Your achievements

Level 1

0% to

Level 2

Tip /
Sign in

Sign in to Community

to gain points, level up, and earn exciting badges like the new
BedrockMission!

Learn more

View all

Sign in to view all badges

SOLVED

sessionCookie authentication method in HTTP Authorization Header

scott-simmer
Level 2
Level 2

Developing custom JSSP-based services on ACC works lovely leveraging the __sessioncookie=username/password queryString method.  However security standards have evolved and queryString based authentication is frowned upon due to potential retention in logs, etc.

 

However for single request authentication eg and avoiding soaprouter and logon() token requests for high volume transactions, we would like to understand if it is supported to resolve the sessioncookie authentication by placing it in the HTTP header instead of the queryString.

 

Thanks for any tips.

1 Accepted Solution
Milan_Vucetic
Correct answer by
Community Advisor
Community Advisor

Hi @scott-simmer,

after you generate it you can put it in the header:

Milan_Vucetic_0-1615979637067.png

Adjust other options per your need and take care about validity time of your token (set in serverConf.xml)

Regards,

Milan

View solution in original post

2 Replies
Milan_Vucetic
Correct answer by
Community Advisor
Community Advisor

Hi @scott-simmer,

after you generate it you can put it in the header:

Milan_Vucetic_0-1615979637067.png

Adjust other options per your need and take care about validity time of your token (set in serverConf.xml)

Regards,

Milan

View solution in original post

Sukrity_Wadhwa
Employee
Employee

Hi @scott-simmer,

Was the given solution helpful to resolve your query or do you still need more help here? Do let us know.

Thanks!