on 2023 Oct 03 7:39 AM
Hi Experts,
This is related to my other question. For our scenario, for every API calls we need to get a token and the request for token have to be signed and encrypted as well. We're given a sample of the expected encrypted request as below.
PLAIN
<oAuthToken xmlns="some URL">
<grantType>client_credentials</grantType>
<scope>value</scope>
<sourceApplication>value</sourceApplication>
</oAuthToken>
SIGNED and ENCRYPTED
<xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" Type="http://www.w3.org/2001/04/xmlenc#Element">
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<xenc:EncryptedKey>
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/>
<xenc:CipherData>
<xenc:CipherValue>SOME VALUE</xenc:CipherValue>
</xenc:CipherData>
</xenc:EncryptedKey>
</ds:KeyInfo>
<xenc:CipherData>
<xenc:CipherValue>SOME VALUE</xenc:CipherValue>
</xenc:CipherData>
</xenc:EncryptedData><br>
I have referenced below blogs but not sure if encrypted request payload is achievable.
OAuth 2.0 authentication within a UDF mapping to be included in REST receiver channel | SAP Blogs
REST Look Up using UDF in SAP PO | SAP Blogs
SAP PI/PO XML X509 signature by certificate | SAP Blogs - this did not include resulting payload
How to do RSA signature and Base64 by UDF for SAP PO | SAP Blogs
The response later on would have to be decrypted.
If anyone have encountered similar requirement. Please advise. Thank you.
Posted a blog for the solution
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
66 | |
10 | |
9 | |
9 | |
8 | |
8 | |
7 | |
6 | |
6 | |
5 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.