Community
Application Development and Automation Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

SSL with cl_http_client

Go to solution
Former Member

‎2013 Mar 06 1:19 PM

0 Likes
2,160

Hi all, is there a way to make ssl https connection using cl_http_client class or any other class where you are not obliged to

to fill in strust manually  the certificate of service provider. So SAP to behave like an standard browser which  takes it automatically form server which provides the service . Or is there an class to fill strust with certificate taken from service provider in abap.

1 ACCEPTED SOLUTION
Read only

Go to solution
Former Member

‎2013 Mar 06 5:12 PM

0 Likes
1,323

No, you will have to setup STRUST. Otherwise the HTTP client will not be able to decrypt the SSL encrypted pages. Minimal setup of STRUST involves installing and configuring SAP Cryptographic Library (unless already done) creating PSE (unless already done) and importing of involved certificate(s) of the web site you are trying to access with HTTPS. Takes no more than 30 minutes if you know what you are doing.

Browsers also have certificates installed, it is no different from STRUST.

6 REPLIES 6
Read only

Go to solution
Former Member

‎2013 Mar 06 5:12 PM

0 Likes
1,324

No, you will have to setup STRUST. Otherwise the HTTP client will not be able to decrypt the SSL encrypted pages. Minimal setup of STRUST involves installing and configuring SAP Cryptographic Library (unless already done) creating PSE (unless already done) and importing of involved certificate(s) of the web site you are trying to access with HTTPS. Takes no more than 30 minutes if you know what you are doing.

Browsers also have certificates installed, it is no different from STRUST.

Read only

Go to solution
Former Member
In response to Former Member

‎2013 Mar 07 8:55 AM

0 Likes
1,323

Hi Samuli,

I already set the STRUST . The issue is that usually server certificates expires each year or each second year. And the issuer creates new certificate which have to be imported in strust manually. What I want to achieve the standard browser behaviour so if certificate is changed to be automatically added to struts and ICM to be restarted so certificate to work. Why restart is need for such operation is an other strange behaviour for me but anyway .

Read only

Go to solution
Former Member
In response to Former Member

‎2013 Mar 07 2:13 PM

0 Likes
1,323

You could take this up with SAP but as it is today, that is how it works. And yes, the certificates in your browser get automatically updated too.

Read only

Go to solution
Former Member
In response to Former Member

‎2013 Mar 07 2:32 PM

0 Likes
1,323

Thank you Samuli. It is shame that we have to make it manually .

Read only

Go to solution
Former Member
In response to Former Member

‎2013 Mar 07 4:59 PM

0 Likes
1,323

If you can automatically download the certificate(s), you could use sapgenpse(.exe) to automatically insert them into STRUST. Just write a script and schedule it.

Read only

Go to solution
Former Member
In response to Former Member

‎2013 Mar 08 7:41 AM

0 Likes
1,323

So I have to create RFC  FM to download certificate on application server run sapgenpse and than restart ICM somehow ?