Authentication Requests

For all requests that require authentication, send the authentication information to SAP Mobile Platform. The credentials depend on the type of security configuration. Credentials should be provided in the header.

• Basic authentication

  The user name and password should be valid for the specified authentication URL.

  • HTTP Header Name: Authorization
  • HTTP Header Value: Basic <base64 encoded form of username:password>
• SAP SSO authentication

  The user name and password should be valid for the specified ticket-issuing system (TIS) URL.

  • HTTP Header Name: Authorization
  • HTTP Header Value: Basic <base64 encoded form of username:password>
• SiteMinder SSO authentication (Client acquires SSO Token)
  • HTTP Header Name: <value provided for 'Client HTTP Values To Send' in the security configuration>
  • HTTP Header Value: actual SMSESSION token
• SiteMinder SSO authentication (SAP Mobile Platform acquires SSO token)

  The user name and password should be valid for the specified ticket-issuing system (SiteMinder server) URL.

  • HTTP Header Name: Authorization
  • HTTP Header Value: Basic <base64 encoded form of username:password>
• Certificate authentication

  Prepare a client certificate and get it signed by certification authority (CA) certificate of the server. The client certificate should be trusted by SAP gateway or any other EIS. The certificate then be used to register the client and perform the request-response with the server.