WSE Interop with JAVA

hi everyone,

after trying use wcf, fall wse 3.0 , vs2005 exchange messages java service. creator, have use ws-security 1.0 , signed username token (with no password sended) auth it. specifications:

to assure authentication must sign username token private key, insert produced signature soap header signing digital certificate;

to assure integrity must sign entire body private key, add produced signature soap header signing digital certificate;

to assure privacy (not in messages) must encrypt body digital certificate of service.

can me find right policy, assertion ecc obtain this? please me!, 'm newbie of world!!

below add example of requested soap message.

<soap:envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/">
    <soap:header>
        <wsse:security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
                       soap:mustunderstand="1">
            <wsse:binarysecuritytoken
                    xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
                    xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
                    encodingtype="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#base64binary"
                    valuetype="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#x509v3"
                    wsu:id="certid-1b469e8c7099ddfd9312760086815331">
                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
            </wsse:binarysecuritytoken>
            <ds:signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#" id="signature-2">
                <ds:signedinfo>
                    <ds:canonicalizationmethod algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                    <ds:signaturemethod algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
                    <ds:reference uri="#usernametoken-1">
                        <ds:transforms>
                            <ds:transform algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                        </ds:transforms>
                        <ds:digestmethod algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
                        <ds:digestvalue>hlrbysxrbd+ntfo0umqefz6rqs8=</ds:digestvalue>
                    </ds:reference>
                    <ds:reference uri="#id-3">
                        <ds:transforms>
                            <ds:transform algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                        </ds:transforms>
                        <ds:digestmethod algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
                        <ds:digestvalue>6atbeuakpnpkadfs+sfcbulfbfm=</ds:digestvalue>
                    </ds:reference>
                </ds:signedinfo>
                <ds:signaturevalue>
                    ppga+rsqqmyzrfa0f6naelgmyqwrznjfw3ep4dmnkersndyjexgjtp+kfautdf5fbw8xhanplcp+
                    zrpb5zgfljfxokcjxsfkqjfkkb0ellpsg+tymezb9srss4au2dv9gcwvnlxm3o2wspybc7atauyn
                    uxa3cgpnlcl8kivsvz4=
                </ds:signaturevalue>
                <ds:keyinfo id="keyid-1b469e8c7099ddfd9312760086815442">
                    <wsse:securitytokenreference
                            xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
                            xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
                            wsu:id="strid-1b469e8c7099ddfd9312760086815463">
                        <wsse:reference
                                xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
                                uri="#certid-1b469e8c7099ddfd9312760086815331"
                                valuetype="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#x509v3"/>
                    </wsse:securitytokenreference>
                </ds:keyinfo>
            </ds:signature>
            <wsse:usernametoken
                    xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
                    xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
                    wsu:id="usernametoken-1">
                <wsse:username>05522130961</wsse:username>
            </wsse:usernametoken>
        </wsse:security>
    </soap:header>
    <soap:body xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
               wsu:id="id-3">
        <aperturacontopersonafisicain xmlns="http://model.ws.contidigioco.sogei.it">
            <requestelements>
                <idfsc>37</idfsc>
                <idrete>2</idrete>
                <idcn>4210</idcn>
                <idtransazione>1276008679824</idtransazione>
                <idreteconto>2</idreteconto>
                <idcnconto>4210</idcnconto>
                <codiceconto>1280820803</codiceconto>
                <titolareconto>
                    <codicefiscale>rsspla77l07h501s</codicefiscale>
                    <cognome>rossi</cognome>
                    <nome>paolo</nome>
                    <sesso>m</sesso>
                    <residenza>
                        <indirizzo>via roma</indirizzo>
                        <comune>roma</comune>
                        <provincia>rm</provincia>
                        <cap>00125</cap>
                    </residenza>
                    <documento>
                        <tipo>1</tipo>
                        <numero>ah7777394005</numero>
                        <datarilascio/>
                        <autoritarilascio>comune di roma</autoritarilascio>
                        <localitarilascio>roma</localitarilascio>
                    </documento>
                    <postaelettronica>prossi@mail.it</postaelettronica>
                    <pseudonimo>prossi</pseudonimo>
                </titolareconto>
            </requestelements>
        </aperturacontopersonafisicain>
    </soap:body>
</soap:envelope>

hi everyone,

can me? tips, tricks or can useful me?

Archived Forums A-B  >  ASMX Web Services and XML Serialization