on 01-22-2015 10:29 AM
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Pratik,
This is also one of the reason to not get "X-CSRF-Token". I have resolved my issue.
Please refer this link:
Update from Atanu Mallik:
"This is a sample service created by Microsoft. AFAIK this service is not CSRF protected. It is a feature that is enabled from the server. in SAP Odata services we get CSRF token. The server of this service has not enabled CSRF protection "
Regards,
Surya prakash
Hi Pratik,
I am also facing same issue with POST method. I can see following logs:
Authorization: Basic ZKVtb3VzZXJuHXc6U3BhcaRhMTIz
x-csrf-token: rsFNOgWLJd69q2rXpNqPLS==
Content-Length: 608
Content-Type: application/atom+xml
<?xml version="1.0" encoding="utf-8"?>
<entry xmlns:d="http://schemas.microsoft.com/ado/2007/08/dataservices" xmlns:m="http://schemas.microsoft.com/ado/2007/08/dataservices/metadata" xmlns="http://www.w3.org/2005/Atom">
<content type="application/xml">
<m:properties>
<d:rollno m:type="Edm.String">0000000017</d:rollno>
<d:fname m:type="Edm.String">S</d:fname>
<d:lname m:type="Edm.String">D</d:lname>
<d:percentage m:type="Edm.String">76</d:percentage>
<d:mobileno m:type="Edm.String">8888888888</d:mobileno>
</m:properties>
</content>
</entry>
2015/05/26 14:45:21.914: Received response: HTTP/1.0 403 Forbidden
2015/05/26 14:45:22.007: Received Header: set-cookie: MYSAPSSO2=AjQxMDMBABhEAEUATQBPAFUAUwBFAFIATgBFAFcAIAACAAYwADAAMQADABBGAEcAMQAgACAAIAAgACAABAAYMgAwADEANQAwADUAMgA2ADAAOQAxADYABQAEAAAACAYAAlgACQACRQD%2fAPowgfcGCSqGSIb3DQEHAqCB6TCB5gIBATELMAkGBSsOAwIaBQAwCwYJKoZIhvcNAQcBMYHGMIHDAgEBMBkwDjEMMAoGA1UEAxMDRkcxAgcgEwcjF0NBMAkGBSsOAwIaBQCgXTAYBgkqhkiG9w0BCQMxCwYJKoZIhvcNAQcBMBwGCSqGSIb3DQEJBTEPFw0xNTA1MjYwOTE2MjNaMCMGCSqGSIb3DQEJBDEWBBT%2f1ZqzWQoHkbKnPEaNYjOZyNtoXzAJBgcqhkjOOAQDBC4wLAIUYPnmm6VB%21ErNnMGvQCmhKS3PXj4CFEYf0lmL9UP3Q8hApaE%21yTSVSy4y; path=/; domain=.0.20.205
2015/05/26 14:45:22.115: Received Header: set-cookie: SAP_SESSIONID_FG1_001=Pot_twG65bCBhAPF4TNNwdyeBNcDhxHlpgoAUFaTHDE%3d; path=/
2015/05/26 14:45:22.362: Received Header: content-type: text/plain; charset=utf-8
2015/05/26 14:45:22.466: Received Header: content-length: 28
2015/05/26 14:45:22.540: Received Header: x-csrf-token: Required
2015/05/26 14:45:22.615: Received Header: server: SAP NetWeaver Application Server / ABAP 731
2015/05/26 14:45:22.696: Received response: HTTP/1.0 403 Forbidden
May you please suggest what did I miss?
Regards,
Sahil Dudeja
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Yes, Add transaction's Update Step is calling POST method. I can see following log entries :
2015/05/26 17:21:41.307: Processing the Update Step HTTP request
2015/05/26 17:21:41.773: + URL=http://xxxx:7000/sap/opu/odata/sap/ZSTUDENT_SERVICE/StudHeaders
2015/05/26 17:21:41.773: + Method=POST
Regards,
Sahil
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Pratik,
Make sure you on-board the device against application connection created in Admin cockpit. Once it is done, you have to make GET request to receive X-CSRF-TOKEN value and for making POST request, make sure you are passing X-CSRF-TOKEN value in header section along with SMP app id and PAYLOAD.
Regards,
JK
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Jitendra,
I am using OData service for flight in Agentry Application. I am done with Creation of application in SMP and also done with GET Method where we are able to only Receive DATA. But I am not able to get the X-CSRF-TOKEN value and other Arguments.So please Suggest me the Proper solution.
Regards,
Pratik
User | Count |
---|---|
83 | |
10 | |
10 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.