Hi Greg
I need to generate this request SOAP from IBM Webaphere side. could you provide me the corresponding xml policy file please.
I am not faimiliar with webaphere config for signing the message header through X.509.
Here is the SOAP request, I need to generate from the IBM WS.
<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/03/addressing" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
<soap:Header>
<wsa:Action wsu:Id="Id-198a842d-d1a1-472e-a9a0-a25730a65e3c">urn:CI.User/GetUn</wsa:Action>
<wsa:MessageID wsu:Id="Id-b689ece6-3727-4b85-80f6-177e27372e67">uuid:3500151c-648a-4f97-9b0b-9b4b4972c0da</wsa:MessageID>
<wsa:ReplyTo wsu:Id="Id-52ccfb1e-f6a5-4cf0-a454-ad2a18415122">
<wsa:Address>http://schemas.xmlsoap.org/ws/2004/03/addressing/role/anonymous</wsa:Address>
</wsa:ReplyTo>
<wsa:To wsu:Id="Id-06f0a41d-c535-486c-9fd3-e3644f93f8c7">http://eitist30:8080/cmuserx509/User.ASMX</wsa:To>
<wsse:Security soap:mustUnderstand="1">
<wsu:Timestamp wsu:Id="Timestamp-384ac132-e640-46a1-96b1-d05b3d98306e">
<wsu:Created>2009-07-09T20:06:21Z</wsu:Created>
<wsu:Expires>2009-07-09T20:11:21Z</wsu:Expires>
</wsu:Timestamp>
<wsse:BinarySecurityToken ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="SecurityToken-44e430c1-5a4b-4684-a4ce-741a1122e02f">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</wsse:BinarySecurityToken>
<Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
<SignedInfo>
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" />
<SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" /> <Reference URI="#Id-198a842d-d1a1-472e-a9a0-a25730a65e3c">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<DigestValue>d8Un4nZhPYD6N8DrtbzquO6QEug=</DigestValue>
</Reference>
<Reference URI="#Id-b689ece6-3727-4b85-80f6-177e27372e67">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<DigestValue>tKKL9YerfJVP0YPek52OBQhQSCc=</DigestValue>
</Reference>
<Reference URI="#Id-52ccfb1e-f6a5-4cf0-a454-ad2a18415122">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<DigestValue>/JdGcTMjb9h7S7qk/4/4EMlMpOo=</DigestValue>
</Reference>
<Reference URI="#Id-06f0a41d-c535-486c-9fd3-e3644f93f8c7">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<DigestValue>aOMcSt8YrdEbNveSxgUMQCHJcF0=</DigestValue>
</Reference>
<Reference URI="#Timestamp-384ac132-e640-46a1-96b1-d05b3d98306e">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<DigestValue>4cyLoFUHiOQ4+GIgxfOq2up6In0=</DigestValue>
</Reference>
<Reference URI="#Id-2987f19e-ecfa-4fd7-99a7-df4527c1609b">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<DigestValue>WTx79oSw+9Ibd4zZ+nNOuvRQsVI=</DigestValue>
</Reference>
</SignedInfo>
<SignatureValue>lEizyLtuXc64UfHCxifssQiMysQPO3lVbZt8EFaup7LhUMpTijWnnjKheFQv/MEHW2pA4DrBUAEpqWwD8tCdetdhWZECHQbjUtW0SOgaGTsCiM3GzJLDBjrwSkvRHDTMJn8Jypn1rro5A3PKT03PPOYV8zAWDcAF+AozTsnIYDk=</SignatureValue>
<KeyInfo>
<wsse:SecurityTokenReference>
<wsse:Reference URI="#SecurityToken-44e430c1-5a4b-4684-a4ce-741a1122e02f" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" />
</wsse:SecurityTokenReference>
</KeyInfo>
</Signature>
</wsse:Security>
</soap:Header>
<soap:Body wsu:Id="Id-2987f19e-ecfa-4fd7-99a7-df4527c1609b">
<GetUn xmlns="urn:CI.User">
<Id>jkkk</SoeId>
<Dn>dc=poc</Dn>
</GetUn>
</soap:Body>
</soap:Envelope>
index > .NET StockTrader Sample Application > Need Web sphere config file for connecting to .net web service with message level security signing only.