I was given an API and I can log in to it and make successful requests with it on Postman but on the browser, the requests are failing with the content saying that `This site can't provide a secure connection
Related
I am trying to perform GET request which need admin consent for authentication when I run the request, postman provide OK response and the response in html script format. But I need to go to the respective website to provide authentication.
I am trying to redirect to website for providing consent to further processing.
Screenshot for Ref
Our institution is unable to get a response from jx-rl-proxy-jxapp.prod.ipaas.jha-sys.com. We are able to create an Oauth token with the https://ims.jhacloudservices.com token url. Our local Ip has been whitelisted but the url is not available.
Currently we are using Insomnia and Postman for testing with unsuccessful response from the jx-rl-proxy-jxapp.prod.ipaas.jha-sys.com url. We cannot ping successfully the jx-rl-proxy-jxapp.prod.ipaas.jha-sys.com url.
Apart from the IP whitelisting, make sure there is no proxy interfering with the traffic to the endpoint.
this the api of marketplacetherange.zendesk
postman output when I try to use authenticate api
when i change the host (https://marketplace.therange.co.uk) it gives the 400 bad request cloudflare
when i try this on browser it gives 404
I want to run this api
Having application with SAML authentication along with Azure AD as IDP. When I hit Login SSO button the following happens:
Hits SAML Redirect URL (/Saml/SAMLLoginRedirect)
Redirects automatically to Ping Federator. Redirected URL is received with the response header of the first request. URL consist some SAMLRequest Token and RelayState value. Final response has Submit Form along with new SAMLRequest token and RelayState.
Hitting IDP (login.microsoftonline.com//saml2 with the SAMLRequest and RelayState from the final response not works as expected.
I have resolved this issue in jmeter. I have just enabled Follow Redirect so jmeter provides the response and cookie. I am extracting the Header value of first the request from URL. It is just because Jmeter has the feature of accumulating redirect sample into the original request.
So I am again hitting Ping Federator with the Token and RelayState received using URL extractor along with final response Cookie.
Further I am able to complete the IDP process successfully.
I am not able to achieve the same using RestAssured. When I disable redirect I am able to get the url from header. Processing the URL from the header value throws 500 error code though I have added the cookie information.
If I enabled redirect I am getting 200 response code along with expected response body and cookie.
But I am unable to proceed to the Ping Federator with the token and relay state received from the response. So I have to hit again the Ping Federator with the previous SAML Token again as I did with jMeter to achieve the proper response.
Problem: Unable to get the header value if I enable the redirect and further processing fails. If I disable the redirect then I am not getting Cookie and expected response when processing the URL from header value. Here all are GET request until the IDP (login.microsoftonline.com)
JMeter's HTTP Cookie Manager automatically extracts cookies from the Set-Cookie response header and sends them with the next request via Cookie request header if domain and path match and the cookie isn't expired.
RestAssured doesn't do this automatically so you will need to extract the cookies from the response and add them to the next request manually.
References:
REST Assured Tutorial 49 – How To Retrieve Single and MultiValue Headers From Response Using Rest Assured
Headers, Cookies and Parameters with REST-assured
Going forward you can just use a sniffer tool like Fiddler or Wireshark to compare requests coming from JMeter and RestAssured, given you send the same request (apart from dynamic parameteres which need to be correlated) you will get the same response
Another WebDriver question.
How can I retrieve a cross-site cookie using WebDriver?
The architecture is like this:
User navigates to landing page: https://landing.page.
User makes login request to API gateway to https://api.gateway.
API gateway proxies request to backend, authenticates user.
API gateway responds to client with a Set-Cookie header with jwt=abcd;samesite=None;secure;httponly;path=/.
User continues to use cookie on all requests to API gateway.
Is there a way I can retrieve the cookie using WebDriver?
driver.manage().getCookies() yields no results and returns an empty set.
When checking manually with Firefox I cannot see the cookie either (which I assume is because I am on the wrong domain).