ASG
IBM
Zystems
Cressida
Icon
Netflexity
 
  MQSeries.net
Search  Search       Tech Exchange      Education      Certifications      Library      Info Center      SupportPacs      LinkedIn  Search  Search                                                                   FAQ  FAQ   Usergroups  Usergroups
 
Register  ::  Log in Log in to check your private messages
 
RSS Feed - WebSphere MQ Support RSS Feed - Message Broker Support

MQSeries.net Forum Index » WebSphere Message Broker (ACE) Support » Username token in WS Security Header

Post new topic  Reply to topic
 Username token in WS Security Header « View previous topic :: View next topic » 
Author Message
oli
PostPosted: Mon Jul 18, 2011 1:19 am    Post subject: Username token in WS Security Header Reply with quote

Acolyte

Joined: 14 Jul 2006
Posts: 68
Location: Germany
Hi all,

I like to let the SOAPRequest node put a username token into the WS Security Header. The header should look like the following:

Code:

<wsse:Security
            xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
    <wsse:UsernameToken>
        <wsse:Username>my_user</wsse:Username>
        <wsse:Password
                    Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText"
                    >my_passwd</wsse:Password>
        <wsse:Nonce>o1oUQLkCuW8mhmdrobtlvw==</wsse:Nonce>
        <wsu:Created
                    xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
                    >2011-07-18T08:12:34Z</wsu:Created>
    </wsse:UsernameToken>
</wsse:Security>


I already found the thread http://www.mqseries.net/phpBB2/viewtopic.php?p=288831&sid=e37c0e9dd9a568e153423a0b9338932b but setting the properties and assigning the security profile seems not to be sufficient.

Does anybody know how (step-by-step) it can be achieved that the SOAPRequest node generates that security header?

BTW I'm using Message Broker 7.0.0.2.

Thanks,

Oli
Back to top
View user's profile Send private message
marko.pitkanen
PostPosted: Mon Jul 18, 2011 4:15 am    Post subject: Reply with quote

Chevalier

Joined: 23 Jul 2008
Posts: 440
Location: Jamsa, Finland
Hi,

I'm not sure but I'm remembering that

1. Check that our broker have default security policy sets and bindings(WS -security| Authentication Tokens contain uname_token)

2. On your flow assign something to following fields
Code:

      SET OutputRoot.Properties.IdentitySourceType = 'usernameAndPassword';
      SET OutputRoot.Properties.IdentitySourceToken = 'xxx';
      SET OutputRoot.Properties.IdentitySourcePassword = 'yyy';


3. On your BAR file assign before deployment default security policy set and binding to the soap node that you want to use wsse:UsernameToken

--
Marko
Back to top
View user's profile Send private message Visit poster's website
lancelotlinc
PostPosted: Mon Jul 18, 2011 6:34 am    Post subject: Reply with quote

Jedi Knight

Joined: 22 Mar 2010
Posts: 4941
Location: Bloomington, IL USA
Code:


DECLARE wsse NAMESPACE 'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd';

...

Set OutputRoot.SOAP.Header.wsse:Security.wsse:UsernameToken.wsse:Username = uid;
Set OutputRoot.SOAP.Header.wsse:Security.wsse:UsernameToken.wsse:Password = pwd;

_________________
http://leanpub.com/IIB_Tips_and_Tricks
Save $20: Coupon Code: MQSERIES_READER
Back to top
View user's profile Send private message Send e-mail
Display posts from previous:   
Post new topic  Reply to topic Page 1 of 1

MQSeries.net Forum Index » WebSphere Message Broker (ACE) Support » Username token in WS Security Header
Jump to:  



You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Protected by Anti-Spam ACP
  
 


Theme by Dustin Baccetti
Powered by phpBB © 2001, 2002 phpBB Group

Copyright © MQSeries.net. All rights reserved.