Skip to Content

SOAP WS-Security

Hi All,

I am doing a Proxy(SOAP) to SOAP synchronous scenario. I am on 7.4 single stack. When the data is trigerred from ECC I need to build a WS-Security header and send it across to the third party.

I have done a XSLT mapping to add the below header in the message. My Question is how or from where can I get the username and password values to be entered . I mean how do we populate the values in that field. Currently I am using test which is hard coded.

  <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"

      soapenv:mustUnderstand="1">

      <wsse:UsernameToken xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"

        wsu:Id="UsernameToken-21280292">

        <wsse:Username>test</wsse:Username>

        <wsse:Password>test</wsse:Password>

    </wsse:Security>

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • Jan 12, 2015 at 09:56 AM

    Hi Amit,

    I have done a XSLT mapping to add the below header in the message. My Question is how or from where can I get the username and password values to be entered . I mean how do we populate the values in that field. Currently I am using test which is hard coded.

    This really depends on your requirement, if you have multiple usernames/passwords in a single client, it may be best to include it in the Proxy payload, retrieve the username/password to be used in header and remove it from the resulting Soap Body.

    If the username/password will never change per client, you could use parameters in your mapping (can be set in message mapping or in operation mapping) and then in integration directory input the username and password.

    Regards,

    Mark

    Add comment
    10|10000 characters needed characters exceeded