Add a single plate to the list in my AXIS P1465-LE-3

[basiclog]

I want to add a single plate to the list in my AXIS P1465-LE-3 License Plate Verifier Kit Version : 2.8-4. but my code java eclipse displays error.
i can to try javascript but there is no answer.

//My java prog from curl --trace-ascii trace.txt --anyauth -u "root:pass" -X GET "http://10.0.3.176:8080/local/fflprapp/api.cgi?
// api=addplate&plate=testA,testplate&list=allow"

import java.io.IOException;
import java.net.URI;
import java.net.http.HttpClient;
import java.net.http.HttpRequest;
import java.net.http.HttpResponse;

public class Main {
public static void main(String[] args) {
try {
// Créez une instance de HttpClient (idéalement, une seule par application)
HttpClient client = HttpClient.newHttpClient();

// Définissez l'URL de la requête
String url = "http://10.33.87.5/local/fflprapp/allow_list.cgi";
HttpRequest request = HttpRequest.newBuilder()
.uri(URI.create(url))
.header("Content-Type", "text/xml")
.header("Authorization", "root dani289074!") // Remplacez par vos identifiants
.POST(HttpRequest.BodyPublishers.ofString("<bw_list mode="allow">ABC123CBA000</bw_list>"))
.build();

// Envoyez la requête asynchrone
HttpResponse response = client.send(request, HttpResponse.BodyHandlers.ofString());

// Vérifiez si la réponse est réussie (statut 200)
if (response.statusCode() == 200) {
System.out.println("Réponse : " + response.body());
} else {
System.out.println("Erreur : " + response.statusCode());
}
} catch (IOException | InterruptedException e) {
e.printStackTrace();
}
}
}

[github-actions[bot]]

This automatically generated reply acts as a friendly reminder.

Answers to your questions will most often come from the community, from developers like yourself. You will, from time to time, find that Axis employees answers some of the questions, but this is not a guarantee. Think of the discussion forum as a complement to other support channels, not a replacement to any of them.

If your question remains unanswered for a period of time, please revisit it to see whether it can be improved by following the guidelines listed in Axis support guidelines.

[vivekatoffice]

Hi @basiclog ,
I suggest you to test the APIs first with a Postman like tool 😄

[basiclog]

Hi vivekatoffice
Thank you for your answer.
it works with postman ( Http ,digest Auth)
but my javascript application does not work.
//**************************************
const myHeaders = new Headers();
myHeaders.append("Authorization", "user:dfgu44!");

const requestOptions = {
method: "GET",
headers: myHeaders,
redirect: "follow"
};
fetch("http://100.30.88.250:8080/local/fflprapp/api.cgi?api=addplate&plate=testA4444G,testplate&list=allow", requestOptions)
.then((response) => response.text())
.then((result) => console.log(result))
.catch((error) => console.error(error));

[vivekatoffice]

Hi @basiclog ,
Thank you for confirming that it is working with Postman.
For calling VAPIX APIs with digest authentication in JS you can refer to the following suggestions: 73

---

Hi @axisvivek!

I don't think XMLHttpRequest has native support for digest access authentication. A quick search tells me that this easily is done as long as you implement the protocol of digest authentication. My guess would be that you extract realm, nounce and qop from the Axis device challenge response and build your Authorization header based on that.

Originally posted by @mattias-kindborg-at-work in #73 (comment)

Here's a sample code I received from ChatGPT 😉. Please use it at your discretion.

index.js

const crypto = require('crypto'); // Import Node.js crypto module
const fetch = require('node-fetch'); // Import node-fetch for making HTTP requests

async function fetchDigest(url, options, username, password) {
    let response = await fetch(url, options);

    if (response.status === 401 && response.headers.get('www-authenticate')) {
        const authHeader = response.headers.get('www-authenticate');
        const digestAuthDetails = parseDigestAuth(authHeader, username, password, options.method, url);

        response = await fetch(url, {
            ...options,
            headers: {
                ...options.headers,
                Authorization: digestAuthDetails
            }
        });
    }

    return response;
}

function parseDigestAuth(authHeader, username, password, method, uri) {
    const authDetails = {};
    const nc = '00000001'; // Nonce count
    const cnonce = crypto.randomBytes(8).toString('hex'); // Client nonce

    authHeader.replace(/([a-z0-9_-]+)="?([^",]+)"?/gi, (match, key, value) => {
        authDetails[key] = value;
    });

    const ha1 = md5(`${username}:${authDetails.realm}:${password}`);
    const ha2 = md5(`${method}:${uri}`);
    const response = md5(`${ha1}:${authDetails.nonce}:${nc}:${cnonce}:${authDetails.qop}:${ha2}`);

    return `Digest username="${username}", realm="${authDetails.realm}", nonce="${authDetails.nonce}", uri="${uri}", qop=${authDetails.qop}, nc=${nc}, cnonce="${cnonce}", response="${response}"`;
}

function md5(input) {
    return crypto.createHash('md5').update(input).digest('hex');
}

async function callVAPIX() {
    // Replace with your actual VAPIX API credentials and endpoint
    const username = 'vivek';
    const password = 'kumar';
    const url = 'http://10.176.12.148/axis-cgi/customhttpheader.cgi';
    const requestBody = {
        apiVersion: '1.0',
        method: 'list'
    };

    const response = await fetchDigest(url, {
        method: 'POST',
        headers: {
            'Content-Type': 'application/json'
        },
        body: JSON.stringify(requestBody)
    }, username, password);

    if (response.ok) {
        const data = await response.json();
        console.log('API response:', data);

       
    } else {
        console.error('API call failed with status:', response.status);
    }
}


async function callVAPIX2() {
    // Replace with your actual VAPIX API credentials and endpoint
    const username = 'root';
    const password = 'pass';
    const url = 'http://10.176.12.148/axis-cgi/ssh.cgi';
    const requestBody = {
        apiVersion: '1.0',
        method: 'getSshInfo'
    };

    const response = await fetchDigest(url, {
        method: 'POST',
        headers: {
            'Content-Type': 'application/json'
        },
        body: JSON.stringify(requestBody)
    }, username, password);

    if (response.ok) {
        const data = await response.json();
        console.log('API response:', data);

       
    } else {
        console.error('API call failed with status:', response.status);
    }
}

callVAPIX();
callVAPIX2();

mkdir vapix-test1
cd vapix-test1
npm init -y
npm install node-fetch@2 crypto

Output:

[basiclog]

hi vivekatoffice
Thank you for your answer.
it works with a basic authentication But it doesn't work an authentictifiction digest .

[vivekatoffice]

Hi @basiclog ,
I don't know where it is failing for your device. Let me know the Axis OS version and device model so I can try it locally.

I used the following Axis device:
AXIS Q1715 Block Camera ( AXIS OS version 11.11.73)

const crypto = require('crypto'); // Import Node.js crypto module
const fetch = require('node-fetch'); // Import node-fetch for making HTTP requests

async function fetchDigest(url, options, username, password) {
    let response = await fetch(url, options);

    if (response.status === 401 && response.headers.get('www-authenticate')) {
        const authHeader = response.headers.get('www-authenticate');
        const digestAuthDetails = parseDigestAuth(authHeader, username, password, options.method, url);

        response = await fetch(url, {
            ...options,
            headers: {
                ...options.headers,
                Authorization: digestAuthDetails
            }
        });
    }

    return response;
}

function parseDigestAuth(authHeader, username, password, method, uri) {
    const authDetails = {};
    const nc = '00000001'; // Nonce count
    const cnonce = crypto.randomBytes(8).toString('hex'); // Client nonce

    authHeader.replace(/([a-z0-9_-]+)="?([^",]+)"?/gi, (match, key, value) => {
        authDetails[key] = value;
    });

    const ha1 = md5(`${username}:${authDetails.realm}:${password}`);
    const ha2 = md5(`${method}:${uri}`);
    const response = md5(`${ha1}:${authDetails.nonce}:${nc}:${cnonce}:${authDetails.qop}:${ha2}`);

    return `Digest username="${username}", realm="${authDetails.realm}", nonce="${authDetails.nonce}", uri="${uri}", qop=${authDetails.qop}, nc=${nc}, cnonce="${cnonce}", response="${response}"`;
}

function md5(input) {
    return crypto.createHash('md5').update(input).digest('hex');
}

async function callVAPIX() {
    // Replace with your actual VAPIX API credentials and endpoint
    const username = 'vivek';
    const password = 'kumar';
    const url = 'http://10.176.12.148/axis-cgi/customhttpheader.cgi';
    const requestBody = {
        apiVersion: '1.0',
        method: 'list'
    };

    const response = await fetchDigest(url, {
        method: 'POST',
        headers: {
            'Content-Type': 'application/json'
        },
        body: JSON.stringify(requestBody)
    }, username, password);

    if (response.ok) {
        const data = await response.json();
        console.log('API response:', data);

       
    } else {
        console.error('API call failed with status:', response.status);
    }
}


async function callVAPIX2() {
    // Replace with your actual VAPIX API credentials and endpoint
    const username = 'vivek';
    const password = 'kumar';
    const url = 'http://10.176.12.148/axis-cgi/ssh.cgi';
    const requestBody = {
        apiVersion: '1.0',
        method: 'getSshInfo'
    };

    const response = await fetchDigest(url, {
        method: 'POST',
        headers: {
            'Content-Type': 'application/json'
        },
        body: JSON.stringify(requestBody)
    }, username, password);

    if (response.ok) {
        const data = await response.json();
        console.log('API response:', data);

       
    } else {
        console.error('API call failed with status:', response.status);
    }
}

callVAPIX();
callVAPIX2();