HTTP Basic Authentication

In a scenario where it is not convenient to use WS-Security, it is possible to configure PPM to accept user credentials passed by using HTTP basic authentication headers.

  1. Open the axis2.xml file.

  2. Locate "InflowBasicAuth" section.

  3. Change the value of "Enforced" to true:

    <parameter name="InFlowBasicAuth">
         <Enforced>true</Enforced>
    </parameter>
  4. Save and close the axis2.xml file.

When HTTP basic authentication is enabled on the PPM Server, the credential carried in HTTP authentication header is authenticated against PPM users' credentials.

The following example shows an http header using the HTTP basic authentication:

POST /itg/ppmservices/ProjectService HTTP/1.1
User-Agent: Crosscheck Networks SOAPSonar
Content-Type: text/xml; charset=utf-8
SOAPAction: "urn:GetProjectDetails"
Authorization: Basic YWRtaW46YWRtaW4=
Host: localhost:8088
Content-Length: 542
Expect: 100-continue
Connection: Keep-Alive