Using Restful SDK “logon/adsso” in cluster architecture causes CORS issues
We are developing a « custom extension » in Design Studio that uses “Restful Web Service” calls to retrieve WebI document data. To test, we save the Design Studio application on the BI LaunchPad and execute it from IE.
One of the steps of the “custom extension” is to authenticate via Restful calls with the BI Platform before running any other Restful calls to retrieve document data.
Our first test was the use the http://<baseURL>/logon/long call to retrieve the token (this is successful).
Ref: 4.3.1 To get a logon token from a user name and password from sbo41_bip_rest_ws_en.pdf
Then we replaced it with http://<baseURL>/logon/adsso call to leverage the AD SSO with IE (this is successful).
Ref: 4.3.3 To get a logon token using an Active Directory Single Sign-On (AD SSO) account from sbo41_bip_rest_ws_en.pdf
We have successfully tested everything on the Sandbox which is a single server deployment. The system baseURL is the same as the Restful baseURL.
Currently, we are waiting for the load balancers, but we would still like to test doing the following.
When we call https://vmboserver2:6443/biprws/logon/adsso from https://vmboserver1:8443/BOE/BI, we get CORS and access denied error message. The application is launched from vmboserver2 server but calls the restful on vmboserver1 server.
We have applied following steps but still error occurs and calling Restful services to a different server.
- setRequestHeader('X-Requested-With', 'XMLHttpRequest');
- setRequestHeader('X-PINGARUNER', 'pingpong');
We have also applied following instructions from sbo41_bip_rest_ws_en.pdf:
Ref: 5.11 To configure cross-origin resource sharing (CORS)
We have also applied following instructions from sbo41sp3_bip_admin_en.pdf:
Ref: 18.104.22.168.1 To configure Methods and Headers command line parameters
Ref: 22.214.171.124.3.1 To configure cross-origin resource sharing (CORS)
Ref: 126.96.36.199.4.1 To configure web.xml to enable WinAD SSO
We cannot seem to remove this CORS error from the architecture. Please any suggestions?
BI 4.1 SP3