SOAP主体必须经过签名才能进行基于签名的身份验证。没有提供凭证

时间:2019-02-25 20:50:01

标签: spring-boot x509certificate self-signed-certificate

我的Spring Boot应用程序与Soap Client进行交互,以获取用于握手应用程序的X509证书,而我从Soap UI尝试时,我可以看到在请求中添加了标头部分并获得了正确的响应,但是在代码标头中未添加请求。预先感谢您帮助解决此问题。

我的bootstrap.yml文件

server:ssl:
key-store-type: JKS
key-store: classpath:X509_Cert/tomcat.jks
key-alias: xxxxx
enabled: true
key-store-password: xxx
key-password: xxx

请求XML:

<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:v1="xxxx" xmlns:v4="xxxxxxxxxxxxx"><soapenv:Header><wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"><wsse:BinarySecurityToken EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" wsu:Id="X509-xxxxxxxxxxxx">.....Tokens</wsse:BinarySecurityToken><ds:Signature Id="SIG-xxxxxxxx" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"><ec:InclusiveNamespaces PrefixList="soapenv v1 v4" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:CanonicalizationMethod><ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/><ds:Reference URI="#id-XXXXXXXXXXXXXXXXXX"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"><ec:InclusiveNamespaces PrefixList="v1 v4" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transform></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>XXXXXXXXXXXXXXXXXX=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>....Tokens...</ds:SignatureValue><ds:KeyInfo Id="KI-xxxxxxxxx"><wsse:SecurityTokenReference wsu:Id="STR-xxxxxxxxxxxxx"><wsse:Reference URI="#X509-xxxxxxxxxxxxxxxxxxx" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/></wsse:SecurityTokenReference></ds:KeyInfo></ds:Signature></wsse:Security></soapenv:Header><soapenv:Body wsu:Id="id-xxxxxxxxxxxxxxxxxxx" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
  ----- my request here---------- </soapenv:Body></soapenv:Envelope>

如何在bootstrap.yml中进行配置以在每个请求中添加标头信息?非常感谢您的帮助

0 个答案:

没有答案
相关问题
最新问题