I'm Persian - SOAP http://gluegadget.com/blog/ My land is Iran en Serendipity 1.4.1 - http://www.s9y.org/ Thu, 22 May 2008 15:11:09 GMT http://gluegadget.com/blog/templates/bulletproof/img/s9y_banner_small.png RSS: I'm Persian - SOAP - My land is Iran http://gluegadget.com/blog/ 100 21 Calling protected SOAP from Mozilla http://gluegadget.com/blog/index.php?/archives/25-Calling-protected-SOAP-from-Mozilla.html Mozilla SOAP Web Services http://gluegadget.com/blog/index.php?/archives/25-Calling-protected-SOAP-from-Mozilla.html#comments http://gluegadget.com/blog/wfwcomment.php?cid=25 12 http://gluegadget.com/blog/rss.php?version=2.0&type=comments&cid=25 nospam@example.com (Amir Mohammad Saied) <div align="left" dir="ltr"><br /> Recently I had to write a Firefox extension for a <a href="http://www.hostiran.net/">company</a> which provides <a href="http://sms.hostiran.net/webservice/">text messaging web services</a>. The Web-Service is an RPC-Style SOAP one which is written by <a href="http://blog.phpmystery.com/">"Nima Shayafar"</a>.<br /> When I got this offer, I didn't think that this one would cause any troubles, as Mozilla has a SOAP implementation landed in it's platform since years (<strike>And if you ask me, I'll tell you no one, never touched it again to improve it -even a little bit</strike> <strong>UPDATE:</strong><em>They finally touched it, and they completely removed it from Mozilla 1.9!</em><img src="http://gluegadget.com/blog/templates/default/img/emoticons/tongue.png" alt=":-P" style="display: inline; vertical-align: bottom;" class="emoticon" />).<br /> This Web-Service is protected by basic HTTP Authentication, nothing tricky so far, but to my surprise Mozilla's SOAP implementation doesn't provide any mean to do authentication against an endpoint, and nah, not even a basic one.<br /> Well I thought as this (writing Firefox extensions for protected SOAP Web Services) is not that uncommon situation I may get a good amount of information by Googling, but nothing catchy comes there in results except a thread at <a href="http://groups.google.com/group/netscape.public.mozilla.xml/browse_thread/thread/b46993fbc34afee9/0aee2d3d620ff42e">netscape.public.mozilla.xml</a> where I found two solutions, one was submitting username/password pair together with URL, and the other one was to make an XHR connection to the endpoint (XMLHttpRequest implementation let you provide login/password for a basic authentication), and as Mozilla remembers that for the browser session, you're there.<br /> The first solution is hmm ... horrible! And the second one, I didn't manage to get it to work.<br /> So I started wondering in other possible ways to overcome this, and guess what? It was damn easy!<br /> You just need to set Authorization header in HTTP request (which is base64 encoded of login:password), but just for that particular endpoint, and how?<br /> You need to use nsIHttpChannel in conjugation with nsIObserverService, register it right before invoking the SOAPCall, and (don't forget to!) unregister it when the call is done, that's it.<br /> Well, it took me an hour to come up with this, and I'm writing it in hopes save someone else "one hour".<br /> </div> Fri, 14 Dec 2007 02:16:00 -0500 http://gluegadget.com/blog/index.php?/archives/25-guid.html