注册
登录
云鉴权
WS安全性 - 用户名令牌配置文件
返回
WS安全性 - 用户名令牌配置文件
作者:
My☀
发布时间:
2024-12-27 03:11:37 (2月前)
转自:
<div class =“excerpt”> 我有一个wsdl文件,我正在为WAS 8.0编写一个客户端 我在ApplicationResources.properties中保留了soap请求所需的用户名/密码。 我正在使用'wss-username- <span class =“result-highlight”> 代币 </跨度> -profile ... </DIV>
收藏
举报
2 条回复
0#
回复此人
v-star*위위
|
2019-08-31 10-32
<div class =“post-text”itemprop =“text”> <P> Soap请求必须包含用户名令牌wss配置文件的相应头元素。如果您使用Java,您可以使用Soap处理程序或SAAJ手动创建元素。在Websphere中,您可以使用称为“策略集”的功能对此支持进行元编程,并配置各种策略集和绑定。 </p> <P> 这是一篇很好的文章,描述了如何使用配置方法完成此操作: <a href="http://www.ibm.com/developerworks/websphere/library/techarticles/1103_balakrishnan/1103_balakrishnan.html" rel="nofollow"> http://www.ibm.com/developerworks/websphere/library/techarticles/1103_balakrishnan/1103_balakrishnan.html </A> </p> <P> 下面是使用SAAJ以编程方式添加此标头的示例: </p> <pre> <code> public class WssHandler implements SOAPHandler<SOAPMessageContext> { private static final Logger cTRACE = Logger.getLogger(WssHandler.class.getName()); // SOAP private static final String cWSSE = "wsse"; private static final String cURL = "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"; private static final String cNODE_SECURITY = "Security"; private static final String cNODE_USRTOKEN = "UsernameToken"; private static final String cNODE_USERNAME = "Username"; private static final String cNODE_PASSWORD = "Password"; private String iUsername; private String iPassword; /** * Constructor for SOAP handler with specific wss credentials. * @param aUsername wss username * @param aPassword wss password */ public WssHandler(String username, String passwd) { super(); iUsername = username; iPassword = passwd; } @Override public boolean handleMessage(SOAPMessageContext context) { if (cTRACE.isLoggable(Level.FINEST)) { cTRACE.logp(Level.FINEST, WssHandler.class.getName(), "handleMessage", "add WSS credentials for user "+iUsername); } try { SOAPMessage tMessage = context.getMessage(); SOAPEnvelope tSoapEnvelope = tMessage.getSOAPPart().getEnvelope(); // header SOAPHeader tHeader = tSoapEnvelope.getHeader(); if (tHeader==null) { // no header yet, create one tHeader = tSoapEnvelope.addHeader(); } // security node Name tWsseHeaderName = tSoapEnvelope.createName(cNODE_SECURITY, cWSSE, cURL); SOAPHeaderElement tSecurityElement = tHeader.addHeaderElement(tWsseHeaderName); tSecurityElement.setMustUnderstand(true); Name tUserTokenElementName = tSoapEnvelope.createName(cNODE_USRTOKEN, cWSSE, cURL); SOAPElement tUserTokenElement = tSecurityElement.addChildElement(tUserTokenElementName); tUserTokenElement.removeNamespaceDeclaration(cWSSE); tUserTokenElement.addNamespaceDeclaration("wsu", "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"); // user name child Name tUsernameElementName = tSoapEnvelope.createName(cNODE_USERNAME, cWSSE, cURL); SOAPElement tUsernameElement = tUserTokenElement.addChildElement(tUsernameElementName); tUsernameElement.removeNamespaceDeclaration(cWSSE); tUsernameElement.addTextNode(iUsername); // password child Name tPasswordElementName = tSoapEnvelope.createName(cNODE_PASSWORD, cWSSE, cURL); SOAPElement tPasswordElement = tUserTokenElement.addChildElement(tPasswordElementName); tPasswordElement.removeNamespaceDeclaration(cWSSE); tPasswordElement.addTextNode(iPassword); tPasswordElement.setAttribute("Type", "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText"); } catch (SOAPException e) { if (cTRACE.isLoggable(Level.SEVERE)) { cTRACE.logp(Level.SEVERE, WssHandler.class.getName(), "handleMessage", "Unable to add WSS credentials", e); } // stop processing return false; } // continue processing return true; } @Override public boolean handleFault(SOAPMessageContext context) { return true; } @Override public void close(MessageContext context) { // nothing to do } @Override public Set<QName> getHeaders() { return null; } } </code> </pre> </DIV>
编辑
登录
后才能参与评论
