Single-sign-on to external web application using header parameters

Single-sign-on to external web application using header parameters

  

Users of my application should be able to log into an external (non-OutSystems) web application without providing their credentials. But, due to security demands, i can't use query string parameters. Instead, i am forced to use header parameters. How can that be done?

I have tried a few things from the HTTPRequestHandler extension like AddHeader (to what?), GetRequest_AddArgument + GetRequest_Submit and PostRequest_AddArgument + PostRequest_Submit, but all without success.

It is kind of logical, because it is not about Getting or Posting something, it is about opening a webpage. Please help.

Kind regards,

Leen Rietveld.

Hi Leen,

You have a server action that needs to make a get to a page and pass the user credentials through the headers. I got it right?

Hi João,

I'm not sure it's a get, but the rest you've got right. It's more like a redirect: when the user pushes the button and  fires the server action he should go to this external application (open it in a different tab) an be logged in automatically.

Kind regards, Leen.