2002
Posts: 287
Location: NJ

Hi,
Google on this topic SOAP authentication and you will find samples.

Lisa
Back to top
View user's profile Send private message Send e-mail
marcin.kasinski
PostPosted: Tue Mar 13, 2007 12:11 pm    Post subject: Reply with quote

Sentinel

Joined: 21 Dec 2004
Posts: 850
Location: Poland / Warsaw

venky wrote:
They are requesting us to send the authentication information in the SOAP header.

Do you have a document or link that has detail information regarding this ?

Thanks for your help.

Venky


...

OK, but do you know names of this headers ?

ESQL example

SET OutputRoot.HTTPRequestHeader.UserId = 'SomeUser';
SET OutputRoot.HTTPRequestHeader.Password = 'SomePwd';



Marcin
Back to top
View user's profile Send private message Visit poster's website
Lisa
PostPosted: Tue Mar 13, 2007 12:16 pm    Post subject: Reply with quote

Master

Joined: 07 Jun 2002
Posts: 287
Location: NJ

Hi,
Try this out.
<?xml version="1.0" encoding="utf-8"?>
<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/">
<soap:Header>
<AUTHHEADER xmlns="http://tempuri.org/">
<USERNAME>string</USERNAME>
<PASSWORD>string</PASSWORD>
</AUTHHEADER>
</soap:Header>
<soap:Body>
<SENSITIVEDATA xmlns="http://tempuri.org/" />
</soap:Body>
</soap:Envelope>
Back to top
View user's profile Send private message Send e-mail
marcin.kasinski
PostPosted: Tue Mar 13, 2007 12:20 pm    Post subject: Reply with quote

Sentinel

Joined: 21 Dec 2004
Posts: 850
Location: Poland / Warsaw

Lisa wrote:
Hi,
Try this out.
<?xml version="1.0" encoding="utf-8"?>
<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/">
<soap:Header>
<AUTHHEADER xmlns="http://tempuri.org/">
<USERNAME>string</USERNAME>
<PASSWORD>string</PASSWORD>
</AUTHHEADER>
</soap:Header>
<soap:Body>
<SENSITIVEDATA xmlns="http://tempuri.org/" />
</soap:Body>
</soap:Envelope>



UPS,


Sorry my example was for HTTP not SOAP authentication .


Marcin
Back to top
View user's profile Send private message Visit poster's website
vsr
PostPosted: Wed Mar 14, 2007 4:32 am    Post subject: Reply with quote

Centurion

Joined: 04 Apr 2006
Posts: 104

Quote:
SET OutputRoot.HTTPRequestHeader."Authorization" = 'Basic '||base64Encode(user||':'||password);


Well, 'user:Password' string should be base64Encoded then you can pass using shown above esql ... this is used for windows Authentication only ..

And this link may help you :
http://www.mqseries.net/phpBB2/viewtopic.php?p=161846&highlight=#161846
Back to top
View user's profile Send private message
marcin.kasinski
PostPosted: Wed Mar 14, 2007 4:49 am    Post subject: Reply with quote

Sentinel

Joined: 21 Dec 2004
Posts: 850
Location: Poland / Warsaw

vsr wrote:
Quote:
SET OutputRoot.HTTPRequestHeader."Authorization" = 'Basic '||base64Encode(user||':'||password);


Well, 'user:Password' string should be base64Encoded then you can pass using shown above esql ... this is used for windows Authentication only ..


He said

"They are requesting us to send the authentication information in the SOAP header"

Your example is for basic auth


Here you have my example for SOAP authentication

<?xml version="1.0" encoding="utf-8"?>
<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<soapenv:Header>
<wsse:Security soapenv:mustUnderstand="1" xmlns:wsse="http://schemas.xmlsoap.org/ws/2003/06/secext">
<wsse:UsernameToken>
<wsse:Username>user</wsse:Username>
<wsse:Password>pwd</wsse:Password>
</wsse:UsernameToken>
</wsse:Security>
</soapenv:Header>
<soapenv:Body>
...
</soapenv:Body>
</soapenv:Envelope>
Back to top
View user's profile Send private message Visit poster's website
vsr
PostPosted: Wed Mar 14, 2007 5:10 am    Post subject: Reply with quote

Centurion

Joined: 04 Apr 2006
Posts: 104

Yes Marcin , you are right !

For WS-S( WS-Security ) your code should work !

This may be a useful link

http://www.codeproject.com/webservices/WS-Security.asp#Security_Tokens

Venky, you can ask the web service application team how they are reading the username and password . Are they implimenting WSS etc..
Back to top
View user's profile Send private message
venky
PostPosted: Wed Mar 14, 2007 10:03 am    Post subject: Reply with quote

Master

Joined: 08 Jul 2003
Posts: 205

Marcin, Lisa & Vsr,

Thank you for all your inputs.

Venky
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic  Reply to topic Page 1 of 1

MQSeries.net Forum Index » WebSphere Message Broker (ACE) Support » Web Services Request authentication.
Jump to:  



You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Protected by Anti-Spam ACP
 
 


Theme by Dustin Baccetti
Powered by phpBB © 2001, 2002 phpBB Group

Copyright © MQSeries.net. All rights reserved.