HTTP(S) transfer sites

SecureTransport Server provides support for guaranteed delivery and restart for transfers using the HTTP protocol when the remote server is a SecureTransport Server.

The Add Transfer Site page for HTTP(S) sites presents several sets of options.

Server settings for HTTP(S) Transfer sites

The following table describes the general options for a HTTP(S) transfer site.

Field Description
Server Settings
Host

Select Specify partner using hostname (IP address) and port number to enable this field.

Enter either the host name or IP address of the remote host to connect to for file transfers. You cannot enter spaces-only values in this field. For more information, see Spaces in required fields.

Port

Select Specify partner using hostname (IP address) and port number to enable this field.

Enter the port number on the remote host to be used for file transfers. You cannot enter spaces-only values in this field. For more information, see Spaces in required fields.

Alternative addresses

The visibility of this option is controlled with the value set for the TransferSite.AlternativeAddresses.retryPolicy configuration option. It allows you to set a list of endpoints that act as backup alternatives to the configured Server-Port site settings and are particularly useful in cases of transfer failures. For mode details, see Set Alternative addresses.

Address

Select Specify partner using URL to enable this field. Note that with this selection, the Alternative addresses grid moves under this option on the screen.

Enter a URL that specifies the partner host. It can also include the port and a path (directory).

Network Zone

The network zone that defines the proxies to use for transfers through this site.

  • Select none to connect directly to the remote HTTP server.
  • Select any to allow SecureTransport to select the proxy connection using a network zone that enables an HTTP proxy.
  • Select Default to use the default network zone proxy configuration. If no default network zone is defined, transfers from this transfer site fail.
  • Select a specific network zone to use the proxy configuration defined for that zone.

For more information, see Specify TM Server communication ports and IP address for protocol servers on SecureTransport Edge.

Transfer settings for HTTP(S) Transfer sites

Field Description
Transfer Settings
Download Folder

The folder on the remote server from which the file is transferred.

You can use the expression language to append dates. For example, if you use the expression folder_${date("yyyyMMdd")}, the download folder will be evaluated using the date of the transfer execution. For example folder_20210130.

To see the list of the folder's files and subfolders, click List. For more details, see List the contents of the Upload or Download folder.

Download Pattern

The pattern used to match file names to determine whether a file is downloaded. Asterisk (*) matches zero or more characters and question mark (?) matches one character.

To evaluate the download pattern using dates:

The download pattern will be evaluated using the current date when the transfer site is being executed. For example *_20210130.txt. This will match all files ending with _20210130.txt.

Example:

*_${date("yyyyMMdd")}.txt

Allow Overwrite

Taken into account when the site is used by the Send To Partner step. If checked the value of "Upload folder" will be overwritten with the value of "Overwrite upload folder". For more details see Advanced Routing.

Upload Folder The folder on the remote server to which files are transferred. To see the list of the folder's files and subfolders, click List.

For more details, see List the contents of the Upload or Download folder.

Transfer Mode

Specify whether data is transferred as ASCII or binary. You can also choose to have SecureTransport automatically determine the correct transfer mode.

For more information about automatically determining transfer mode, see Transfer mode for server-initiated transfers.

Use HTTPS Deselect this check box to use HTTP instead of HTTPS.
Verify certificate for the Site Select to verify that the remote system is trusted. This field is displayed when Use HTTPS is selected.
Enable FIPS Transfer Mode

Restrict HTTPS to use only FIPS 140-2 Level 1 certified cryptographic libraries. This field is displayed when Use HTTPS is selected.

When you enable FIPS transfer mode, the panel expands with an additional field that lets you specify the desired set of cipher suites to be used in FIPS mode for server-initiated transfers through this site. By default, this set is populated with the cipher suites as defined in the Https.FIPS.SIT.Ciphers configuration option.

You can add or remove cipher suites. The supported FIPS cipher suites from which you can select when adding a new one are listed in Advertised ciphers and cipher suites. Note that both the sender and the recipient must use supported FIPS ciphers suites. Otherwise, the transfer will fail.

Site login credentials for HTTP(S) Transfer sites

Field Description
Site Login Credentials
User Name Username used to log in to the HTTP server. You cannot enter spaces-only values in this field. For more information, see Spaces in required fields.
Use Password Select to use a password to log in to the HTTP server.
Password Password used to log in to the HTTP server. Switching the toggle provides the ability to use Expression Language for evaluating the password.
Certificate

A private certificate for SecureTransport used to log in to the FTP server. You can select a certificate or import a certificate. This field is displayed when Use HTTPS is selected.

When Use Expression Language is enabled, you can set the certificate dynamically by choosing the scope (account or server level) and providing a valid expression that will be evaluated to the name of an available certificate.

By default, the usage of expired X509 certificates is allowed for SIT transfers. To forbid it, set the SIT.allowExpiredCertificates to false

Post transmission Send options for HTTP(S) Transfer sites

Field Description
Post-transmission Settings – Send Options
Send File As Select the check box to specify a file name. You can use the expression language to specify the criteria you want to match. The expression uses the criteria provided to create a new file name from the original file name.
On Temporary Failure A temporary failure can occur when the transfer is incomplete and a retry occurs. Select one of the three choices: No Action, Delete Destination File, or Move File To. Selecting No Action causes the file to stay in the new location with the file name you specified. If another file with the same name is transferred to this location, the original file is overwritten. Selecting Delete Destination File removes the file from the new location. Selecting Move File To requires you to specify a directory in the location where you are transferring the files to and to provide an expression used to rename the file.
On Failure A failure occurs when the transfer is incomplete and all retry attempts were unsuccessful. Select one of the three choices: No Action, Delete Destination File, or Move File To. Selecting No Action causes the file to stay in the new location with the file name you specified. If another file with the same name is transferred to this location, the original file is overwritten. Selecting Delete Destination File removes the file from the new location. Selecting Move File To requires you to specify a directory in the location where you are transferring the files to and to provide an expression used to rename the file.

Post transmission Receive options for HTTP(S) Transfer sites

The Receive options subtab allows you to define post transmission actions on file receive success and failure. Click Receive Options to view these settings.

Field Description
Post-transmission Settings – Receive Options
Receive File As Select the check box to specify a file name. You can use the expression language to specify the criteria you want to match. The expression uses the criteria provided to create a new file name from the original file name when the transfer is received. You can use the SecureTransport-specific variable ${stenv.site_target} which takes the value from the remote file path. See Expression Language for information on SecureTransport-specific variables.
On Failure A failure occurs when the transfer is incomplete and all retry attempts were unsuccessful. Select one of the three choices: No Action, Delete Source File, or Move File To. Selecting No Action causes the file to stay in the original location. If another file with the same name is transferred to this location, the original file is overwritten. Selecting Delete Source File removes the file from the original location. Selecting Move File To requires you to specify a directory in the location where you are transferring the files from and to provide an expression used to rename the file.
On Success Select one of the three choices: No Action, Delete Source File, or Move File To. Selecting No Action causes the file to stay in the original location. If another file with the same name is transferred to this location, the original file is overwritten. Selecting Delete Source File removes the file from the original location. Selecting Move File To requires you to specify a directory in the location where you are transferring the files from and to provide an expression used to rename the file.

Advanced SSL settings for SSH Transfer sites

Advanced SSL settings allow you to define Cipher suites and SSL protocols with your current HTTP(S) Transfer Site. Select Show Advanced SSL Settings to expand the pane with available options.

Field Description
Show Advanced SSL Settings
Cipher suites

The set of cipher suites available with the current HTTPS transfer site for secure SIT connection. By default this set is populated with the cipher suites as defined in the Https.SIT.Ciphers configuration option.

To reset to default values, click the button next to the tooltip.

Enabled SSL protocols

The available SSL protocols for secure SIT connection with the current HTTPS transfer site. By default this option uses the SSL protocols as defined in the Https.SIT.EnabledProtocols configuration option.

To reset to default values, click the button next to the tooltip.

 

Note To preserve the original file name when using the Move File To option, use the ${stenv.target} or ${stenv['target']} expressions.
Note When Single Sign-On (SSO) for end-users is enabled, you can not transfer files over HTTP(S).
Note SecureTransport will not be able perform server initiated file pushes or pulls over HTTP to and from another SecureTransport instance if the second requires SSO authentication for the users as the HTTP transfer site cannot handle the SSO authentication.

Related topics:

Related Links