|
|
You're in the
dotnet web services enhancements
group:WSDL Username Token Signature & Encryption?
dotnet web services enhancements:
My service requires a Username token. It also requires a
MessageSignature and EncryptedData (using said token.) Is there any way to specify what is expected in my WSDL document? If not, how will the service consumer know what token(s) are required? Thanks, -Ben --
Hi Ben,
What u want is to specify your message requirements (which tokens are required, etc...) in your Service Policy via WS-Policy. The good news is WS-Policy is supported in WSE2.0. Go to http://msdn.microsoft.com/webservices/building/wse/default.aspx?pull=/library/en-us/dnwse/html/wse2wspolicy.asp to find out more about WS-Policy. hth -- Thank you very much Warmest Regards, Softwaremaker Architect | Evangelist | Consultant +++++++++++++++++++++++++++++++++ [quoted text, click to view] "Ben Bloom" <bbloom@macg.s.p.a.m.regor.com> wrote in message news:u#3hh14jEHA.1560@TK2MSFTNGP10.phx.gbl... > My service requires a Username token. It also requires a > MessageSignature and EncryptedData (using said token.) > > Is there any way to specify what is expected in my WSDL document? If > not, how will the service consumer know what token(s) are required? > > Thanks, > -Ben > -- > to reply, remove .s.p.a.m. from email
Cool. Thanks again, Softwaremaker. This looks like it's what I need.
Will the policy affect the WSDL at all? The guy coding the other side of this (the consumer) thinks that his tool that generates code from WSDL will handle the tokens, signature, and encryption so long as it's specified in the WSDL. It's been frustrating working with a COM consumer, at least so far. [quoted text, click to view] Softwaremaker wrote: > Hi Ben, > > What u want is to specify your message requirements (which tokens are > required, etc...) in your Service Policy via WS-Policy. The good news is > WS-Policy is supported in WSE2.0. > > Go to > http://msdn.microsoft.com/webservices/building/wse/default.aspx?pull=/library/en-us/dnwse/html/wse2wspolicy.asp > to find out more about WS-Policy. > > hth --
[quoted text, click to view]
Softwaremaker wrote: [quoted text, click to view] > AFAIK, you can try to expose your Policy files thru UDDI. There is no > standard way of doing this yet, altho there is nothing to stop you from > doing it as a tModel Binding. I have not read up the specs for UDDI 3.0 yet > so I cannot comment on whether there is a standard way to do this. To help u > solve the problems your consumer may be facing, you (as the Service > Provider) may want to generate the Policy File for him and let him have it > so that his toolkit can churn out the proper message to meet your service's > requirements. Hm.. I think this last idea could be a good avenue to pursue. I'll speak with him about it. Thanks. --
[quoted text, click to view]
Softwaremaker wrote: > WS-PolicyAttachments is acutally what u shld be looking at. BUT WSE2.0 > doesnt support it at this point in time so WS-PolicyAttachment is in the > Policy File itself. For now, you may want to do the below: > > 1) Reference policy expressions as tModels > 2) Register common policy expressions as reusable tModels > > hth. You're probably correct. However the only reason I'm going down this road is to see if I can make integration with our existing COM toolkit any easier. The toolkit developers can consume web services OK, but can not figure out how to attach a Username token, sign, or encrypt the message. Nonetheless, a policy would be a good thing to define, as it's possible that others will be developing against this service in the long-term. Thanks. -Ben --
Hi Ben,
[quoted text, click to view] > Will the policy affect the WSDL at all? No, these are 2 different files. [quoted text, click to view] > The guy coding the other side > of this (the consumer) thinks that his tool that generates code from > WSDL will handle the tokens, signature, and encryption so long as it's > specified in the WSDL. It's been frustrating working with a COM > consumer, at least so far. WSDL and Policy files are 2 different entities. WSDL specifies how your messages should look like in terms of data and wire-formats when they reach the endpoints. Policy files specifies whether the exchanged messages are compatible with each other. AFAIK, you can try to expose your Policy files thru UDDI. There is no standard way of doing this yet, altho there is nothing to stop you from doing it as a tModel Binding. I have not read up the specs for UDDI 3.0 yet so I cannot comment on whether there is a standard way to do this. To help u solve the problems your consumer may be facing, you (as the Service Provider) may want to generate the Policy File for him and let him have it so that his toolkit can churn out the proper message to meet your service's requirements. hth. -- Thank you very much Warmest Regards, Softwaremaker Architect | Evangelist | Consultant +++++++++++++++++++++++++++++++++ [quoted text, click to view] "Ben Bloom" <bbloom@macg.s.p.a.m.regor.com> wrote in message news:e8nXv4BkEHA.2664@TK2MSFTNGP11.phx.gbl... > Cool. Thanks again, Softwaremaker. This looks like it's what I need. > > Will the policy affect the WSDL at all? The guy coding the other side > of this (the consumer) thinks that his tool that generates code from > WSDL will handle the tokens, signature, and encryption so long as it's > specified in the WSDL. It's been frustrating working with a COM > consumer, at least so far. > > Softwaremaker wrote: > > Hi Ben, > > > > What u want is to specify your message requirements (which tokens are > > required, etc...) in your Service Policy via WS-Policy. The good news is > > WS-Policy is supported in WSE2.0. > > > > Go to > > http://msdn.microsoft.com/webservices/building/wse/default.aspx?pull=/library/en-us/dnwse/html/wse2wspolicy.asp > > to find out more about WS-Policy. > > > > hth > > > -- > to reply, remove .s.p.a.m. from email
WS-PolicyAttachments is acutally what u shld be looking at. BUT WSE2.0
doesnt support it at this point in time so WS-PolicyAttachment is in the Policy File itself. For now, you may want to do the below: 1) Reference policy expressions as tModels 2) Register common policy expressions as reusable tModels hth. -- Thank you very much Warmest Regards, Softwaremaker Architect | Evangelist | Consultant http://dotnetjunkies.com/weblog/softwaremaker +++++++++++++++++++++++++++++++++ [quoted text, click to view] "Ben Bloom" <bbloom@macg.s.p.a.m.regor.com> wrote in message news:eG3ChxCkEHA.2412@TK2MSFTNGP10.phx.gbl... > Softwaremaker wrote: > > > > AFAIK, you can try to expose your Policy files thru UDDI. There is no > > standard way of doing this yet, altho there is nothing to stop you from > > doing it as a tModel Binding. I have not read up the specs for UDDI 3.0 yet > > so I cannot comment on whether there is a standard way to do this. To help u > > solve the problems your consumer may be facing, you (as the Service > > Provider) may want to generate the Policy File for him and let him have it > > so that his toolkit can churn out the proper message to meet your service's > > requirements. > > Hm.. I think this last idea could be a good avenue to pursue. I'll > speak with him about it. > > Thanks. > > > -- > to reply, remove .s.p.a.m. from email
Don't see what you're looking for? Try a search.
|
June 2004
July 2004
August 2004
September 2004
October 2004
November 2004
December 2004
January 2005
February 2005
March 2005
April 2005
May 2005
June 2005
July 2005
August 2005
September 2005
October 2005
November 2005
December 2005
January 2006
February 2006
March 2006
April 2006
May 2006
June 2006
July 2006
August 2006
September 2006
October 2006
November 2006
December 2006
January 2007
February 2007
March 2007
April 2007
May 2007
June 2007
July 2007
August 2007
September 2007
October 2007
November 2007
December 2007
March 2008
April 2008
May 2008
June 2008
| home · blog · groups | Questions? Comments? Contact the dn |