堆栈内存溢出
  简体   繁体   English

使用Java的客户端的cxf安全标头

[英]cxf security headers for client using java

 原文  2016-06-28 17:06:02       java/ web-services/ cxf/ ws-security/ usernametoken

问题描述

My requirement is to implement a method to generate ws security headers by using incoming username, password. 我的要求是实现一种通过使用传入的用户名,密码来生成ws安全头的方法。

So some one can invoke my method from xslt by providing username and password and my method should able to return security headers and further they can append this security headers in soap request to call third party web service. 因此,有人可以通过提供用户名和密码来从xslt调用我的方法,而我的方法应该能够返回安全标头,并且进一步,他们可以将此安全标头附加在soap请求中以调用第三方Web服务。

i am looking for api which can generate soap security headers by taking username and password. 我正在寻找可以通过使用用户名和密码来生成Soap安全标头的api。

i found WSS4JOutInterceptor which needs port and service info,but in my case i have only 2 paramters(UserName, PassWord). 我发现需要端口和服务信息的WSS4JOutInterceptor,但是在我的情况下,我只有2个参数(UserName,PassWord)。

please suggest if any other api/approach than creating SoapEnvelop and adding security elements to it ? 请建议是否除了创建SoapEnvelop并向其中添加安全性元素以外的其他api /方法? 

<oas:Security xmlns:oas="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">     <oas:UsernameToken xmlns:oas1="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" oas1:Id="UsernameToken-1">      <oas:Username> lakshmi </oas:Username><oas:Nonce EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary">MTQ2NzA5NTg3MjM5Mw==</oas:Nonce>       <oas:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordDigest">uSlFkVhDynZoCXFojlM1w4UrJYY=</oas:Password><oas1:Created>2016-06-28T06:37:52.425Z</oas1:Created></oas:UsernameToken></oas:Security>

1 个解决方案

解决方案1
 2 已采纳  2016-06-30 07:53:47

You can use WSS4J to generate the security header 您可以使用WSS4J生成安全头 

 public Node buildSecurityHeader(String username, String password) 
        throws WSSecurityException, ParserConfigurationException, SAXException, IOException{

    //XML Document builder with a root node
    DocumentBuilderFactory factory = DocumentBuilderFactory.newInstance();
    factory.setNamespaceAware(true);
    DocumentBuilder builder = factory.newDocumentBuilder();
    InputSource inStream = new InputSource();
    inStream.setCharacterStream(new StringReader("<root></root>"));
    Document document = builder.parse(inStream);

    //<wsse:UsernameToken>
    WSSecUsernameToken usernametoken = new WSSecUsernameToken();
    usernametoken.setPasswordType(WSConstants.PASSWORD_DIGEST);
    usernametoken.setUserInfo(username, password);

    //<wsse:Security>
    WSSecHeader secHeader = new WSSecHeader(document);
    secHeader.insertSecurityHeader();

    //Generates the Document with <root><Header><wsse:Security>...
    usernametoken.build(document, secHeader);

    //Extract the desired node
    Node securityNode = document.getElementsByTagName("wsse:Security").item(0);

    return securityNode;

}

To print the node as String use this 要将节点打印为字符串,请使用此命令 

public String nodeToString(Node node) throws TransformerFactoryConfigurationError, TransformerException {
    StringWriter sw = new StringWriter();

    Transformer t = TransformerFactory.newInstance().newTransformer();
    t.setOutputProperty(OutputKeys.OMIT_XML_DECLARATION, "yes");
    t.setOutputProperty(OutputKeys.INDENT, "yes");
    t.transform(new DOMSource(node), new StreamResult(sw));
    return sw.toString();
}

And use it in this way 并以这种方式使用 

 String securityHeader = nodeToString(buildSecurityHeader(username,password));

The result will be similar to this. 结果将与此类似。 Parametrize the WSSecUsernameToken and WSSecHeader code at your convenience 在方便时对WSSecUsernameTokenWSSecHeader代码进行参数设置 

<wsse:Security xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" soapenv:mustUnderstand="1">
    <wsse:UsernameToken wsu:Id="UsernameToken-39dba965-c4a8-4b2d-826e-ade8c0931f3f">
       <wsse:Username>username</wsse:Username>
       <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordDigest">BxJH0G5PzPfBFbBGimF0bq3vjsY=</wsse:Password>
       <wsse:Nonce EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary">iaO1xilL6qfuN2apbSdfPQ==</wsse:Nonce>
       <wsu:Created>2016-06-30T07:17:26.552Z</wsu:Created>
    </wsse:UsernameToken>
</wsse:Security>

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Apache CXF Java客户端的安全策略 - Security Policy for Apache CXF Java Client CXF 客户端安全 - CXF Client Security 在CXF中向请求添加安全标头 - Adding security headers to request in CXF 使用Apache CXF客户端传递SOAP标头的问题 - Problem with passing SOAP headers using Apache CXF client 使用CXF的Java动态客户端Web服务 - Java Dynamic Client Web Service using CXF 使用Apache CXF为Java中的Azure Pack获取安全令牌 - Getting a Security Token for Azure Pack in Java Using Apache CXF 如何在CXF客户端中动态添加HTTP标头? - How to dynamically add HTTP headers in CXF client? 使用wsdl2java和Apache CXF的SOAP客户端 - SOAP client using wsdl2java and Apache CXF CXF客户端+ WS-Security + MTOM =麻烦吗? - CXF Client + WS-Security + MTOM = Trouble? 没有签名令牌Java CXF客户端 - No signature token Java CXF Client
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM