This should be simple. I've been asked to help suppliers coming in through Covisint (authenticated via siteminder, though i really haven't even looked at it), to log into Microsoft Project Web Access (2003) without signing in. The idea is to sign them in automatically via a supplier id in the headers. That is where i take over.
To login to PWA, Project provides a set of files. For ease, lgnps.asp can be used. By itself it shows a page with a blurb, a user/pass combo, and a submit button. Whittling it down showed me that it'll do it's job as a simple POST of username and password. That is, the following code works:
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<FORM Method = "Post" Action = "lgnps.asp">
<INPUT Name = "userName" Value = "moo">
<INPUT Name = "password" Value = "cow">
<INPUT Type = "Submit">
The suppliers are not required to know their ids, nor do we want to advertise it to them. So the login is best done surreptitiously, and they will be very restricted within PWA, i'm told.
After digging, i found RewritePath, so now i could POST to a new page. However, it must be in the same application root. I need to POST to our Project Server (which is on a different server). So, i had this great idea, make a directory in IIS that points to the other server. That much worked, accept POST vars are not passed. That functionality was added in IIS 6.
Now i think i'll try just putting this page in Project Server's virtual root, so the POST isn't cross-site. I was hoping to keep all custom pages on the web server.
UPDATE: The project's Project Server server does not have ASP