cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

how to handle the web service security?

Former Member

on ‎03-30-2009 7:00 PM

0 Kudos

Hi,

my scenario is SOAP to IDOC, the web service will be hosted in PI server.

we want to add the web service security, but when we put the security token in the soap request,

it raised an error, saying "Ilegal header".

<wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">

<wsse:UsernameToken>

<!Scenario Name plus 3 digit ID>

<wsse:Username>xxxxx</wsse:Username>

<!Password for Test Harness>

<wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">xxxx</wsse:Password>

</wsse:UsernameToken>

</wsse:Security>

this is what we added into our soap request header.

is there any way to solve this problem?

Thanks a lot

Jessica

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

Former Member
‎04-13-2009 5:40 AM
0 Kudos

Hello,

Full Message level security and webservice confidentiality is only possible with XML ENCRYPTION

with sap04 and SPS 15 xml encryption is available as part of sap netweaver XI

Steps for configuring it is given in the below link

https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/f0650f56-7587-2910-7c99-e1b6ffbe...

Show replies
Show replies
Ask a Question