2. 질의 응답
  3. SOAP 보안 헤더 - 인증서?

SOAP 보안 헤더 - 인증서?

2014-09-25 4 views
0

SOAP은 내 친구들 중 하나가 아니므로 친절하게 도움을 요청하십시오.SOAP 보안 헤더 - 인증서?

외부 서비스로 데이터를 보내기 위해 SOAP 메시지를 생성하라는 요청이 있습니다. 인증서로 인증하고 서명해야합니다.

벨로우 (Bellow)는 헤더의 일부인 "보안"과 같이 표시되어야합니다.

물어 봅시다 - 그 모든 해시는 무엇이며 어떻게 얻을 수 있습니까? (코드에서 ** **로 "강조 표시"되어 있음)

답장을 보내 주셔서 감사합니다.

종류는

<wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"> 
    <wsse:BinarySecurityToken EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" wsu:Id="X509-536E4AA6BF962CA97613699845428011">**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**</wsse:BinarySecurityToken> 
    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#" Id="SIG-8"> 
     <ds:SignedInfo> 
     <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"> 
      <ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="wsa ns soap" /> 
     </ds:CanonicalizationMethod> 
     <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" /> 
     <ds:Reference URI="#id-3"> 
      <ds:Transforms> 
       <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"> 
        <ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="ns" /> 
       </ds:Transform> 
      </ds:Transforms> 
      <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> 
      <ds:DigestValue>**lFnegWV52e3LoBj3jNxW84oR5tU=**</ds:DigestValue> 
     </ds:Reference> 
     <ds:Reference URI="#id-4"> 
      <ds:Transforms> 
       <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"> 
        <ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="ns" /> 
       </ds:Transform> 
      </ds:Transforms> 
      <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> 
      <ds:DigestValue>**Mvnq3Ms+cExBf1pfBeqNJLM+XEk=**</ds:DigestValue> 
     </ds:Reference> 
     <ds:Reference URI="#id-5"> 
      <ds:Transforms> 
       <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"> 
        <ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="ns" /> 
       </ds:Transform> 
      </ds:Transforms> 
      <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> 
      <ds:DigestValue>**7ktvKkcQQqOm/Uk2cnFg30f9m/A=**</ds:DigestValue> 
     </ds:Reference> 
     <ds:Reference URI="#id-6"> 
      <ds:Transforms> 
       <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"> 
        <ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="ns" /> 
       </ds:Transform> 
      </ds:Transforms> 
      <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> 
      <ds:DigestValue>**D2SnlCJRWR+F95gdjoK42ZI0D98=**</ds:DigestValue> 
     </ds:Reference> 
     <ds:Reference URI="#TS-1"> 
      <ds:Transforms> 
       <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"> 
        <ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="wsse wsa ns soap" /> 
       </ds:Transform> 
      </ds:Transforms> 
      <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> 
      <ds:DigestValue>bsXg0RlneSpwynQ6czGW0nZ3tb4=</ds:DigestValue> 
     </ds:Reference> 
     <ds:Reference URI="#id-7"> 
      <ds:Transforms> 
       <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"> 
        <ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="ns" /> 
       </ds:Transform> 
      </ds:Transforms> 
      <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> 
      <ds:DigestValue>**PjApypt2lSmahivJ0oCNKiud4p4=**</ds:DigestValue> 
     </ds:Reference> 
     <ds:Reference URI="#UsernameToken-2"> 
      <ds:Transforms> 
       <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"> 
        <ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="wsa ns soap" /> 
       </ds:Transform> 
      </ds:Transforms> 
      <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> 
      <ds:DigestValue>**bR63weD24Ab0ddtBIt/RVeGSt1g=**</ds:DigestValue> 
     </ds:Reference> 
     </ds:SignedInfo> 
     <ds:SignatureValue>**idE8pmhmkjY9c6ultBUrXSTukHfvjhiRdvEDViVIROyEgLE3lweNrtAvyLjalxrLJUGQWu63uvqM 9u4TFAi/moY7SeuLsb8Xd86hEAWWPkp061+Kpg5dV+17N8yDOfNx6wG0WQzchHzCzOKaceuqphQN aM92Qg8MVUsond9mkdI=**</ds:SignatureValue> 
     <ds:KeyInfo Id="KI-536E4AA6BF962CA97613699845428202"> 
     <wsse:SecurityTokenReference wsu:Id="STR-536E4AA6BF962CA97613699845428213"> 
      <wsse:Reference URI="#X509-536E4AA6BF962CA97613699845428011" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" /> 
     </wsse:SecurityTokenReference> 
     </ds:KeyInfo> 
    </ds:Signature> 
    <wsse:UsernameToken wsu:Id="UsernameToken-2"> 
     <wsse:Username>username</wsse:Username> 
     <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">password</wsse:Password> 
    </wsse:UsernameToken> 
    <wsu:Timestamp wsu:Id="TS-1"> 
     <wsu:Created>2013-05-31T07:15:42.305Z</wsu:Created> 
     <wsu:Expires>2013-05-31T10:02:22.305Z</wsu:Expires> 
    </wsu:Timestamp> 
</wsse:Security>

출처

2014-09-25 user3334602

답변

0

에 관하여 나를 문의하시기 바랍니다 보자 - 무엇을 모든 해시는 내가 그들을 얻을 수 있나요? (코드에서 ** **로 "강조 표시됨")

이들은 SHA1 다이제스트 값입니다.이 값은 일반적으로 예를 들어. 당신은 .NET 프레임 워크를 사용하는 경우 방법에 따라 : 당신이 사람들은 '손으로'다이제스트 값 계산하지 않아도이 WS-보안 SOAP 메시지를 한, 귀하의 경우,

System.Security.Cryptography.SHA1CryptoServiceProvider.ComputeHash(byte[] dataBytesToHash)

을하지만, 이쪽을 봐주십시오 여기에서 작업을 해결하는 데 필요한 모든 정보를 찾을 수 있습니다.

WS-Security using the ASMX file in ASP.NET 3.5

출처

2014-10-02 13:38:32 Kr15

관련 문제

 관련 문제