Let's Reconnect, thank you for making 2022 our best year yet.

Look Back
Secure "Dynamic" Headers — Cloud Customer Connect
You're almost there! Please answer a few more questions for access to the Applications content. Complete registration
Interested in joining? Complete your registration by providing Areas of Interest here. Register

Secure "Dynamic" Headers

Question
14
Views
0
Comments

Summary:


Content (required):

We came across a sample application by Oracle : https://docs.oracle.com/en/solutions/cons-tasks-mult-apps-uni-list/index.html

The use case is that this app will show BPM tasks from both SaaS and PCS.

For PCS it uses "Cloud Account" as Auth. Expected!!

For SaaS the authentication is bit interesting. It Sets the Auth to "None" and defines a Secure Header called "Authorization". Furthermore the value for this secure header also looks special.

According to the docs (my interpretation) the jwtToken sent in by the container in SaaS is used in this Authorization Header.

So now the question is , Is the value "

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!