[英]UsernameToken with Timestamp token || Python || WS-Security (WSSE)
我應該使用 python 重新創建這部分有效載荷。
<wsse:Security soapenv:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
<wsu:Timestamp wsu:Id="TS-C85E4BAAC54A3C164416475054038092">
<wsu:Created>2022-03-17T08:23:23.809Z</wsu:Created>
<wsu:Expires>2022-03-17T08:24:23.809Z</wsu:Expires>
</wsu:Timestamp>
<wsse:UsernameToken wsu:Id="UsernameToken-C85E4BAAC54A3C164416475053981971">
<wsse:Username>XXXXXXXXXXXXXXX</wsse:Username>
<wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">XXXXXXXXXXXXXXXXXXXXXXXX</wsse:Password>
<wsse:Nonce EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary">zL/iJlH2YPm83y+t0wd3Dw==</wsse:Nonce>
<wsu:Created>2022-03-17T08:23:18.195Z</wsu:Created>
</wsse:UsernameToken>
</wsse:Security>
經過一些研究,我發現有一個名為“zeep”的庫可以處理這個問題,唯一的問題是據我所知,關於它的文檔很少。
帶有時間戳令牌的 UsernameToken
要將 UsernameToken 與 Timestamp 令牌一起使用,首先您需要一個 WSU.Timestamp() 實例,然后使用包含 WSU.Created() 和 WSU.Expired() 元素的列表對其進行擴展,最后將其作為 timestamp_token 關鍵字參數傳遞給 UsernameToken() .
>>> import datetime
>>> from zeep import Client
>>> from zeep.wsse.username import UsernameToken
>>> from zeep.wsse.utils import WSU
>>> timestamp_token = WSU.Timestamp()
>>> today_datetime = datetime.datetime.today()
>>> expires_datetime = today_datetime + datetime.timedelta(minutes=10)
>>> timestamp_elements = [
... WSU.Created(today_datetime.strftime("%Y-%m-%dT%H:%M:%SZ")),
... WSU.Expires(expires_datetime.strftime("%Y-%m-%dT%H:%M:%SZ"))
...]
>>> timestamp_token.extend(timestamp_elements)
>>> user_name_token = UsernameToken('username', 'password', timestamp_token=timestamp_token)
>>> client = Client(
... 'http://www.webservicex.net/ConvertSpeed.asmx?WSDL', wsse=user_name_token
...)
Output
<Element {http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd}Timestamp at 0x7f46e09032c0>
2022-03-17 09:38:20.627353
2022-03-17 09:48:20.627353
[<Element {http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd}Created at 0x7f46e0903400>, <Element {http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd}Expires at 0x7f46e0916f40>]
None
<zeep.wsse.username.UsernameToken object at 0x7f46e0911fa0>
<zeep.client.Client object at 0x7f46e0911f40>
這就是關於我的案例的全部內容,有誰知道我如何構建這段代碼?
我不確定您面臨的是什么問題,但該代碼應該足以讓某些東西正常工作。 也許 output 不是您所期望的,所以我將對此進行一些擴展。
假設這是該服務的 WSDL (因為 web 服務本身不工作),為了調用它並添加安全性 header,您可以這樣做:
import datetime
from zeep import Client
from zeep.wsse.username import UsernameToken
from zeep.wsse.utils import WSU
from zeep.plugins import HistoryPlugin
from lxml import etree
def print_history(h):
print(etree.tostring(h.last_sent["envelope"], encoding = "unicode", pretty_print = True))
print(etree.tostring(h.last_received["envelope"], encoding = "unicode", pretty_print = True))
timestamp_token = WSU.Timestamp()
today_datetime = datetime.datetime.today()
expires_datetime = today_datetime + datetime.timedelta(minutes = 10)
timestamp_elements = [
WSU.Created(today_datetime.strftime("%Y-%m-%dT%H:%M:%SZ")),
WSU.Expires(expires_datetime.strftime("%Y-%m-%dT%H:%M:%SZ"))
]
timestamp_token.extend(timestamp_elements)
user_name_token = UsernameToken('username', 'password', timestamp_token = timestamp_token)
history = HistoryPlugin()
client = Client(
'http://www.webservicex.net/ConvertSpeed.asmx?WSDL',
wsse = user_name_token,
plugins = [history]
)
response = client.service.ConvertSpeed(100.00, 'kilometersPerhour', 'milesPerhour')
print_history(history)
對該服務的調用將產生以下 SOAP 消息:
<soap-env:Envelope xmlns:soap-env="http://schemas.xmlsoap.org/soap/envelope/">
<soap-env:Header>
<wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
<wsse:UsernameToken>
<wsse:Username>username</wsse:Username>
<wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">password</wsse:Password>
</wsse:UsernameToken>
<wsu:Timestamp xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
<wsu:Created>2022-03-20T14:33:15Z</wsu:Created>
<wsu:Expires>2022-03-20T14:43:15Z</wsu:Expires>
</wsu:Timestamp>
</wsse:Security>
</soap-env:Header>
<soap-env:Body>
<ns0:ConvertSpeed xmlns:ns0="http://www.webserviceX.NET/">
<ns0:speed>100.0</ns0:speed>
<ns0:FromUnit>kilometersPerhour</ns0:FromUnit>
<ns0:ToUnit>milesPerhour</ns0:ToUnit>
</ns0:ConvertSpeed>
</soap-env:Body>
</soap-env:Envelope>
如果您想使用 zeep,我建議您將它與您嘗試調用的真實服務一起使用,而不是與來自 Inte.net 的一些不可用的示例一起使用。 我猜在 zeep 文檔中他們需要調用一些示例服務,但我什至不確定該服務是否需要身份驗證 header。
如何在ZSI,Python中的SOAP請求中添加wsse:Security,UsernameToken標頭?
[英]How to add wsse:Security, UsernameToken header to a SOAP request in ZSI, Python?
"<i>How to add SOAP-ENV:mustUnderstand="1" in<\/i>如何添加 SOAP-ENV:mustUnderstand="1"<\/b><wsse:security> <i>header using python zeep library<\/i>使用 python zeep 庫的標頭<\/b>"
[英]How to add SOAP-ENV:mustUnderstand="1" in <wsse:security> header using python zeep library
Yahoo OAuth API拒絕了我的訪問令牌時間戳(Python)
[英]Yahoo OAuth API Rejects my timestamp for Access Token (Python)
使用 Python Zeep 更改 SOAP 請求中的 xmlns:wsse 命名空間
[英]Change xmlns:wsse namespace in SOAP request with Python Zeep
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.