{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 乱世女痞 的问题《SAPUI5 / AJAX, submitting Basic Authentication Det》','https://www.manongdao.com/q-1288789.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I'm trying to access a SAP Successfactors API from an AJAX Call in a SAPUI5 application.
I can access the API fine using POSTMAN, and providing the Basic Authentication credentials.
How do I supply these credentials directly in AJAX. I've tried numerous ways from numerous post but no method seems to work.
Response from Google Dev Tools (Console Tab)
Failed to load https://api2.successfactors.eu/odata/v2/PerPerson?$select=personId: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'https://webidetesting#####-#####.dispatcher.hana.ondemand.com' is therefore not allowed access.
Response from Google Dev Tools (Network Tab)
Authentication credentials are required. Please provide a valid username, password and company id
Ajax.
var aData = jQuery.ajax({
type: "GET",
contentType: "application/json",
crossDomain: true,
url: "https://api2.successfactors.eu/odata/v2/PerPerson?$select=personId",
xhrFields: {
withCredentials: true
},
beforeSend: function (req) {
req.setRequestHeader('Authorization', 'Basic ' + btoa('Username:Password'));
req.setRequestHeader('Access-Control-Allow-Origin', '*');
},
headers: {
"Authorization": "Basic " + btoa("Username" + ":" + "Password"),
"Access-Control-Allow-Origin": "*"
},
username: "Username",
password: "Password",
dataType: "json",
async: false,
success: function (data, textStatus, jqXHR) {
oModel.setData({
modelData: data
});
alert("success to post");
},
error: function (oError) {
console.log(oError);
}
});
The answer was simply to create a DESTINATION with NO authentication and apply all the authorization in AJAX
An SCP Destination is the answer in this case, but what if there are 2 calls, one to an authentication API (to retrieve a token) and another to the GET API (using the retrieved token as authentication ?)
The following issues might be the problem:
1) Is Username of Type: USERNAME@COMPANY:PASSWORD before sent?
2) Endpoint URL should be according to your data center, maybe DC2 is correct, but could also be DC12 ? https://api12.successfactors.eu/odata/v2/PerPerson?$select=personId instead of https://api2.successfactors.eu/odata/v2/PerPerson?$select=personId
3) Pass a reference to your success function
4) Working with SAP Cloud Platform the right way to avoid cross-origin problems!
Destination (Connectivity -> Destinations) in SAP CP:
Don't forget to check the connection and receive HTTP status code = 200!
neo-app.json add a route:
in your controller