WS安全性和UsernameToken节点
[英]WS Security and UsernameToken node
问题描述
I read https://www.oasis-open.org/committees/download.php/13392/wss-v1.1-spec-pr-UsernameTokenProfile-01.htm and I know how to generate the Nonce and the Password. 
我阅读了https://www.oasis-open.org/committees/download.php/13392/wss-v1.1-spec-pr-UsernameTokenProfile-01.htm,并且知道如何生成Nonce和密码。 I have a doubt about UsernameToken wsu:Id . 我对UsernameToken wsu:Id有疑问。
- What should be value of
wsu:Idattribute.wsu:Id属性的值应该是什么。 - Can it be default random one? 可以是默认随机数吗?
How can I generate it?
我该如何生成? <wsse:UsernameToken wsu:Id="UsernameToken-1314D8CB1A76EFB5F614902572284093" xmlns:wsu="http://schemas.xmlsoap.org/ws/2003/06/utility"> <wsu:Created>2014.02.10T-09:12:00Z</wsu:Created> <wsse:Username>Username</wsse:Username> <wsse:Nonce EncodingType="UTF-8">KFIy9LgzhmDPNiqU/B9ZiWKXfEVNvFyn6KWYP+1zVt8=</wsse:Nonce> <wsse:Password Type="wsse:PasswordDigest">CxWj1OMnYj7dddMnU/DrOhyY3j4</wsse:Password>
1 个解决方案
解决方案1
0 2019-05-07 08:08:52
What should be value of wsu:Id attribute.
It can be a random sequence of characters (I noticed that even its length is arbitrary). 它可以是随机的字符序列(我注意到,即使它的长度也是任意的)。
Can it be default random one?
As above, definitelly yes. 如上所述,肯定是。
How can I generate it?
It's random, so use any inbuilt function which provide random string. 它是随机的,因此请使用任何提供随机字符串的内置函数。 For example (C#): 例如(C#):
string usernameTokenId = $"UsernameToken-{Guid.NewGuid().ToString()}";
In my case I used not only wsu:Id="UsernameToken-..." but also wsu:Id="SecurityToken-..." and it was still working. 在我的情况下,我不仅使用了wsu:Id="UsernameToken-..." ,还使用了wsu:Id="SecurityToken-..." ,它仍然可以正常工作。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.