Pega mashUp authentication
Hi,
I am trying the pega mashup by generating the following meshup code, but i am getting the "invalid Operator credentials". but the operator is made "external authentication".
Following code was working with 7.2, same trying in 7.3.1 getting "invalid Operator credentials" error .
<HTML>
<P> TEST PEGA MEshUP </P>
<!-- ********************** Begin Pega content ********************** -->
<!-- ********************** Begin Pega content ********************** -->
<script src ='http://localhost:8080/prweb/PRServlet?pyActivity=pzIncludeMashupScripts'></script>
<div data-pega-gadgetname ='PegaGadget'
data-pega-action ='createNewWork'
data-pega-action-param-classname ='ORT5RH-xxxx-Work-ABC'
data-pega-action-param-flowname ='ShowWorklist'
data-pega-action-param-model =''
data-pega-isdeferloaded ='false'
data-pega-applicationname ='ABC'
data-pega-threadname ='STANDARD'
data-pega-systemid ='pega'
data-pega-resizetype ='stretch'
data-pega-url ='http://localhost:8080/prweb/IAC'
data-pega-redirectguests ='true'
data-pega-action-param-parameters="{UserIdentifier:'Chandan',Password:'xxxxx'}"
></div>
<!-- ********************** End Pega content ********************** -->
</HTML>
2) I also tried with following code as well . getting "invalid operator Credentials" . When i type the same login ID on login screen i am able to login.
Hi,
I am trying the pega mashup by generating the following meshup code, but i am getting the "invalid Operator credentials". but the operator is made "external authentication".
Following code was working with 7.2, same trying in 7.3.1 getting "invalid Operator credentials" error .
<HTML>
<P> TEST PEGA MEshUP </P>
<!-- ********************** Begin Pega content ********************** -->
<!-- ********************** Begin Pega content ********************** -->
<script src ='http://localhost:8080/prweb/PRServlet?pyActivity=pzIncludeMashupScripts'></script>
<div data-pega-gadgetname ='PegaGadget'
data-pega-action ='createNewWork'
data-pega-action-param-classname ='ORT5RH-xxxx-Work-ABC'
data-pega-action-param-flowname ='ShowWorklist'
data-pega-action-param-model =''
data-pega-isdeferloaded ='false'
data-pega-applicationname ='ABC'
data-pega-threadname ='STANDARD'
data-pega-systemid ='pega'
data-pega-resizetype ='stretch'
data-pega-url ='http://localhost:8080/prweb/IAC'
data-pega-redirectguests ='true'
data-pega-action-param-parameters="{UserIdentifier:'Chandan',Password:'xxxxx'}"
></div>
<!-- ********************** End Pega content ********************** -->
</HTML>
2) I also tried with following code as well . getting "invalid operator Credentials" . When i type the same login ID on login screen i am able to login.
Any additional configuration need to be done for mashup ?
<!-- ********************** Begin Pega content ********************** -->
<script src ='http://localhost:8080/prweb/PRServlet?pyActivity=pzIncludeMashupScripts'></script>
<script>
pega.web.config.appName="Learning";
pega.web.config.systemID="pega";
pega.web.config.thread="STANDARD";
pega.web.config.encrypt=false;
</script>
<div data-pega-gadgetname ='PegaGadget'
data-pega-action ='createNewWork'
data-pega-action-param-classname ='xxx-xxx-Work-PegaMashup'
data-pega-action-param-flowname ='pyStartCase'
data-pega-action-param-model =''
data-pega-isdeferloaded ='false'
data-pega-applicationname ='Learning'
data-pega-threadname ='STANDARD'
data-pega-systemid ='pega'
data-pega-resizetype ='stretch'
data-pega-url ='http://localhost:8080/prweb/IAC'
PegaA_params="{UserIdentifier:'login@mashup',Password:'rules'}"
data-pega-redirectguests ='true' ></div>
<!-- ********************** End Pega content ********************** -->
Thanks
Chandan U
***Edited by Moderator Marissa to update platform capability tags***
Pegasystems Inc.
IN
Try passing the credentials through "data-pega-action-param-parameters" attribute.
Example:
data-pega-action-param-parameters={UserIdentifier:'mashupuser',Password:'cnVsZXM='}
Pegasystems Inc.
US
Hi @nikhilk7251,
This post hasn't had any activity in a few months. If you don't hear back from Chandan. I'd suggest writing a new post so that this doesn't get lost and you can receive the help you need.
Any questions, don't hesitate to reach out to the Moderation Team!
Marissa
PEG
GB
Here is my guess: The IAC servlet is calling the IACauthentication activity and version 7.3.1 is more secure.
I'm aware some work were done to increase security on Mashup so that it doesn't work straight out of the box as this could leave a security hole if customer were not aware about it. I can't recall exactly what was made.
As a start, try customizing the authentication activity, make sure it is available for the unauthenticated access group, make sure it run by adding logging and even hardcode username/password there.
Pegasystems Inc.
IN
Hi Chandan,
Did you change Source of operator credentials in IAC authentication service to "Use Externally stored credentials" ..?
And here <script src ='http://localhost:8080/prweb/PRServlet?pyActivity=pzIncludeMashupScripts'></script> change PRServlet to IAC and try.!!