堆栈内存溢出
  简体   繁体   English

如何从.net和WCF使用Java Web服务

[英]how to consume java webservice from .net and wcf

 原文  2012-10-25 20:10:11       java/ .net/ xml/ sign/ webservices-client

问题描述

I am stuck with an interoperatibility issue. 我遇到了互操作性问题。 I am from .net and have to consume a Java Secured Service by signing request using x509 certificate. 我来自.net,必须使用x509证书签署请求以使用Java安全服务。 I have WSDL and generated service reference in .net wcf client and added x509 certificate credentials in app.config but the client does not generate the expected SOAP Payload (traced in fiddler) and java service throws error. 我在.net wcf客户端中有WSDL并生成了服务引用,并在app.config中添加了x509证书凭据,但是客户端未生成预期的SOAP有效负载(在提琴手中跟踪),并且Java服务抛出错误。 Is there a way WCF client generate payload as expected by java? WCF客户端有没有办法像Java期望的那样生成有效载荷?

Below is the Working Request Payload given by Java Guys. 以下是Java Guys给出的工作请求有效负载。 

<soapenv:Envelope xmlns:smok="http://www.javaServer.org/schemas/SmokeTest" xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
  <soapenv:Header>
    <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
      <ds:Signature Id="SIG-53" xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:SignedInfo>
          <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
            <ec:InclusiveNamespaces PrefixList="smok soapenv" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/>
          </ds:CanonicalizationMethod>
          <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
          <ds:Reference URI="#id-52">
            <ds:Transforms>
              <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                <ec:InclusiveNamespaces PrefixList="smok" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/>
              </ds:Transform>
            </ds:Transforms>
            <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
            <ds:DigestValue>dCnj2a+0wptrFSyWzEgwetSTHmM=</ds:DigestValue>
          </ds:Reference>
        </ds:SignedInfo>
        <ds:SignatureValue>
          WgD3P8DWPG4eWXzXiD9+LZosn7ggRPpIC1OAmq9bn0s1HuGhM/fZozfDhEDn5sAF9RtVFiAZxC03
          4tW+cuxC5jAHH4GYQud6s5h5sGwvhLshQNVdI6HBBFQWr+J3mUEBbUCExJ6HEe1i2v0+dMQNWezo
          E1Ot7klNGxXedHzrlZw=
        </ds:SignatureValue>
        <ds:KeyInfo Id="KI-DE6BE13CF8D5419B66135109740345572">
          <wsse:SecurityTokenReference wsu:Id="STR-DE6BE13CF8D5419B66135109740345573">
            <ds:X509Data>
              <ds:X509IssuerSerial>
                <ds:X509IssuerName>CN=VeriSign Class 1 Individual Subscriber CA - G3,OU=Persona Not Validated,OU=Terms of use at https://www.verisign.com/rpa (c)09,OU=VeriSign Trust Network,O=VeriSign\, Inc.,C=US</ds:X509IssuerName>
                <ds:X509SerialNumber>51921456535433584705342517836423530149</ds:X509SerialNumber>
              </ds:X509IssuerSerial>
            </ds:X509Data>
          </wsse:SecurityTokenReference>
        </ds:KeyInfo>
      </ds:Signature>
    </wsse:Security>
  </soapenv:Header>
  <soapenv:Body wsu:Id="id-52" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
    <smok:HelloRequest>
      <smok:Name>Hello from Heruwala</smok:Name>
    </smok:HelloRequest>
  </soapenv:Body>
</soapenv:Envelope>

1 个解决方案

解决方案1
 1 已采纳  2012-10-26 21:17:48

Use a customBinding with security.mode of "mutualCertificate" as explained here . 使用带有“mutualCertificate”的security.mode一个customBinding作为解释在这里 If this fails please publish how your request looks life (via Fiddler or Wcf logging) so we can compare it. 如果失败,请发布您的请求的外观(通过Fiddler或Wcf日志记录),以便我们进行比较。 One expected difference is that the certificate will appear as binary token and not X509Data. 预期的差异之一是证书将显示为二进制令牌,而不是X509Data。 I do not expect the server to fail because of this. 我不希望服务器因此而失败。 In case it does you can fix that by creating the whole custom binding from code. 如果确实如此,您可以通过从代码创建整个自定义绑定来解决此问题。 When you need to create the security element it will be something like this: 当您需要创建安全元素时,将如下所示: 

SecurityBindingElement sec =
                SecurityBindingElement.CreateMutualCertificateBindingElement(
                  MessageSecurityVersion.WSSecurity10WSTrustFebruary2005WSSecureConversationFebruary2005WSSecurityPolicy11BasicSecurityProfile10, false);
X509SecurityTokenParameters x509Params = new X509SecurityTokenParameters();
x509Params.X509ReferenceStyle = X509KeyIdentifierClauseType.IssuerSerial;
((AsymmetricSecurityBindingElement) sec).InitiatorTokenParameters = x509Params;

or by hard coding the X509Data in a custom encoder. 或者通过自定义编码器对X509Data进行硬编码。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 WCF客户端如何使用多部分/相关的java webservice响应? - How can a WCF client consume a multipart/related java webservice reponse? 如何在Java中使用/反序列化.Net WCF服务JSON响应 - How to consume/deserialize .Net WCF service JSON response in Java Java客户端使用ASP.Net Web服务 - Java client consume ASP.Net Webservice 如何从仅具有wsdl的Java使用C#Web服务 - How to consume a C# webservice from Java having only the wsdl 如何从EJB使用Web服务 - How to consume a webservice from an EJB 无法从Java使用Web服务 - Can't consume webservice from Java 如何使用Java使用此Web服务? - How can i consume this webservice with Java? 如何在Windows Phone 8中使用Java REST Web服务? - How to consume java REST webservice in windows phone 8? 如何从外部jar使用Restful Web服务 - How to consume Restful webservice from external jar 如何在java中使用restful wcf服务? - How to consume restful wcf service in java?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM