Use the examples of required entries for the proxy-config.xml file to configure the Ajax proxy on the WebSphere® Portal server. To allow remote URLs to your product server from the WebSphere Portal server, you must configure the Ajax proxy.
The following XML snippet shows the proxy policy required for business process management products. This must be set for all remote URLs that you intend to open with the WebSphere Portal proxy, for example, the Business Space server and your business process management server. Replace <REMOTE_BPM_URL> with the remote URL that needs to be opened with the WebSphere Portal proxy.
If you have multiple remote servers or URLs that need to be allowed with the proxy for the WebSphere Portal server, customize the proxy configuration by using dynamic policy entries. The proxy policy will differ from one deployment to the other. Refer to WebSphere Portal documentation for different ways to configure the WebSphere Portal server proxy.
The proxy-config.xml is located at WebSphere_Portal_install_root\base\wp.proxy.config\installableApps\wp.proxy.config.ear\wp.proxy.config.war\WEB-INF.
<!-- BPM/Business Space proxy policy -->
<proxy:policy url="<REMOTE_BPM_URL>" acf="none">
<proxy:actions>
<proxy:method>GET</proxy:method>
<proxy:method>HEAD</proxy:method>
<proxy:method>POST</proxy:method>
<proxy:method>DELETE</proxy:method>
<proxy:method>PUT</proxy:method>
</proxy:actions>
<proxy:cookies>
<proxy:cookie>LtpaToken</proxy:cookie>
<proxy:cookie>LtpaToken2</proxy:cookie>
<proxy:cookie>JSESSIONID</proxy:cookie>
<proxy:cookie>CRN</proxy:cookie>
<proxy:cookie>caf</proxy:cookie>
<proxy:cookie>cam_passport</proxy:cookie>
<proxy:cookie>cc_session</proxy:cookie>
<proxy:cookie>userCapabilities</proxy:cookie>
<proxy:cookie>usersessionid</proxy:cookie>
</proxy:cookies>
<proxy:headers>
<proxy:header>User-Agent</proxy:header>
<proxy:header>Accept*</proxy:header>
<proxy:header>Content*</proxy:header>
<proxy:header>Authorization*</proxy:header>
<proxy:header>X-Method-Override</proxy:header>
<proxy:header>Set-Cookie</proxy:header>
<proxy:header>If-Modified-Since</proxy:header>
<proxy:header>If-None-Match</proxy:header>
<proxy:header>X-Server</proxy:header>
<proxy:header>X-Update-Nonce</proxy:header>
<proxy:header>X-Requested-With</proxy:header>
<proxy:header>com.ibm.lotus.openajax.virtualhost</proxy:header>
<proxy:header>com.ibm.lotus.openajax.virtualport</proxy:header>
<proxy:header>Slug</proxy:header>
<proxy:header>SOAPAction</proxy:header>
</proxy:headers>
</proxy:policy>
<proxy:meta-data>
<proxy:name>forward-http-errors</proxy:name>
<proxy:value>true</proxy:value>
</proxy:meta-data>
<proxy:meta-data>
<proxy:name>socket-timeout</proxy:name>
<proxy:value>30000</proxy:value>
</proxy:meta-data>
<!-- BPM/Business Space proxy policy -->
<!-- Please make sure the tags shown below match the tags in the existing proxy policy xml being edited
on your deployment. Also, edit the entry <policy url> below and change REMOTE_BPM_URL to the allowed BPM URL -->
<policy url="<REMOTE_BPM_URL>" acf="none">
<actions>
<method>GET</method>
<method>HEAD</method>
<method>POST</method>
<method>DELETE</method>
<method>PUT</method>
</actions>
<cookies>
<cookie>LtpaToken</cookie>
<cookie>LtpaToken2</cookie>
<cookie>JSESSIONID</cookie>
<cookie>CRN</cookie>
<cookie>caf</cookie>
<cookie>cam_passport</cookie>
<cookie>cc_session</cookie>
<cookie>userCapabilities</cookie>
<cookie>usersessionid</cookie>
</cookies>
<headers>
<header>User-Agent</header>
<header>Accept*</header>
<header>Content*</header>
<header>Authorization*</header>
<header>X-Method-Override</header>
<header>Set-Cookie</header>
<header>If-Modified-Since</header>
<header>If-None-Match</header>
<header>X-Server</header>
<header>X-Update-Nonce</header>
<header>X-Requested-With</header>
<header>com.ibm.lotus.openajax.virtualhost</header>
<header>com.ibm.lotus.openajax.virtualport</header>
<header>Slug</header>
<header>SOAPAction</header>
</headers>
</policy>
<meta-data>
<name>forward-http-errors</name>
<value>true</value>
</meta-data>
<meta-data>
<name>socket-timeout</name>
<value>30000</value>
</meta-data>