Skip to main content

cXML – Authentication

The connector validates the identity data from the cXML header element on login. Three independent check points are available — each can be enabled or disabled individually.

The Three Check Points

FROM — Buyer Identity

The <From> element identifies the purchasing system (the buyer). The connector compares the submitted value with a Shopware field of the logged-in customer.

FieldDescription
Check FROMEnables or disables this check
FROM domainExpected domain value (e.g. DUNS, NetworkId, AribaNetworkUserId)
FROM fieldShopware customer field to compare against (email, customer number, or custom field)

Example in cXML:

<From>
<Credential domain="NetworkId">
<Identity>AN01234567890</Identity>
</Credential>
</From>

TO — Recipient Identity

The <To> element addresses the shop. This check ensures the cXML is actually intended for this system.

FieldDescription
Check TOEnables or disables this check
TO domainExpected domain value
TO fieldShopware field for comparison

SENDER / Shared Secret — Password Check

The <Sender> element contains the technical sender and optionally a Shared Secret (password). The SENDER check validates the technical sender identity; the Shared Secret check validates the password.

FieldDescription
Check SENDEREnables or disables the SENDER check
SENDER domainExpected domain value
Check Shared SecretEnables the password check
Shared SecretThe expected password — from a Shopware customer profile or custom field

Example in cXML:

<Sender>
<Credential domain="DUNS">
<Identity>123456789</Identity>
<SharedSecret>secret</SharedSecret>
</Credential>
<UserAgent>Ariba 1.0</UserAgent>
</Sender>

Default Configuration

info

In the default configuration, only FROM is active. TO and SENDER are optional and are only required if the procurement system sends the corresponding values and expects mutual identification.

Typical minimal configuration for Ariba:

Check pointActiveDomainField
FROMNetworkIdEmail
TO
SENDER
Shared Secret

Common Issues

Login fails — authentication error

  • Does the domain (NetworkId, DUNS, etc.) match the exact value the procurement system sends?
  • Is the customer assigned to the system in the Customers tab?
  • Is the Shopware field (email, customer number, custom field) filled in for the customer?

Shared Secret fails

  • Does the password match exactly (case-sensitive)?
  • Is the field correctly set on the Shopware customer profile?