I'm using BIRT 4.3.1 and my datasource is a Webservice. Authentication is done by Josso and JOSSOID is available at my report.
I've tried to call this Webservice by SoapUi adding JOSSOID in the header. But I need to know how to do it by BIRT. I use a BIRTEclipse to edit/view the report itself.
I've searched something about WSSE but this protocol needs the username and password and I have just JOSSOID.
How could I add a custom header to this HTTP Request?
Related
How can I configure WSO2 API Manager to handle Multiple Authentication API Keys in the store's API Console? I would like it show fields: Authentication and clientId, for example. But it only shows the field for Authentication despite of I built my swagger file with both headers in .
I do handle this Auth headers in my application backend. And I am testing my swagger file in the swagger-editor and works fine (Swagger Editor asking for two API Keys Headers).
Swagger can handle a lot itself, it's only a definition file. It doesn't mean a (any) product must support all options.
WSO2AM reads only the authorization header (Authorization by default, can be changed). The header is cleared before sending to the backend.
If you want to be able sending a custom header to the backend from the API Store, you can define a header parameter (not as an api key)
WSO2AM can be configured to send a JWT token to the backend with client information, that's how backend can get and validate the identity information.
I have a web service which is validated by OAuth (Authorization code).
I am using Oracle IDM stack (OAM /Oath service , OES etc).
The issue is - I want to have OAUth validation only when a webService API is processed at the backend, but not when a client is just browsing a WSDL or XSD.
In my current implementation, I am using filter in the web.xml and I have added web service name ( which is web service Servlet) URL in the filters. The url to browse the service and execute the service, will have same name except the ?WSDL at the end of the URL, in case of WSDL/XSD query.
So, the problem is when I query WSDL, then also it goes goes via OAuth validation, which I don't want!
I tried to add logic to determine if the http query string is ?WSDL then by pass OAUTH validation, but it does not work because clients like SOAP UI and others can actually use ?WSDL in the URL, to even execute the web service API, which sort of fails the whole validation purpose.
Has anyone come across similar issue? how to resolve this issue ?
I have one WSDL containing the metadata like web service etc which i have tried to extract using soap API but since all the web services in WSDL are authenticated, I am not able to POST the request and get the response when I create the Data source in Report Builder and add the WSDL URL i am not able to post the request to get the required response as it throws the authentication error..!!!
I have tried setting the credentials while passing the credentials #query in dataset, but unable to post the request.
Can anyone help me on this part..!!
I am using wso2 ESB to secure my service. service is available through wsdl, and this service is insecured. My scenario is as follows: A system expose some apis or services, and they are insecured. I want to create proxy services to these services. If client invokes the proxy service, ESB should first check if the request contains the session ID, if yes, client can invoke the backend service. if no, client is redirect to a log in page. I think ESB can do this by adding a session ID or user ID header to the request, but I am lack of docs. can someone help?
and I have read [1], and conclude ESB will meet my demand.
[1] http://www.ws02.net/library/knowledge-base/convert-http-basic-authentication-ws-security-username-token/
I think you are expecting a custom header field from user request. Since you are creating proxies with the associated WSDL, you can add SOAP Header requirement in your wsdl and associate that WSDL to the proxy (using publishWSDL option). So, when user send request to your proxy he might need to add that particular header.
Other routing logic you can handle within proxy configuration
I have a proxy service who uses an XSLT mediator, I want to add a request header to it, this information representes a basic HTTP authentication :
Authorization:Basic YWRtaW46YWRtaW4=
The last key is created with a login 'admin' and a password 'admin'.
How can I add this header to my request in the proxy service as a get request so I can authenticate my proxy before doing the xslt transformation.
Thanks
How can I add this header to my request
You should add this as BasicAuth header in your request. If you use SOAP UI, you can see the options to add a SOAPHeader elements where, provide as Authorization :Basic XXX