Topic
  • 3 replies
  • Latest Post - ‏2013-10-30T19:16:56Z by shrirangkhare
SystemAdmin
SystemAdmin
6772 Posts

Pinned topic HTTP UserAgent not working with XML Firewall

‏2012-12-18T23:17:00Z |
Hi,

I was working on sending HTTP Basic Authentication to the backend, so I have set BasicAuthentication ( BA ) in UserAgent and linked it to XML firewall service. I don't see the credentials being passed when the transaction was fired. I have done the below steps to make sure UserAgent is correct

1) Made sure UserAgent is selected properly
2) Used the same UserAgent with WSP and MPG, they are working properly.
3) Given * in the URL in BA table to make sure URL matches for sure. Backend request reaching intended target but without BA cred.

Am I missing something here or is it the behaviour of XML Firewall ?

Thanks in advance.
  • shrirangkhare
    shrirangkhare
    3 Posts

    Re: HTTP UserAgent not working with XML Firewall

    ‏2013-10-29T17:31:21Z  

    I am also facing the same problem. We are on Datapower XI50.6.0.0.1 and XI50.4.0.1.4.

    It connects to backend when I pass the username and password from SOAP UI which is not from datapower and not a practical solution.

    Please let me know the if anybody solved this.

    Thanks !

  • HermannSW
    HermannSW
    4651 Posts

    Re: HTTP UserAgent not working with XML Firewall

    ‏2013-10-29T22:14:35Z  

    I am also facing the same problem. We are on Datapower XI50.6.0.0.1 and XI50.4.0.1.4.

    It connects to backend when I pass the username and password from SOAP UI which is not from datapower and not a practical solution.

    Please let me know the if anybody solved this.

    Thanks !

    Please take a packet capture of a failing request and see eg. with Wireshark "Follow TCP Stream" whether basic auth is sent (and which values) or not,

     


    Hermann<myXsltBlog/> <myXsltTweets/> <myCE/>

     

  • shrirangkhare
    shrirangkhare
    3 Posts

    Re: HTTP UserAgent not working with XML Firewall

    ‏2013-10-30T19:16:56Z  
    • HermannSW
    • ‏2013-10-29T22:14:35Z

    Please take a packet capture of a failing request and see eg. with Wireshark "Follow TCP Stream" whether basic auth is sent (and which values) or not,

     


    Hermann<myXsltBlog/> <myXsltTweets/> <myCE/>

     

    Thanks for the response!
     
    Its resolved.
     
    Added Header:  "Authorization: Basic RFBXU1VTRVI6d3BzZWFpMQ==" in XML FW service -> Headers -> Header Injection Parameters (Back Direction).
     
    To Get the header value, used SOAP UI with  username and password in Auth tab and captured http log-> "http headers" which connects to backend successfully.

    Refer: https://www.ibm.com/developerworks/community/forums/html/topic?id=77777777-0000-0000-0000-000014934258

     

    Also, I would like to mention my observation that User Agent values are not accepted or passed in XML FW as they do for WSP/ WAF.

     

    Thanks again !
     

     

     
    Updated on 2013-10-30T19:22:55Z at 2013-10-30T19:22:55Z by shrirangkhare