From Swivel Knowledgebase Wiki

Contents 1 Overview 2 Prerequisites 3 How to Guide 3.1 Enabling SCText 3.2 Making SCText requests by username 3.3 Making SCText requests by SessionID 4 Testing 5 Known Issues 6 Troubleshooting

Overview

The SCText servlet allows security strings to be requested by using a text string. It is disabled by default and if required must be explicitly enabled.

Prerequisites

PINsafe 3.x

How to Guide

Enabling SCText

To enable the SCtText servlet, edit web.xml on the PINsafe web application (under <Tomcat_root>\pinsafe\WEB-INF). Check if the following lines exists:

   <servlet>
     <servlet-name>SCText</servlet-name>
     <servlet-class>com.swiveltechnologies.pinsafe.server.session.SCText</servlet-class>
   </servlet>

Insert them if they do not, next to the other servlet definitions. The other section will almost certainly be missing:

   <servlet-mapping>
   	<servlet-name>SCText</servlet-name>
   	<url-pattern>/SCText</url-pattern>
   </servlet-mapping>

Insert this section next to the other <servlet-mapping> entries.

Save web.xml and restart Tomcat.

Making SCText requests by username

You should now be able to make requests as follows to receive text security strings:

For a Software install:

http://<pinsafe>:8080/pinsafe/SCText?username=test

For an Appliance

https://<pinsafe>:8080/pinsafe/SCText?username=test

Making SCText requests by SessionID

If "Allow session start by username" is diasabled, you need to execute a session start request, retrieve the session ID and use the following format:

For a Software install:

http://<pinsafe>:8080/pinsafe/SCText?sessionid=<sessionid>

For an Appliance

https://<pinsafe>:8080/pinsafe/SCText?sessionid=<sessionid>

Testing

Known Issues

Troubleshooting