Handling Authentications

Explore how to handle authentications in SOAP API automation using WS-Security. Learn to add authorization headers with plain text or digest passwords, send secure requests, and handle authentication errors effectively.

We'll cover the following...

- - Sample SOAP authorization header
  - Sending authorization header in the request

We have already learned that SOAP can have its own implementation of security using WS-Security. The following is a sample SOAP header to pass plain text username and password:

Sample SOAP authorization header

<wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" wsse:mustUnderstand="1">
  <wsse:UsernameToken>
     <wsse:Username>testuser</wsse:Username>
     <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">testpass</wsse:Password>
  </wsse:UsernameToken>
</wsse:Security>

In the sample SOAP header above, we pass plain text username and password. Please take a look at the password type, as passwords ...

1.About API and WebServices

2.Introduction to HTTP

3.Introduction to REST API

4.REST API Automation using Rest Assured

5.Introduction to SOAP API

6.SOAP API Automation

7.Integration Test

8.Allure Reporting

9.Manual Testing: REST and SOAP API

10.Bonus: API Test Automation Framework

11.Conclusion

Handling Authentications

Sample SOAP authorization header