Hi Saurabh,

Thanks for the answer it works! It is possible to use with -api and without it. Moreover, the is the user name instead the user id that is used to log in.

Do you know why this saml2=disable must be at the end of the URL?

Best regards

Marlos Damasceno

Hi Marios,

Actually if you do not use "saml2=disbaled" then system actually route network to IDP and hence trying to authenticate via IDP and not by marketing cloud.Hence the SAML2 error you face since the trust is not established. Moreover only business user are mapped at IDP not technical.

But when making you call via browser for APIs you have to use saml2=disabled and then only it gives you marketing authentication pop up and not the one from IDP. So basically with this additional param you are bypassing IDP.

Hope it clarifies your doubt!

Thanks

Saurabh

Thanks a million Saurabh, it does clarifies!

Best regards,

Marlos Damasceno

Hi Saurabh,

I have tried using the "saml2=disbaled" clause but after that I receive the following error message every time:

{"fault":{"faultstring":"Unsupported Encoding \"br\"","detail":{"errorcode":"protocol.http.UnsupportedEncoding"}}}

Do you know how can I solve this problem also?

Best Regards,

Mihai Dipsan

Hi,

You are passing wrong string. What you are passing "saml2=disbaled"" where are what you need to pass is: saml2=disabled".

Thanks

Saurabh

Hi,

sorry, it was a typo, I tried with disabled. I receive the error above.

Best Regards,

Mihai

can you pls post the whole URL being fired? Also kindly make sure you try in "Private Window" or new browser so that IDP cookies are not shared within the session.

thank you very much for your answers Saurabh, I just figured that I find myself in a bit different constellation.

By calling the OData API directly from Hybris it works (with the additional clause saml2=disable).

However in my case I want to implement the API in SAP API Management (I am using the best practice proposed by SAP in SAP API Business Hub) and that's why I receive the above error.

It's strange because when I call the API from SAP API Management the only thing being changed is the domain. But the API Management domain should successfully replace the Hybris domain (it's basically just a mapping after all).

But unfortunately it doesn't work. I get the above error.

Would you happen to know what exactly causes this behaviour in SAP API Management or where should I address the problem?

I tested a whole bunch of Hybris API's this way and it seems the problem happens every time, no matter which API I choose.

Best Regards,

Mihai

Hi Mihai,

Sorry but I am not very much familiar with set up of API management. Hence can you pls reach out to SAP Support team to get it clarified? Also pls do post the fix on here in the same thread so that everyone is aware of it.

Many Thanks!

Saurabh

A few years later but I stumbled across this issue while looking to fix a similar situation for another customer. The issue of {"fault":{"faultstring":"Unsupported Encoding \"br\"","detail":{"errorcode":"protocol.http.UnsupportedEncoding"}}}

is caused by Brotil encoded response which is not supported in API Management. The fix is to send a request with header Accept-Encoding with value gzip,deflate. You can additionally create a policy within API management Assign Message to automatically force this header as well.

Regards,
Elijah