2

I have a server that connecting to it using CURL is only possible using

curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_ANY);

Now i need to connect to the same server using SOAP How is it possible to set basic authentication to soapclient ?

Thanks

lior r
  • 2,220
  • 7
  • 43
  • 80
  • Answered [here](http://stackoverflow.com/questions/14195890/zend-soap-server-wsdl-uri-with-http-authentication). Sadly the PHP SoapClient can't handle http auth. – undefined Jul 31 '14 at 20:51
  • Refer to https://stackoverflow.com/a/63990093/6521116 – LF00 Sep 21 '20 at 10:10

5 Answers5

1

php-soap has a limitation/bug, which does not allow to retrieve the WSDL while using Authentication (bug report)

You can update/upgrade your PHP version. There are people reporting that this bug is solved on 5.4.8 version.

To keep php-soap you must use a local/static version of the WSDL what I DO NOT recommend.

Although it could be less performant, I suggest you to have a look at another PHP Soap Client library, like NuSOAP.

PauloASilva
  • 1,000
  • 1
  • 7
  • 19
  • Ok so now im trying to use nusoap but still getting the same error on $client = new soapclient($url); This line throws the same error before i have the chance to set the credentials – lior r Aug 04 '14 at 14:11
  • @liorr have a look at this post: [NuSOAP-HTTP-Authentication-and-HTTP-Proxy.html](http://www.beanizer.org/site/index.php/en/Articles/NuSOAP-HTTP-Authentication-and-HTTP-Proxy.html) – PauloASilva Aug 04 '14 at 17:04
0

We were having a similar issue with a JDE connection. The authentication entity WSSE needed to be added along with the wsdl server accepting requests from your server (where the php script lives)

$Username = '******';
$Password = '******';
$xmlHeader =
                '<soapenv:Header> 
                        <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:env="http://schemas.xmlsoap.org/soap/envelope/" soapenv:mustUnderstand="1">
                        <wsse:UsernameToken xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
                                <wsse:Username>'.$Username.'</wsse:Username>   
                                <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">'.$Password.'</wsse:Password>  
                        </wsse:UsernameToken>
                        </wsse:Security>
                </soapenv:Header>';

Some extra envelope information should be set also 

$this->ch = curl_init( $this->postURL );
                curl_setopt( $this->ch, CURLOPT_POST, TRUE);
                curl_setopt( $this->ch, CURLOPT_SSLVERSION, 'SSLv3');
                curl_setopt( $this->ch, CURLOPT_POSTFIELDS, $this->postArg);
                curl_setopt( $this->ch, CURLOPT_FOLLOWLOCATION, 1);
                curl_setopt( $this->ch, CURLOPT_HEADER, 0);
                curl_setopt( $this->ch, CURLOPT_RETURNTRANSFER, 1);
                curl_setopt( $this->ch, CURLOPT_VERBOSE, TRUE);
                curl_setopt( $this->ch, CURLOPT_HTTPHEADER, array('Content-Type: text/xml'));

                // GET RESPONSE AND RESPONSE CODE
                try{
                        $this->response = curl_exec( $this->ch );
                        $this->responseCode = curl_getinfo($this->ch, CURLINFO_HTTP_CODE);

                        if($this->responseCode != '200'){
                                //ERROR!!
                        }
                }catch(Exception $e){
                        $e->getMessage();
                }

Pay attention to the CURLOPT_SSLVERSION = SSLv3. You will need to see what version SSL you may need to get access to your WSDL.

Scottzozer
  • 116
  • 9
0

Did you try to use 'login' and 'password' from SoapClient constructor options? They are described here: http://pl1.php.net/manual/en/soapclient.soapclient.php

Greg
  • 698
  • 4
  • 11
-1

You need to send a soap header with the authentication info : 

$param = new SoapVar(array('username' => 'username', 'password' => 'password'), SO AP_ENC_OBJECT);
$header = new SoapHeader('http://localhost/soap_server/server.php', 'AuthenticationInfo', $param, false);

And then pass it to the SOAP client object

$client = new SoapClient($url, array('trace' => 1));
$client->__setSoapHeaders(array($header));
Martin Andreev
  • 153
  • 5
-1

Actually it is possible with standart methods of php-soap.

There is an option called stream_context. More info on this here: http://php.net/manual/en/context.php

You should provide a context with Authorization header. Example:

$context = [
    'ssl'  => [
        'verify_peer'      => false, 
        'verify_peer_name' => false,
    ],
    'http' => [
        'header' => 'Authorization: Basic ' .base64_encode('user:pass'),
    ],
];
$client = new \SoapClient('wdsl', [
    'login'          => 'user',
    'password'       => 'pass',
    'stream_context' => stream_context_create($context),
]);
user2554865
  • 365
  • 1
  • 9
  • That did not work for me. I still get the error it can't connect. I know the server is reachable, as if I try to visit the wdsl url using a browser. it does give me the file after I authenticate. – Kit Ramos Aug 20 '17 at 17:25