签署RST发送w / WSTrustClient [英] Signing RST sent w/ WSTrustClient

查看:78
本文介绍了签署RST发送w / WSTrustClient的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!

问题描述

大家好,

我正在尝试向STS发送RST,要求我通过签署请求进行身份验证。无论我做什么,我都无法让WCF和WIF将安全令牌粘贴在RST的SOAP标头中。

我使用工作<抓取了以下RST线路/ strong>非基于WIF的应用程序:

Hi All,

I'm trying to send an RST to an STS that requires me to auth by signing the request.  No matter what I do, I can't get WCF and WIF to stick the security token in the SOAP header of the RST.

I grabbed the following RST off the wire using a working non-WIF-based app:


<env:Envelope...>
    <env:Header...>
        <wsa:To>http://mysts/sts</wsa:To>
        <wsa:Action>http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue</wsa:Action>
        <wsa:ReplyTo>
            <wsa:Address>http://www.w3.org/2005/08/addressing/anonymous</wsa:Address>
        </wsa:ReplyTo>
        <wsa:MessageID>...</wsa:MessageID>
        <wsse:Security...>
            <wsse:BinarySecurityToken...>...</wsse:BinarySecurityToken>
            <wsu:Timestamp>...</wsu:Timestamp>
            <ds:Signature...>...</ds:Signature>
        </wsse:Security>
    </env:Header>
    <env:Body wsu:Id="...">
        <wst:RequestSecurityToken xmlns:wsa="http://www.w3.org/2005/08/addressing"
            xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
            xmlns:wst="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
            <wst:RequestType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/Issue</wst:RequestType>
            <wsp:AppliesTo>
                <wsa:EndpointReference>
                    <wsa:Address>default</wsa:Address>
                </wsa:EndpointReference>
            </wsp:AppliesTo>
            <wst:KeyType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/PublicKey</wst:KeyType>
        </wst:RequestSecurityToken>
    </env:Body>
</env:Envelope>

推荐答案

你好Travis,

我认为你需要使用自定义绑定对于您的方案,但我不知道需要设置的消息安全选项的确切组合。也许最好在WCF论坛上展示您的问题。我想你可以删除RST部分并假装你发送一个简单的肥皂请求。

我对寻址问题没有任何答案,但WCF论坛可能会有建议。

对不起,我无法帮你解决更多问题。


Hi Travis,

I think you going to need to use a custom binding for your scenario but I don't know the exact combination of message security options which need to set. Perhaps its best to present your problem on the WCF forum. I think you could remove the RST part and pretend your sending a simple soap request.

I don't have any answers for the addressing issue either but again the WCF forum may have suggestions.

Sorry I couldn't help you out more.





这篇关于签署RST发送w / WSTrustClient的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!

查看全文
相关文章
其他开发语言最新文章
热门教程
热门工具
登录 关闭
扫码关注1秒登录
发送“验证码”获取 | 15天全站免登陆