[jboss-user] [JBossWS] - Re: WS-security interoperability

stepmarti do-not-reply at jboss.com
Wed May 21 10:32:24 EDT 2008


>From JBoss Log

This is the Incoming Request Message

  | <soap:Envelope xmlns:soap='http://schemas.xmlsoap.org/soap/envelope/' xmlns:wsa='http://schemas.xmlsoap.org/ws/2004/08/addressing' xmlns:wsse='http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd' xmlns:wsu='http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd'>
  |  <soap:Header>
  |   <wsa:Action wsu:Id='Id-1de072a3-c3cb-4856-b140-f14c42fa2533'>http://schemas.xmlsoap.org/ws/2005/02/trust/RST/SCT</wsa:Action>
  |   <wsa:MessageID wsu:Id='Id-c91d712e-c882-44ca-a556-ce041a61d350'>urn:uuid:a32ac60e-87c0-4a7e-a79e-1d19b2bb330c</wsa:MessageID>
  |   <wsa:ReplyTo wsu:Id='Id-99bc5a84-542b-4f17-9d4d-b7b68060723d'>
  |    <wsa:Address>http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous</wsa:Address>
  |   </wsa:ReplyTo>
  |   <wsa:To wsu:Id='Id-f3ac12e3-09a8-4088-9a84-a891450c5f1c'>http://127.0.0.1:8080/TestSerWebService/NewWebService</wsa:To>
  |   <wsse:Security soap:mustUnderstand='1'>
  |    <wsu:Timestamp wsu:Id='Timestamp-bc67e185-3eed-4b60-8d24-a67764f20e81'>
  |     <wsu:Created>2008-05-21T14:16:10Z</wsu:Created>
  |     <wsu:Expires>2008-05-21T14:21:10Z</wsu:Expires>
  |    </wsu:Timestamp>
  |    <wsse:BinarySecurityToken EncodingType='http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary' ValueType='http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3' wsu:Id='SecurityToken-7b122596-ffc1-4ea5-bde1-d66026edd874'>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</wsse:BinarySecurityToken>
  |    <xenc:EncryptedKey Id='SecurityToken-9a2e14a4-a417-407c-8afa-65253d7cc190' xmlns:xenc='http://www.w3.org/2001/04/xmlenc#'>
  |     <xenc:EncryptionMethod Algorithm='http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p'>
  |      <ds:DigestMethod Algorithm='http://www.w3.org/2000/09/xmldsig#sha1' xmlns:ds='http://www.w3.org/2000/09/xmldsig#'/>
  |     </xenc:EncryptionMethod>
  |     <KeyInfo xmlns='http://www.w3.org/2000/09/xmldsig#'>
  |      <wsse:SecurityTokenReference>
  |       <wsse:KeyIdentifier EncodingType='http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary' ValueType='http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509SubjectKeyIdentifier'>dVE29ysyFW/iD1la3ddePzM6IWo=</wsse:KeyIdentifier>
  |      </wsse:SecurityTokenReference>
  |     </KeyInfo>
  |     <xenc:CipherData>
  |      <xenc:CipherValue>XroW1XRTUVlqIX4MTDHTcKhgnLBePV4dt+H5Y0Ly9G6G8bME6oxDgcapiG52+CCEMCpJbPz2+bAPl3qhVopdA4raeTdTqFkJkryfPt4AHI3IpCxKTtS3LNW++GTNYPE7ZbtjGlUs49PrYQkpuVjftj0h5SiuYuARlXoNP0KotZA=</xenc:CipherValue>
  |     </xenc:CipherData>
  |     <xenc:ReferenceList>
  |      <xenc:DataReference URI='#Enc-e4656f61-73f8-4258-a62e-7076dbbd5687'/>
  |     </xenc:ReferenceList>
  |    </xenc:EncryptedKey>
  |    <Signature Id='Sig-0fa0f605-7d29-447c-8412-d767a13f78b1' xmlns='http://www.w3.org/2000/09/xmldsig#'>
  |     <SignedInfo>
  |      <ds:CanonicalizationMethod Algorithm='http://www.w3.org/2001/10/xml-exc-c14n#' xmlns:ds='http://www.w3.org/2000/09/xmldsig#'/>
  |      <SignatureMethod Algorithm='http://www.w3.org/2000/09/xmldsig#hmac-sha1'/>
  |      <Reference URI='#Id-1de072a3-c3cb-4856-b140-f14c42fa2533'>
  |       <Transforms>
  |        <Transform Algorithm='http://www.w3.org/2001/10/xml-exc-c14n#'/>
  |       </Transforms>
  |       <DigestMethod Algorithm='http://www.w3.org/2000/09/xmldsig#sha1'/>
  |       <DigestValue>JjpTjh8RxVneIlIGzppKJbA4h+A=</DigestValue>
  |      </Reference>
  |      <Reference URI='#Id-c91d712e-c882-44ca-a556-ce041a61d350'>
  |       <Transforms>
  |        <Transform Algorithm='http://www.w3.org/2001/10/xml-exc-c14n#'/>
  |       </Transforms>
  |       <DigestMethod Algorithm='http://www.w3.org/2000/09/xmldsig#sha1'/>
  |       <DigestValue>jx2MXJZAZGX6GEo8o/7qD8Kuv4g=</DigestValue>
  |      </Reference>
  |      <Reference URI='#Id-99bc5a84-542b-4f17-9d4d-b7b68060723d'>
  |       <Transforms>
  |        <Transform Algorithm='http://www.w3.org/2001/10/xml-exc-c14n#'/>
  |       </Transforms>
  |       <DigestMethod Algorithm='http://www.w3.org/2000/09/xmldsig#sha1'/>
  |       <DigestValue>iOwYOHXYpg2hbODf2uFlSLNKq48=</DigestValue>
  |      </Reference>
  |      <Reference URI='#Id-f3ac12e3-09a8-4088-9a84-a891450c5f1c'>
  |       <Transforms>
  |        <Transform Algorithm='http://www.w3.org/2001/10/xml-exc-c14n#'/>
  |       </Transforms>
  |       <DigestMethod Algorithm='http://www.w3.org/2000/09/xmldsig#sha1'/>
  |       <DigestValue>rxA5r5wdn0qv0Cyip4FGEa1gpsY=</DigestValue>
  |      </Reference>
  |      <Reference URI='#Timestamp-bc67e185-3eed-4b60-8d24-a67764f20e81'>
  |       <Transforms>
  |        <Transform Algorithm='http://www.w3.org/2001/10/xml-exc-c14n#'/>
  |       </Transforms>
  |       <DigestMethod Algorithm='http://www.w3.org/2000/09/xmldsig#sha1'/>
  |       <DigestValue>2SrmR4EOaY2N4MxIQWF04AieLgo=</DigestValue>
  |      </Reference>
  |      <Reference URI='#Id-de0e8d4a-c91f-4819-89a2-8f98c3eac24a'>
  |       <Transforms>
  |        <Transform Algorithm='http://www.w3.org/2001/10/xml-exc-c14n#'/>
  |       </Transforms>
  |       <DigestMethod Algorithm='http://www.w3.org/2000/09/xmldsig#sha1'/>
  |       <DigestValue>OgUNqWh8rlxlPLQs/UmKZKYdn7I=</DigestValue>
  |      </Reference>
  |     </SignedInfo>
  |     <SignatureValue>f+780nexIdlXSbtbqu2o74VAQ+c=</SignatureValue>
  |     <KeyInfo>
  |      <wsse:SecurityTokenReference>
  |       <wsse:Reference URI='#SecurityToken-9a2e14a4-a417-407c-8afa-65253d7cc190' ValueType='http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1.1#EncryptedKey'/>
  |      </wsse:SecurityTokenReference>
  |     </KeyInfo>
  |    </Signature>
  |    <Signature xmlns='http://www.w3.org/2000/09/xmldsig#'>
  |     <SignedInfo>
  |      <ds:CanonicalizationMethod Algorithm='http://www.w3.org/2001/10/xml-exc-c14n#' xmlns:ds='http://www.w3.org/2000/09/xmldsig#'/>
  |      <SignatureMethod Algorithm='http://www.w3.org/2000/09/xmldsig#rsa-sha1'/>
  |      <Reference URI='#Sig-0fa0f605-7d29-447c-8412-d767a13f78b1'>
  |       <Transforms>
  |        <Transform Algorithm='http://www.w3.org/2001/10/xml-exc-c14n#'/>
  |       </Transforms>
  |       <DigestMethod Algorithm='http://www.w3.org/2000/09/xmldsig#sha1'/>
  |       <DigestValue>4I0v3zZ1z3aPjOTrMO+LxQbBs+I=</DigestValue>
  |      </Reference>
  |     </SignedInfo>
  |     <SignatureValue>mU7ojPESP1pKeWbMtH1VhlLrFiqi6YxALA6hJfyrxaWnyd+OQqQ9qgm3fz8hx/MQcQ9sXZBQUC426eMSYtZ+oqjZSmVvHzNO9OTCu/N081mMH9gVpjEPPihJv99/KsjWfgx3jp827QnZhd4kUrCO/9MGNdS2p2Oh2HsTwFvWKmM=</SignatureValue>
  |     <KeyInfo>
  |      <wsse:SecurityTokenReference>
  |       <wsse:Reference URI='#SecurityToken-7b122596-ffc1-4ea5-bde1-d66026edd874' ValueType='http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3'/>
  |      </wsse:SecurityTokenReference>
  |     </KeyInfo>
  |    </Signature>
  |   </wsse:Security>
  |  </soap:Header>
  |  <soap:Body wsu:Id='Id-de0e8d4a-c91f-4819-89a2-8f98c3eac24a'>
  |   <xenc:EncryptedData Id='Enc-e4656f61-73f8-4258-a62e-7076dbbd5687' Type='http://www.w3.org/2001/04/xmlenc#Content' xmlns:xenc='http://www.w3.org/2001/04/xmlenc#'>
  |    <xenc:EncryptionMethod Algorithm='http://www.w3.org/2001/04/xmlenc#aes256-cbc' xmlns:xenc='http://www.w3.org/2001/04/xmlenc#'/>
  |    <xenc:CipherData xmlns:xenc='http://www.w3.org/2001/04/xmlenc#'>
  |     <xenc:CipherValue xmlns:xenc='http://www.w3.org/2001/04/xmlenc#'>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</xenc:CipherValue>
  |    </xenc:CipherData>
  |   </xenc:EncryptedData>
  |  </soap:Body>
  | </soap:Envelope>
  | 

View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4152363#4152363

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4152363




More information about the jboss-user mailing list