本文介绍了签署RST发送w / WSTrustClient的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!

问题描述

大家好,

我正在尝试向STS发送RST,要求我通过签署请求进行身份验证。无论我做什么,我都无法让WCF和WIF将安全令牌粘贴在RST的SOAP标头中。

我使用工作非基于WIF的应用程序:

Hi All,

I'm trying to send an RST to an STS that requires me to auth by signing the request.  No matter what I do, I can't get WCF and WIF to stick the security token in the SOAP header of the RST.

I grabbed the following RST off the wire using a working non-WIF-based app:


<env:Envelope...>
    <env:Header...>
        <wsa:To>http://mysts/sts</wsa:To>
        <wsa:Action>http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue</wsa:Action>
        <wsa:ReplyTo>
            <wsa:Address>http://www.w3.org/2005/08/addressing/anonymous</wsa:Address>
        </wsa:ReplyTo>
        <wsa:MessageID>...</wsa:MessageID>
        <wsse:Security...>
            <wsse:BinarySecurityToken...>...</wsse:BinarySecurityToken>
            <wsu:Timestamp>...</wsu:Timestamp>
            <ds:Signature...>...</ds:Signature>
        </wsse:Security>
    </env:Header>
    <env:Body wsu:Id="...">
        <wst:RequestSecurityToken xmlns:wsa="http://www.w3.org/2005/08/addressing"
            xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
            xmlns:wst="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
            <wst:RequestType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/Issue</wst:RequestType>
            <wsp:AppliesTo>
                <wsa:EndpointReference>
                    <wsa:Address>default</wsa:Address>
                </wsa:EndpointReference>
            </wsp:AppliesTo>
            <wst:KeyType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/PublicKey</wst:KeyType>
        </wst:RequestSecurityToken>
    </env:Body>
</env:Envelope>

推荐答案


这篇关于签署RST发送w / WSTrustClient的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!

10-16 09:08