ServiceStatus request and authentication

Hi there, I have a quick question.

I successfully made a request to the "ServiceStatus" operation and received expected results using our correct username and password. However I noticed that if I change my username and/or password in the Authentication element, I still receive the same response. Does it actually validate the username / password? If not, whose account information am I looking at?

My question is, how and why does this work when I've submitted completely bogus authentication credentials?

SOAP Request as follows:

<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" >

<SOAP-ENV:Header >

<xoa:Request xmlns:xoa="http://premconn.premiereconnect.com/2007/02" >

<xoa:SenderKey >

http://www.international-presence.com

</xoa:SenderKey >

<xoa:ReceiverKey >

http://premconn.premiereconnect.com/2007/02?WSDL

</xoa:ReceiverKey >

<xoa:ResponseRequired >

yes

</xoa:ResponseRequired >

<xoa:ResultRequired >

yes

</xoa:ResultRequired >

<xoa:RequestID >

12345

</xoa:RequestID >

<xoa:Authentication >

<xoa:XDDSAuth >

<xoa:RequesterID >

rhubarb

</xoa:RequesterID >

<xoa:Password >

gibberish

</xoa:Password >

</xoa:XDDSAuth >

</xoa:Authentication >

</xoa:Request >

</SOAP-ENV:Header >

<SOAP-ENV:Body >

<xoa:ServiceStatusRequest xmlns:xoa="http://premconn.premiereconnect.com/2007/02" >

<xoa:Notes >

hello

</xoa:Notes >

</xoa:ServiceStatusRequest >

</SOAP-ENV:Body >

</SOAP-ENV:Envelope >

Find more posts tagged with

Comments

thuneke

The ServiceStatusRequest does no checking of credentials. It only checks that a connection to the service is made. To verify credentials do an AuthenticateRequest. This will verify credentials and show that the entire service is functional.

Tom

mattpryor

Understood. Thanks for the reply Tom.