cancel
Showing results for 
Search instead for 
Did you mean: 

HTTPS backend url doesn't work on SMP cloud

NanWang
Advisor
Advisor
0 Kudos

Hi team

Is there anyone setup the https backend on SMP trial cloud successfully? I tried to setup it but it doesn't work. I guess the certificate doesn't exchange correctly, so the SMP server can't connect to backend successfully. the log from the SMP cloud is as following.

Who can help on it?

I want to use the: https://sapes1.sapdevcenter.com/sap/opu/odata/IWFND/RMTSAMPLEFLIGHT/?$format=xml as the backend.

Thanks!

:

2013-11-12 09:20:46.674#ERROR#com.sybase.sup.common.connectivity.BackendConnectivity#null#IOException while executing the request::: ::: [com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificates(SSLSessionImpl.java:352), org.apache.http.conn.ssl.AbstractVerifier.verify(AbstractVerifier.java:128), org.apache.http.conn.ssl.SSLSocketFactory.createLayeredSocket(SSLSocketFactory.java:453), org.apache.http.impl.conn.DefaultClientConnectionOperator.updateSecureConnection(DefaultClientConnectionOperator.java:200), org.apache.http.impl.conn.AbstractPoolEntry.layerProtocol(AbstractPoolEntry.java:278), org.apache.http.impl.conn.AbstractPooledConnAdapter.layerProtocol(AbstractPooledConnAdapter.java:142), org.apache.http.impl.client.DefaultRequestDirector.establishRoute(DefaultRequestDirector.java:772), org.apache.http.impl.client.DefaultRequestDirector.tryConnect(DefaultRequestDirector.java:579), org.apache.http.impl.client.DefaultRequestDirector.execute(DefaultRequestDirector.java:425), com.sap.core.connectivity.httpdestination.client.RequestDirectorExtender.execute(RequestDirectorExtender.java:47), org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:820), org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:754), com.sap.core.connectivity.httpdestination.impl.HttpClientWrapper.execute(HttpClientWrapper.java:70), com.sybase.sup.common.connectivity.BackendConnectivity.execute(BackendConnectivity.java:277), com.sybase.sup.common.connectivity.BackendConnectivity.executeRequest(BackendConnectivity.java:81), com.sap.smp.security.http.HttpAuthenticationLoginModule.authenticate(HttpAuthenticationLoginModule.java:236), com.sap.smp.security.http.HttpAuthenticationLoginModule.login(HttpAuthenticationLoginModule.java:127), com.sybase.security.internal.SecSubjectImpl.login(SecSubjectImpl.java:395), com.sybase.security.internal.SecContextImpl.internalLogin(SecContextImpl.java:1505), com.sybase.security.internal.SecContextImpl.login(SecContextImpl.java:534), com.sybase.sup.server.util.CSIUtil.saveAuthenticatedCSIContext(CSIUtil.java:117), com.sybase.sup.server.http.AuthenticationProcessor.saveCSIContext(AuthenticationProcessor.java:58), com.sybase.sup.server.http.AuthenticationProcessor.process(AuthenticationProcessor.java:194), com.sybase.sup.server.http.DispatcherServlet.processRequest(DispatcherServlet.java:294), com.sybase.sup.server.http.DispatcherServlet.doGet(DispatcherServlet.java:107), javax.servlet.http.HttpServlet.service(HttpServlet.java:735), javax.servlet.http.HttpServlet.service(HttpServlet.java:848), org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:305), org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210), com.sap.core.communication.server.CertValidatorFilter.doFilter(CertValidatorFilter.java:321), org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243), org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210), org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:222), org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:123), org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472), com.sap.security.auth.service.webcontainer.internal.Authenticator.invoke(Authenticator.java:191), org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171), org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:99), org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:953), com.sap.core.tenant.valve.TenantValidationValve.invokeNextValve(TenantValidationValve.java:170), com.sap.core.tenant.valve.TenantValidationValve.invoke(TenantValidationValve.java:85), com.sap.js.statistics.tomcat.valve.RequestTracingValve.invoke(RequestTracingValve.java:25), com.sap.core.js.monitoring.tomcat.valve.RequestTracingValve.invoke(RequestTracingValve.java:27), org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118), org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408), org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1008), org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:589), org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:310), java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:895), java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:918), java.lang.Thread.run(Thread.java:743)]
2013-11-12 09:20:46.675#ERROR#com.sap.smp.security.http.HttpAuthenticationLoginModule#null#SMP: Security: Exception when authenticating with HTTP Auth.. stack trace below: ::: [com.sybase.sup.common.connectivity.BackendConnectivity.execute(BackendConnectivity.java:337), com.sybase.sup.common.connectivity.BackendConnectivity.executeRequest(BackendConnectivity.java:81), com.sap.smp.security.http.HttpAuthenticationLoginModule.authenticate(HttpAuthenticationLoginModule.java:236), com.sap.smp.security.http.HttpAuthenticationLoginModule.login(HttpAuthenticationLoginModule.java:127), com.sybase.security.internal.SecSubjectImpl.login(SecSubjectImpl.java:395), com.sybase.security.internal.SecContextImpl.internalLogin(SecContextImpl.java:1505), com.sybase.security.internal.SecContextImpl.login(SecContextImpl.java:534), com.sybase.sup.server.util.CSIUtil.saveAuthenticatedCSIContext(CSIUtil.java:117), com.sybase.sup.server.http.AuthenticationProcessor.saveCSIContext(AuthenticationProcessor.java:58), com.sybase.sup.server.http.AuthenticationProcessor.process(AuthenticationProcessor.java:194), com.sybase.sup.server.http.DispatcherServlet.processRequest(DispatcherServlet.java:294), com.sybase.sup.server.http.DispatcherServlet.doGet(DispatcherServlet.java:107), javax.servlet.http.HttpServlet.service(HttpServlet.java:735), javax.servlet.http.HttpServlet.service(HttpServlet.java:848), org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:305), org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210), com.sap.core.communication.server.CertValidatorFilter.doFilter(CertValidatorFilter.java:321), org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243), org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210), org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:222), org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:123), org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472), com.sap.security.auth.service.webcontainer.internal.Authenticator.invoke(Authenticator.java:191), org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171), org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:99), org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:953), com.sap.core.tenant.valve.TenantValidationValve.invokeNextValve(TenantValidationValve.java:170), com.sap.core.tenant.valve.TenantValidationValve.invoke(TenantValidationValve.java:85), com.sap.js.statistics.tomcat.valve.RequestTracingValve.invoke(RequestTracingValve.java:25), com.sap.core.js.monitoring.tomcat.valve.RequestTracingValve.invoke(RequestTracingValve.java:27), org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118), org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408), org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1008), org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:589), org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:310), java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:895), java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:918), java.lang.Thread.run(Thread.java:743)]
2013-11-12 09:20:46.675#ERROR#com.sybase.sup.server.util.CSIUtil#null#LoginException when attempting to login. ::: [com.sybase.security.internal.SecSubjectImpl.login(SecSubjectImpl.java:481), com.sybase.security.internal.SecContextImpl.internalLogin(SecContextImpl.java:1505), com.sybase.security.internal.SecContextImpl.login(SecContextImpl.java:534), com.sybase.sup.server.util.CSIUtil.saveAuthenticatedCSIContext(CSIUtil.java:117), com.sybase.sup.server.http.AuthenticationProcessor.saveCSIContext(AuthenticationProcessor.java:58), com.sybase.sup.server.http.AuthenticationProcessor.process(AuthenticationProcessor.java:194), com.sybase.sup.server.http.DispatcherServlet.processRequest(DispatcherServlet.java:294), com.sybase.sup.server.http.DispatcherServlet.doGet(DispatcherServlet.java:107), javax.servlet.http.HttpServlet.service(HttpServlet.java:735), javax.servlet.http.HttpServlet.service(HttpServlet.java:848), org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:305), org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210), com.sap.core.communication.server.CertValidatorFilter.doFilter(CertValidatorFilter.java:321), org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243), org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210), org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:222), org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:123), org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472), com.sap.security.auth.service.webcontainer.internal.Authenticator.invoke(Authenticator.java:191), org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171), org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:99), org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:953), com.sap.core.tenant.valve.TenantValidationValve.invokeNextValve(TenantValidationValve.java:170), com.sap.core.tenant.valve.TenantValidationValve.invoke(TenantValidationValve.java:85), com.sap.js.statistics.tomcat.valve.RequestTracingValve.invoke(RequestTracingValve.java:25), com.sap.core.js.monitoring.tomcat.valve.RequestTracingValve.invoke(RequestTracingValve.java:27), org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118), org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408), org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1008), org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:589), org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:310), java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:895), java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:918), java.lang.Thread.run(Thread.java:743)]
2013-11-12 09:20:46.675#ERROR#com.sybase.sup.server.http.AuthenticationProcessor#null#Failed to authenticate user [i062905@gwdemo] ::: ::: [com.sybase.sup.server.util.CSIUtil.saveAuthenticatedCSIContext(CSIUtil.java:135), com.sybase.sup.server.http.AuthenticationProcessor.saveCSIContext(AuthenticationProcessor.java:58), com.sybase.sup.server.http.AuthenticationProcessor.process(AuthenticationProcessor.java:194), com.sybase.sup.server.http.DispatcherServlet.processRequest(DispatcherServlet.java:294), com.sybase.sup.server.http.DispatcherServlet.doGet(DispatcherServlet.java:107), javax.servlet.http.HttpServlet.service(HttpServlet.java:735), javax.servlet.http.HttpServlet.service(HttpServlet.java:848), org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:305), org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210), com.sap.core.communication.server.CertValidatorFilter.doFilter(CertValidatorFilter.java:321), org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243), org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210), org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:222), org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:123), org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472), com.sap.security.auth.service.webcontainer.internal.Authenticator.invoke(Authenticator.java:191), org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171), org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:99), org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:953), com.sap.core.tenant.valve.TenantValidationValve.invokeNextValve(TenantValidationValve.java:170), com.sap.core.tenant.valve.TenantValidationValve.invoke(TenantValidationValve.java:85), com.sap.js.statistics.tomcat.valve.RequestTracingValve.invoke(RequestTracingValve.java:25), com.sap.core.js.monitoring.tomcat.valve.RequestTracingValve.invoke(RequestTracingValve.java:27), org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118), org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408), org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1008), org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:589), org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:310), java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:895),

Accepted Solutions (1)

Accepted Solutions (1)

mgrasshoff
Advisor
Advisor
0 Kudos

OK.

First get the HANA Cloud Platform SDK (I think you already have it)

NOTE: When prompted for password in the console client, provide the SDN password of the user.

NOTE: sXXXXXXXX must be substituted by your SCN User

Follow the steps described below:

Step 1: Get the list of destinations for the account by entering the following command

neo get-destination --account sXXXXXXXXtrial --user sXXXXXXXX --provider-account sapmobile --provider-application mobile --host hanatrial.ondemand.com

After choosing your particular destination and security profile, enter the following command

neo get-destination --account sXXXXXXXXtrial --user sXXXXXXXX --provider-account sapmobile --provider-application mobile --host hanatrial.ondemand.com --name <destination_name> --localpath <Path to download the destination>

<destination_name> from the first command output.

<Path to download the destination> e.g. C:\ or .

Step 2: Go to the path and edit the file, by adding the following line :

TrustAll=TRUE

Step 3: Now upload the same file using the following command

neo put-destination --account sXXXXXXXXtrial --user sXXXXXXXX --provider-account sapmobile --provider-application mobile --host hanatrial.ondemand.com --localpath <Path for the downloaded file>

This solves the issue.

-Martin

Former Member
0 Kudos

I kept getting a 401 authentication issue on my windows VM. I decided to run neo.sh get-destination from my mac and there everything worked perfectly.

Thank you Martin Grasshoff

NanWang
Advisor
Advisor
0 Kudos

Hi Martin

your solution work for me

Thanks !

Former Member
0 Kudos

Hi Martin,

I was also facing the same issue. I have downloaded the SAP HANA Cloud Platform SDK and made changes to the Java Web version 1.51.16 and Java EE 6 Web Profile version 2.30.19.2 as you have explained.

But still I am getting the following error.

http://dummy.mydomain.com.com:8000/sap/opu/odata/iwfnd/MYSERVICE Backend profile  Backend system cannot be reached

http://dummy.mydomain.com:8000/sap/opu/odata/iwfnd/MYSERVICE Security profile Security system cannot be reached.


Can you help me in solving this?


Regards,

Dhani.


Answers (1)

Answers (1)

mgrasshoff
Advisor
Advisor
0 Kudos

Hi.

Please check

https://help.hana.ondemand.com/help/frameset.htm?b068356dd7c34cf7ad6b6023deeb317d.html

https://help.hana.ondemand.com/help/frameset.htm?56e309f496cc446ba441d862db94cb18.html

the server is not trusted per default. So it would make sense to upload a prepared truststore with the certificates you need.

Hope that helps,

-Martin

NanWang
Advisor
Advisor
0 Kudos

Hi martin

thanks for your reply. Would you please tell me how to add the keystore to the hana server? I can prepare the key store by my self. and I find the document https://help.hana.ondemand.com/mobile/help/doc/html/soo1352362697427.html.  I tried to follow this steps. but I do not know how to create the correct destination. All of destination is related to an application. How can I create a new destination and make it work for my mobile application?

Thanks!

mgrasshoff
Advisor
Advisor
0 Kudos

Hi.

You'll need to setup the neo console using the Hana SDK. Installation is described here:

https://help.hana.ondemand.com/help/frameset.htm?7613dee4711e1014839a8273b0e91070.html

then upload your truststore like described here:

https://help.hana.ondemand.com/help/frameset.htm?dea2506fb892403781e7720b0e292810.html

Does it help?

-Martin

NanWang
Advisor
Advisor
0 Kudos

Hi Martin

very help information. A further question, I have to place a password for my keystore. but in the keystore upload command, there is no keystore password in it. Where can I set the keystore password for mobile application? for the self develop application, we can give the keystore password in the code.

Thanks!