Since you need the token in the sender channel, it will not be possible with UDF or java mapping to achieve this requirement.

Basically you need create custom adapter module, which will generate and store the token in the dynamic variable.

Please check this blog for adding dynamic config variable. You have to perform look up in the adapter module and then add it to dynamic config.

https://blogs.sap.com/2016/08/23/setting-dynamic-configuration-attributes-using-custom-adapter-modul...

I would like to find how to add a Rest Sender to the audience of the JWT Token, to be able to give authorization.

I'm working on that, if I find the solution I'll share it with you 🙂

Hi, binod1991s did you find the solution?

I'm having the same scenario, REST Sender with JWT.

Regards,

Sebastian

Hi Binod,

As Muniyappan said you have to deal this with module at sender channel. I agree with him, because you can call UDF/ java mapping once the message is in PI. But in your case you want to populate the header as soon as the message ID created in PI.
In this case, PI will Poll the Rest end point and as soon as a message is fetched it will execute the adapter module to add the header.

Thanks

Sugata

Hi,

For receiver side, you can do it now out of the box
https://blogs.sap.com/2019/04/25/fetch-oauth-token-in-rest-is-now-out-of-the-box/

For sender side i still do not understand.. Basically SAP PO is generating API which you are exposing and testing from postman, so it means postman or any one calling SAP PO REST api must get a token from SAP PO am i right ?
In that case it has to be done at system level where SAP PO system allows calls to it's end point using token

Regards,

Vikas

could you please share you channel config? what is the name being used in the channel?

receiver side you can use java map/udf/custom adapter module.

But in the sender, it is not the case. sender interface has get the payload, then only mapping/udf will come into picture. Hence you can not use udf/mapping here.

Hello Sugata,

Need one more help, after this i will close this thread.

Actually above requirement got canceled but got new similar kind of requirement.

I have tested from postman and PO Development environment, it's working fine.

I don't know how to pass the access token to the header dynamically, I am using sender REST Pooling to fetch the data from REST based API.

I have written java mapping code also

public static String GenerateAccessToken() {


		String AuthURL = "https://<host_name>/auth";
		try {


			URL url = new URL(AuthURL);
			URLConnection connection = url.openConnection();
			HttpURLConnection httpConn = (HttpURLConnection) connection;


			// Set Header
			httpConn.setRequestProperty("Content-Type", "application/json");
			httpConn.setRequestProperty("Accept", "application/json");
			httpConn.setDoOutput(true);
			httpConn.setDoInput(true);
			httpConn.setRequestMethod("POST");


			// Set Body
			String credential = "{\"username\":\"<api_user_name>\",\"password\":\"<api-password>\"}";


			OutputStreamWriter writer = new OutputStreamWriter(connection.getOutputStream(), "UTF-8");
			writer.write(credential);
			writer.close();


			BufferedReader br = new BufferedReader(new InputStreamReader(connection.getInputStream()));
			StringBuffer jsonString = new StringBuffer();
			String line;
			while ((line = br.readLine()) != null) {
				jsonString.append(line);
			}
			br.close();


			System.out.println(jsonString);
			String access_token = jsonString.substring(10,jsonString.indexOf("\",\"expiration\":\""));


			return access_token.toString();
			


		} catch (Exception e) {
			throw new RuntimeException(e.getMessage());
		}


		// { 
                //    "token":"access_token",
                //      "expiration":"2019-04-23 08:39:01.000+0000"
                // }


	}



Here I need to pass the username and password in body and Content-Type and Accept as a application/json value to generate the access token.

Can you please guide me which one i have to used UDF/LookUP. I don't know which value have to pass in header of Sender REST Pooling adapter.

 When i see in your UDF


//return token;

token = "access_token="+token;
DynamicConfiguration dynConf = (DynamicConfiguration) container.getTransformationParameters().get(StreamTransformationConstants.DYNAMIC_CONFIGURATION); 

DynamicConfigurationKey key = DynamicConfigurationKey.create( "http://sap.com/xi/XI/System/REST", "access_token"); 
dynConf.put(key, token); return ""

Which value need to provide in Header that will fetch token dynamically ?
Since two variable is here "access_token" and "token" if we will pass token variable then what is use of access_token variable ? I am little confuse ..


NOTE: Please help me with UDF/Lookup and explain me in detail, i am not familiar with UDF/Lookup

I have one more question why we can't use java mapping here ?
below is my logic to send token dynamically

-------------
	private static final DynamicConfigurationKey keyHeader1 = DynamicConfigurationKey.create("http://sap.com/xi/XI/System/REST", "XHeaderName1");
conf.put(keyHeader1, access_token);
--------------------
but it's throwing error ...


Please help me ...

Regards,
Binod

Hi Binod,

You can create a OData service in your SAP gateway to call Ariba to get the data in SAP and from there you can also trigger a scenario - proxy to jdbc.

Thanks

Sugata

I have created a UDF to do REST lookup to get the token and maintained that in header

here is the code -

String token = "";
StringBuffer sb = new StringBuffer();
String party = ""; // emtpy values cannot be passed from Directory to the mapping parameters.
Channel RESTchannel = LookupService.getChannel(party,service,channel); // parameter for component and channel from mapping in ICO
SystemAccessor accessor = LookupService.getSystemAccessor(RESTchannel);
getTrace().addInfo("Parameters for Token Lookup - Service: "+service+", Channel: "+channel);
try{
InputStream inputStream;
String reqString = "{ \"grant_type\": \"client_credentials\" }";
getTrace().addInfo("Request: "+reqString);
inputStream = (InputStream) new ByteArrayInputStream(reqString.getBytes());
com.sap.aii.mapping.lookup.Payload payload = LookupService.getXmlPayload(inputStream);
com.sap.aii.mapping.lookup.Payload result = accessor.call(payload);
byte[] b = new byte[4096];
for (int n; (n = result.getContent().read(b)) != -1;){
sb.append(new String(b,0,n));
}
getTrace().addDebugMessage("Response: "+sb);
String resp = sb.toString();
// Response handling code below depends on the response structure you are receiving
// Below is the sample response JSON
/*
{
"access_token": "3927f9ac7928bf91de26c5c93d0974dd1d9c88a7",
"expires_in": 3600,
"token_type": "Bearer",
"scope": null
}
*/
resp = resp.replace("{","");
resp = resp.replace("}","");
String [] respArr = resp.split(",");
for (int i = 0;i<respArr.length;i++)
{
if (respArr[i].startsWith("\"access_token\""))
{
int p = respArr[i].indexOf(":");
token = respArr[i].substring(p+1);
token = token.replace("\"","");

}
}
getTrace().addInfo("Token: "+token);

}
catch (Exception e){
e.printStackTrace();
}
finally
{

if (accessor!=null) accessor.close();
}
//return token;
token = "access_token="+token; // Parameter replace in REST URL tab in the actual receiver REST channel
DynamicConfiguration dynConf = (DynamicConfiguration) container.getTransformationParameters().get(StreamTransformationConstants.DYNAMIC_CONFIGURATION);
DynamicConfigurationKey key = DynamicConfigurationKey.create( "http://sap.com/xi/XI/System/REST", "access_token"); dynConf.put(key, token);
return ""

Hello Binod,

How do you invoke the java map if you want the token at sender side? not sure if an adapter module can be invoked (I tink not possible too as it requires message as Object).

could you please elabborate your scenario?

Thanks

Sugata

Hi Binod,

There are two places where you can implement client credentials OAuth flow.

1. Adapter - https://blogs.sap.com/2017/02/13/enablement-of-oauth-2.0-authorization-in-receiver-communication-cha...

2. UDF - https://blogs.sap.com/2017/01/23/oauth-2.0-authentication-within-a-udf-mapping-to-be-included-in-res...

Hope this helps,

Bala