php - SOAP and NTLM Authentication between Debian an IIS Server -


i have problem soap authentication in php. have check everywhere answer without success.

i hope 'll able me here !

so, here deal.

my php application server debian 6 apache2 , web service based on iis server.

both servers inside our company network.

for connection , authentication use class find on web :

http://tcsoftware.net/blog/2011/08/php-soapclient-authentication/

here code using class :

<?php  define('curlopt_certinfo',1); ini_set("max_execution_time",120); ini_set('default_socket_timeout', 120); ini_set("soap.wsdl_cache_enabled", "0"); ini_set('soap.wsdl_cache_ttl',0);  include('./soapclientauth.php');  //wsdl $soapurl = "http://myapplicationadress/ws/web100t/patient_identite_chargerparid.wsdl"; $soapparameters = array(                     'login'          => 'anadlogin',                     'password'       => 'theadpassword',                     'exceptions'     => 1,                     'trace'          => 1,                     'user_agent'     => '',                     'keep_alive'     => 1             ) ; $soapclient = new soapclientauth($soapurl, $soapparameters);  try{     $soapresult = $soapclient->patientidentitechargerparid(array('patid' =>'152')); } catch(soapfault $fault) {     var_dump($fault); }

nb : "define('curlopt_certinfo',1);" added because constant not defined in our php version. if dont define it, have error :

[03-sep-2013 15:10:50 utc] php notice:  use of undefined constant curlopt_certinfo - assumed 'curlopt_certinfo' in /var/www/vm-test/soapclientauth.php on line 97 [03-sep-2013 15:10:50 utc] php warning:  curl_setopt() expects parameter 2 long, string given in /var/www/vm-test/soapclientauth.php on line 97

the result of connection client debian server 401 error, cf below :

* connect() web100t-qualif port 80 (#0) *   trying 172.16.101.93... * connected * connected web100t-qualif (172.16.101.93) port 80 (#0) > post /mwsiissrv.dll/mws/ws/_mws_soap http/1.1 host: web100t-qualif accept: */* user-agent: php-soap content-type: text/xml; charset=utf-8 soapaction: "/patient/identite/chargerparid" content-length: 309 expect: 100-continue connection: keep-alive  < http/1.1 401 unauthorized < content-type: text/html < server: microsoft-iis/7.5 < www-authenticate: ntlm

in second time, if comment line number 97 in soapclientauth.php constant curlopt_certinfo used :

curl_setopt($ch, curlopt_certinfo, true);

then reponse change below :

< http/1.1 401 unauthorized < content-type: text/html < server: microsoft-iis/7.5 < www-authenticate: ntlm * gss_init_sec_context() failed: : credentials cache file '/tmp/krb5cc_33' not found< www-authenticate: negotiate < date: tue, 03 sep 2013 12:37:00 gmt < content-length: 1384 < * connection #0 host web100t-qualif left intact * closing connection #0 * connect() web100t-qualif port 80 (#0) *   trying 172.16.101.93... * connected * connected web100t-qualif (172.16.101.93) port 80 (#0) > post /mwsiissrv.dll/mws/ws/_mws_soap http/1.1

i dont know why kerberos mentionned here ... may clue.

last not least,
code works on local machine, windows one. moreover, curlopt_certinfo seams configured because dont need redefined on windows environnement.

well, know moment. can't figure problem come from. it's surely due problem of authentication between debian , iis ... dont understand more.

do not hesitate if need other informations. thank help.

for information found workaround resolve problem.

the problem due fact iis server needed ad login / password let our php application connect web service.

what did using other url reach web service, url needing "anonymous" account. means account defined application , not ad.

consequently don't need use ntlm authentication, problem coming from.


Comments

Post a Comment

Popular posts from this blog

html - How to style widget with post count different than without post count -

i have border below li elements in wordpress widget types appropriate. element inside set block gives them nice easy click full width. the problem, when choose option "show post count" when adding widget such categories or archives displays post count plain text after tag , because tag block pushes post number text line below. whether choose show post count or not show post count still gives exact same element identifyer example "widget_categories". how style post count not on next line still keep links non post count list items full width? here's example on sidebar www.bbmthemes.com/themes/modular/blog-standard/ in order solve problem need remove display:block; for ul.widgets ul a , add in it's place line-height: 33px; what going achieve have same visual effect. what going lose doing links going work on text , not on "box". the other way out of find post count coming , make changes this. example change text count i...
Read more

How to remove text and logo OR add Overflow on Android ActionBar using AppCompat on API 8? -

have researched death , cannot find answer. i have actionbar using appcompat. supporting api v7 (api v8 do). actionbar works api v11. api < v11 has problem of removing icon (and feature) actionbar without supplying overflow. big picture have app logo, app title, , 3 icons squidging same actionbar on low end phone. trying make room! i happy 1 of 2 solutions. either: a method of getting overflow functionality can retrieved pull down. (preferred) method of removing icon , text actionbar below current xml api 11+: <resources> <!-- base application theme api 11+. theme replaces appbasetheme res/values/styles.xml on api 11+ devices. --> <style name="appbasetheme" parent="theme.appcompat.light.darkactionbar"> <item name="android:actionbarstyle">@style/liteactionbarstyle</item> <item name="actionbarstyle">@style/liteactionbarstyle</item> </st...
Read more

IIS->Tomcat Redirect: multiple worker with default -

i trying configure multiple instances of tomcat (7) behind single domain in iis. tomcat instances both run on separate ports. have installed tomcat isapi_rediect.dll , configured iis. everything works redirector, except (you knew coming) being told "all other traffic must mapped 1 of 2 instances (they different applications). more accurate requests except specific pattern need mapped 1 worker , specific pattern (/rpt) needs go other worker. i have 2 workers defined in workers.properties: worker.list=ajp13_1,ajp13_2 worker.ajp13_1.port=8009 worker.ajp13_2.port=8010 and following in uriworkermap.properties: /wxx|/*=ajp13_1 /rpt|/*=ajp13_2 with this, seems fine. except (considerable) number of request not include wxx scope. need map rpt , sub content ajp3_2 , other requests ajp3_1. if add /|*=ajp13_1 then ajp3_2 becomes unreachable , wildchar match maps /rpt/* uri ajp3_1. is there way trying do? appreciate help- have spent time reading same references ...
Read more