...
The Security Header structure conveys authentication information. It is mandatory and both the /wsse:UsernameToken/wsse:Username
and /wsse:UsernameToken/wsse:Password
elements are mandatory. The only acceptable value for the Password/@Type attribute is http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText
, indicating a plain text password. Plain text password are acceptable as all communication is done over encrypted HTTPS
.
...
Credential Requirements
Partners will need to provide SMX with a single username and password to be used authentication. These details must be global for all hotels using the connection, not for each individual hotel.
...
It is expected that your application has a robust error handling process in place. Please refer to the Error Handling section of the Reservation API documentation for more information.
...
Generally OTA messages transmit "business logic" failures in the <Errors>
element structure. However a SOAP fault can be returned in case of an unexpected error caused by for example a SOAP message where the xml
cannot be parsed. The SOAP Fault will identify the party at fault (CLIENT/SERVER).
...