external system call jssp | Community
Skip to main content
wankang
wankang
Level 3
April 18, 2023
Solved

external system call jssp

  • April 18, 2023
  • 1 reply
  • 934 views
Dear engineer, i create one jssp, it can only access localhost, but this jssp need to face to external internet, how to control jssp authentication, i think may be use session#logon(), but do not how to to do at jssp. could someone help give an example to me.
This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.
Best answer by Marcel_Szimonisz

Hello @wankang ,

you call the session#logon() and parse out the session token which you can use in calling JSSP endpoint 

If you read over xtk:jsspcontext.js in JS libraries you can authenticate using:

  • You can pass this token over GET request

 

 

https://example.com/namespace/myrest.jssp?__sessiontoken=<sessiontoken>

 

 

which is not secure because GET requests are often cached in various places like web servers, proxies, and the user's browser history, and therefore can potentially expose the token to unauthorized access. 

 

  • You can use instead POST request header  "X-Security-Token"

 

 

Marcel Szimonisz

MarTech Consultant
for more tips visit my blog
https://www.martechnotes.com/

1 reply

Marcel_Szimonisz
Community Advisor
Marcel_SzimoniszCommunity AdvisorAccepted solution
Community Advisor
April 18, 2023

Hello @wankang ,

you call the session#logon() and parse out the session token which you can use in calling JSSP endpoint 

If you read over xtk:jsspcontext.js in JS libraries you can authenticate using:

  • You can pass this token over GET request

 

 

https://example.com/namespace/myrest.jssp?__sessiontoken=<sessiontoken>

 

 

which is not secure because GET requests are often cached in various places like web servers, proxies, and the user's browser history, and therefore can potentially expose the token to unauthorized access. 

 

  • You can use instead POST request header  "X-Security-Token"

 

 

Marcel Szimonisz

MarTech Consultant
for more tips visit my blog
https://www.martechnotes.com/

Terms & ConditionsAccessibility statement

Loading footer...