You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ws.apache.org by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org> on 2016/02/26 10:53:18 UTC

[jira] [Commented] (WSS-568) How to generate SOAP Header username token to consume SOAP WSDL

    [ https://issues.apache.org/jira/browse/WSS-568?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15168740#comment-15168740 ] 

Colm O hEigeartaigh commented on WSS-568:
-----------------------------------------

Please don't use JIRA to ask questions, use the mailing lists instead. You haven't specified which SOAP stack you're using, Axis, CXF etc. WSS4J can work with either to create the security header and add it to the existing SOAP header. Please check the documentation for the project in question.

Colm.

> How to generate SOAP Header username token to consume SOAP WSDL
> ---------------------------------------------------------------
>
>                 Key: WSS-568
>                 URL: https://issues.apache.org/jira/browse/WSS-568
>             Project: WSS4J
>          Issue Type: Wish
>          Components: WSS4J Core
>         Environment: WSDL SOAP Java 
>            Reporter: Vinod Tiwari
>            Assignee: Colm O hEigeartaigh
>            Priority: Critical
>
> I have one external WSDL from where will extract the data from there and when i am hitting that wsdl getting error as The <soapenv:Header> is empty in your request. Username token is missing from there. You need to generate the username token and add it to the header.
> so we need to generate username token as below sample, my concern is how to generate soap:header. The password digest is comprised of the password, create time and nonce value as follows:
> Password_Digest = Base64 ( SHA-1 ( nonce + created + password ) )
> :
> <soapenv:Header><wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"><wsse:UsernameToken wsu:Id="UsernameToken-95478B9C8765923A0614563215623653"><wsse:Username>sample</wsse:Username><wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordDigest">WKwrplT97Bf+aeLEoVc3ILXJtvQ=</wsse:Password><wsse:Nonce EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary">0UXQL0U2e0T0YnGj3tgiOA==</wsse:Nonce><wsu:Created>2016-02-24T13:46:02.365Z</wsu:Created></wsse:UsernameToken></wsse:Security></soapenv:Header>



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@ws.apache.org
For additional commands, e-mail: dev-help@ws.apache.org