cxf-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "mw4forums@gmail.com" <mw4for...@gmail.com>
Subject Re: ws security "server"
Date Tue, 05 Jun 2012 20:16:50 GMT
I have been able to resolve the mtom policy issue by making the mtom policy
optional as I want to allow users of my endpoint to have the option of
sending binaries inlined or attached. My updated wsdl is below. The rest of
my policies however are not optional, I need them all to be verified. My
messages generated from my CXF client looks as follows:

Inbound Message
----------------------------
ID: 3
Address:
https://localhost:8181/Gateway/DocumentSubmission/2_0/DocumentRepositoryXDR_Service
Encoding: UTF-8
Http-Method: POST
Content-Type: application/soap+xml;
action="urn:ihe:iti:2007:ProvideAndRegisterDocumentSet-b"; charset=UTF-8
Headers: {Accept=[*/*], cache-control=[no-cache], connection=[keep-alive],
content-type=[application/soap+xml;
action="urn:ihe:iti:2007:ProvideAndRegisterDocumentSet-b"; charset=UTF-8],
host=[localhost:8181], pragma=[no-cache], transfer-encoding=[chunked],
user-agent=[Apache CXF 2.6.0]}
Payload:
<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
   <soap:Header>
      <wsse:Security soap:mustUnderstand="true"
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
         <saml2:Assertion ID="_486F83E6BAF03DC2C413389261285591"
IssueInstant="2012-06-05T19:55:28.559Z" Version="2.0"
xsi:type="saml2:AssertionType"
xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <saml2:Issuer>default issuer name</saml2:Issuer>
            <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
               <ds:SignedInfo>
                  <ds:CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                  <ds:SignatureMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
                  <ds:Reference URI="#_486F83E6BAF03DC2C413389261285591">
                     <ds:Transforms>
                        <ds:Transform
Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                        <ds:Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                     </ds:Transforms>
                     <ds:DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
                    
<ds:DigestValue>ZjJOadJPk67WVegxOATNR7D/aUU=</ds:DigestValue>
                  </ds:Reference>
               </ds:SignedInfo>
              
<ds:SignatureValue>E/W+pmQLic2m3P6spcfRgALOjgYBJ9WNGBtn3tQJj0S/+U1cIyn4WN6m/RaK/e7HNjf4A0s9qNTb6lefyhRAQQUWqxEHFABC4+fFGBbIbA5seYenJ06TT5wrQx14/AAC67RkHvbo6C5exkkcT3tzdhsw4bC7MeaCAx9JUZiW1u8=</ds:SignatureValue>
               <ds:KeyInfo>
                  <ds:KeyValue>
                     <ds:RSAKeyValue>
                       
<ds:Modulus>odSYTsYG7aMIeuIH6JpxXzd+L4fTNfbXVYLY32/zVzX3fH5Oej5tpdjSE8wcD8C/4fUHHgr5s2tt
ITIeaoHJhzh70h08A1IFa2kHIGnGCCkw6oIwrIaATqqK9aslsVrjN3J39dCLYY7iabmPX6Ycr9qt
wi1KjL0Z3d7LQ89c3nk=</ds:Modulus>
                        <ds:Exponent>AQAB</ds:Exponent>
                     </ds:RSAKeyValue>
                  </ds:KeyValue>
               </ds:KeyInfo>
            </ds:Signature>
            <saml2:Subject>
               <saml2:NameID
Format="urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName">CN=Default
SAML User,OU=SU,O=SAML Org,L=Fairfax,ST=VA,C=US</saml2:NameID>
               <saml2:SubjectConfirmation
Method="urn:oasis:names:tc:SAML:2.0:cm:holder-of-key">
                  <saml2:SubjectConfirmationData
xsi:type="saml2:KeyInfoConfirmationDataType">
                     <ds:KeyInfo
xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
                        <ds:KeyValue>
                           <ds:RSAKeyValue>
                             
<ds:Modulus>odSYTsYG7aMIeuIH6JpxXzd+L4fTNfbXVYLY32/zVzX3fH5Oej5tpdjSE8wcD8C/4fUHHgr5s2tt
ITIeaoHJhzh70h08A1IFa2kHIGnGCCkw6oIwrIaATqqK9aslsVrjN3J39dCLYY7iabmPX6Ycr9qt
wi1KjL0Z3d7LQ89c3nk=</ds:Modulus>
                              <ds:Exponent>AQAB</ds:Exponent>
                           </ds:RSAKeyValue>
                        </ds:KeyValue>
                     </ds:KeyInfo>
                  </saml2:SubjectConfirmationData>
               </saml2:SubjectConfirmation>
            </saml2:Subject>
            <saml2:Conditions NotBefore="2012-06-05T19:55:28.981Z"
NotOnOrAfter="2012-06-05T20:55:28.981Z"/>
         </saml2:Assertion>
         <ds:Signature Id="SIG-2"
xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
            <ds:SignedInfo>
               <ds:CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                  <ec:InclusiveNamespaces PrefixList="soap"
xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/>
               </ds:CanonicalizationMethod>
               <ds:SignatureMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
               <ds:Reference URI="#TS-1">
                  <ds:Transforms>
                     <ds:Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                        <ec:InclusiveNamespaces PrefixList="wsse soap"
xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                     </ds:Transform>
                  </ds:Transforms>
                  <ds:DigestMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
                 
<ds:DigestValue>Ei4OomHABAe1fpvcsv/cQ/NEgqE=</ds:DigestValue>
               </ds:Reference>
            </ds:SignedInfo>
           
<ds:SignatureValue>PHGxwjqUBcqarqcruOsgqVe01/iDrfZGOctJiDDIm8Qqih1VCkDPoOthycfdl1914BeeCnRfb3xkzr6qr9V/OF3A0XnxH2DThbjwgi9Wfgvk5Q/wl/cHUJENdQPonv5LO9MQ/lk3KPdzPR1aLQP/FIO6ipv6X4ojm5JlITQPYPE=</ds:SignatureValue>
            <ds:KeyInfo Id="KeyId-486F83E6BAF03DC2C413389261291532">
               <wsse:SecurityTokenReference
wsse11:TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0"
wsu:Id="STRId-486F83E6BAF03DC2C413389261291533"
xmlns:wsse11="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd">
                  <wsse:KeyIdentifier
ValueType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLID">_486F83E6BAF03DC2C413389261285591</wsse:KeyIdentifier>
               </wsse:SecurityTokenReference>
            </ds:KeyInfo>
         </ds:Signature>
         <wsu:Timestamp wsu:Id="TS-1">
            <wsu:Created>2012-06-05T19:55:26.278Z</wsu:Created>
            <wsu:Expires>2012-06-05T20:55:26.278Z</wsu:Expires>
         </wsu:Timestamp>
      </wsse:Security>
   </soap:Header>
   <soap:Body>
      <ProvideAndRegisterDocumentSetRequest xmlns="urn:ihe:iti:xds-b:2007"
xmlns:ns2="urn:oasis:names:tc:ebxml-regrep:xsd:rim:3.0"
xmlns:ns3="urn:oasis:names:tc:ebxml-regrep:xsd:rs:3.0"
xmlns:ns4="urn:oasis:names:tc:ebxml-regrep:xsd:query:3.0"
xmlns:ns5="urn:oasis:names:tc:ebxml-regrep:xsd:lcm:3.0"
xmlns:ns6="urn:gov:hhs:fha:nhinc:gateway:samltokendata">
         <ns5:SubmitObjectsRequest comment="comme" id="123">
            <ns2:RegistryObjectList>
               <ns2:ExtrinsicObject id="Document01" mimeType="text/xml"
objectType="urn:uuid:7edca82f-054d-47f2-a032-9b2a5b5186c1">
                  <ns2:Slot name="creationTime">
                     <ns2:ValueList>
                        <ns2:Value>20051224</ns2:Value>
                     </ns2:ValueList>
                  </ns2:Slot>
                  <ns2:Slot name="languageCode">
                     <ns2:ValueList>
                        <ns2:Value>en-us</ns2:Value>
                     </ns2:ValueList>
                  </ns2:Slot>
                  <ns2:Slot name="serviceStartTime">
                     <ns2:ValueList>
                        <ns2:Value>200412230800</ns2:Value>
                     </ns2:ValueList>
                  </ns2:Slot>
                  <ns2:Slot name="serviceStopTime">
                     <ns2:ValueList>
                        <ns2:Value>200412230801</ns2:Value>
                     </ns2:ValueList>
                  </ns2:Slot>
                  <ns2:Slot name="sourcePatientId">
                     <ns2:ValueList>
                       
<ns2:Value>ST-1000^^^&amp;1.3.6.1.4.1.21367.2003.3.9&amp;ISO</ns2:Value>
                     </ns2:ValueList>
                  </ns2:Slot>
                  <ns2:Slot name="sourcePatientInfo">
                     <ns2:ValueList>
                       
<ns2:Value>PID-3|ST-1000^^^&amp;1.3.6.1.4.1.21367.2003.3.9&amp;ISO</ns2:Value>
                        <ns2:Value>PID-5|Doe^John^^^</ns2:Value>
                        <ns2:Value>PID-7|19560527</ns2:Value>
                        <ns2:Value>PID-8|M</ns2:Value>
                        <ns2:Value>PID-11|100 Main
St^^Metropolis^Il^44130^USA</ns2:Value>
                     </ns2:ValueList>
                  </ns2:Slot>
                  <ns2:Name>
                     <ns2:LocalizedString value="Physical"/>
                  </ns2:Name>
                  <ns2:Description/>
                  <ns2:Classification
classificationScheme="urn:uuid:93606bcf-9494-43ec-9b4e-a7748d1a838d"
classifiedObject="Document01" id="cl01">
                     <ns2:Slot name="authorPerson">
                        <ns2:ValueList>
                           <ns2:Value>Gerald Smitty</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                     <ns2:Slot name="authorInstitution">
                        <ns2:ValueList>
                           <ns2:Value>Cleveland Clinic</ns2:Value>
                           <ns2:Value>Parma Community</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                     <ns2:Slot name="authorRole">
                        <ns2:ValueList>
                           <ns2:Value>Attending</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                     <ns2:Slot name="authorSpecialty">
                        <ns2:ValueList>
                           <ns2:Value>Orthopedic</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                  </ns2:Classification>
                  <ns2:Classification
classificationScheme="urn:uuid:41a5887f-8865-4c09-adf7-e362475b143a"
classifiedObject="Document01" id="cl02" nodeRepresentation="History and
Physical">
                     <ns2:Slot name="codingScheme">
                        <ns2:ValueList>
                           <ns2:Value>Connect-a-thon classCodes</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                     <ns2:Name>
                        <ns2:LocalizedString value="History and Physical"/>
                     </ns2:Name>
                  </ns2:Classification>
                  <ns2:Classification
classificationScheme="urn:uuid:f4f85eac-e6cb-4883-b524-f2705394840f"
classifiedObject="Document01" id="cl03"
nodeRepresentation="1.3.6.1.4.1.21367.2006.7.101">
                     <ns2:Slot name="codingScheme">
                        <ns2:ValueList>
                           <ns2:Value>Connect-a-thon
confidentialityCodes</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                     <ns2:Name>
                        <ns2:LocalizedString value="Clinical-Staff"/>
                     </ns2:Name>
                  </ns2:Classification>
                  <ns2:Classification
classificationScheme="urn:uuid:a09d5840-386c-46f2-b5ad-9c3699a4309d"
classifiedObject="Document01" id="cl04" nodeRepresentation="CDAR2/IHE 1.0">
                     <ns2:Slot name="codingScheme">
                        <ns2:ValueList>
                           <ns2:Value>Connect-a-thon formatCodes</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                     <ns2:Name>
                        <ns2:LocalizedString value="CDAR2/IHE 1.0"/>
                     </ns2:Name>
                  </ns2:Classification>
                  <ns2:Classification
classificationScheme="urn:uuid:f33fb8ac-18af-42cc-ae0e-ed0b0bdb91e1"
classifiedObject="Document01" id="cl05" nodeRepresentation="Outpatient">
                     <ns2:Slot name="codingScheme">
                        <ns2:ValueList>
                           <ns2:Value>Connect-a-thon
healthcareFacilityTypeCodes</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                     <ns2:Name>
                        <ns2:LocalizedString value="Outpatient"/>
                     </ns2:Name>
                  </ns2:Classification>
                  <ns2:Classification
classificationScheme="urn:uuid:cccf5598-8b07-4b77-a05e-ae952c785ead"
classifiedObject="Document01" id="cl06" nodeRepresentation="General
Medicine">
                     <ns2:Slot name="codingScheme">
                        <ns2:ValueList>
                           <ns2:Value>Connect-a-thon
practiceSettingCodes</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                     <ns2:Name>
                        <ns2:LocalizedString value="General Medicine"/>
                     </ns2:Name>
                  </ns2:Classification>
                  <ns2:Classification
classificationScheme="urn:uuid:f0306f51-975f-434e-a61c-c59651d33983"
classifiedObject="Document01" id="cl07" nodeRepresentation="34108-1">
                     <ns2:Slot name="codingScheme">
                        <ns2:ValueList>
                           <ns2:Value>LOINC</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                     <ns2:Name>
                        <ns2:LocalizedString value="Outpatient Evaluation
And Management"/>
                     </ns2:Name>
                  </ns2:Classification>
                  <ns2:ExternalIdentifier id="ei01"
identificationScheme="urn:uuid:58a6f841-87b3-4a3e-92fd-a8ffeff98427"
registryObject="Document01"
value="SELF-5^^^&amp;1.3.6.1.4.1.21367.2005.3.7&amp;ISO">
                     <ns2:Name>
                        <ns2:LocalizedString
value="XDSDocumentEntry.patientId"/>
                     </ns2:Name>
                  </ns2:ExternalIdentifier>
                  <ns2:ExternalIdentifier id="ei02"
identificationScheme="urn:uuid:2e82c1f6-a085-4c72-9da3-8640a32e42ab"
registryObject="Document01" value="1.3.6.1.4.1.21367.2005.3.9999.32">
                     <ns2:Name>
                        <ns2:LocalizedString
value="XDSDocumentEntry.uniqueId"/>
                     </ns2:Name>
                  </ns2:ExternalIdentifier>
               </ns2:ExtrinsicObject>
               <ns2:RegistryPackage id="SubmissionSet01">
                  <ns2:Slot name="submissionTime">
                     <ns2:ValueList>
                        <ns2:Value>20041225235050</ns2:Value>
                     </ns2:ValueList>
                  </ns2:Slot>
                  <ns2:Name>
                     <ns2:LocalizedString value="Physical"/>
                  </ns2:Name>
                  <ns2:Description>
                     <ns2:LocalizedString value="Annual physical"/>
                  </ns2:Description>
                  <ns2:Classification
classificationScheme="urn:uuid:a7058bb9-b4e4-4307-ba5b-e3f0ab85e12d"
classifiedObject="SubmissionSet01" id="cl08">
                     <ns2:Slot name="authorPerson">
                        <ns2:ValueList>
                           <ns2:Value>Sherry Dopplemeyer</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                     <ns2:Slot name="authorInstitution">
                        <ns2:ValueList>
                           <ns2:Value>Cleveland Clinic</ns2:Value>
                           <ns2:Value>Berea Community</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                     <ns2:Slot name="authorRole">
                        <ns2:ValueList>
                           <ns2:Value>Purn4ary Surgon</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                     <ns2:Slot name="authorSpecialty">
                        <ns2:ValueList>
                           <ns2:Value>Orthopedic</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                  </ns2:Classification>
                  <ns2:Classification
classificationScheme="urn:uuid:aa543740-bdda-424e-8c96-df4873be8500"
classifiedObject="SubmissionSet01" id="cl09" nodeRepresentation="History and
Physical">
                     <ns2:Slot name="codingScheme">
                        <ns2:ValueList>
                           <ns2:Value>Connect-a-thon
contentTypeCodes</ns2:Value>
                        </ns2:ValueList>
                     </ns2:Slot>
                     <ns2:Name>
                        <ns2:LocalizedString value="History and Physical"/>
                     </ns2:Name>
                  </ns2:Classification>
                  <ns2:ExternalIdentifier id="ei03"
identificationScheme="urn:uuid:96fdda7c-d067-4183-912e-bf5ee74998a8"
registryObject="SubmissionSet01" value="1.3.6.1.4.1.21367.2005.3.9999.33">
                     <ns2:Name>
                        <ns2:LocalizedString
value="XDSSubmissionSet.uniqueId"/>
                     </ns2:Name>
                  </ns2:ExternalIdentifier>
                  <ns2:ExternalIdentifier id="ei04"
identificationScheme="urn:uuid:554ac39e-e3fe-47fe-b233-965d2a147832"
registryObject="SubmissionSet01" value="3670984664">
                     <ns2:Name>
                        <ns2:LocalizedString
value="XDSSubmissionSet.sourceId"/>
                     </ns2:Name>
                  </ns2:ExternalIdentifier>
                  <ns2:ExternalIdentifier id="ei05"
identificationScheme="urn:uuid:6b5aea1a-874d-4603-a4bc-96a0a7b38446"
registryObject="SubmissionSet01"
value="SELF-5^^^&amp;1.3.6.1.4.1.21367.2005.3.7&amp;ISO">
                     <ns2:Name>
                        <ns2:LocalizedString
value="XDSSubmissionSet.patientId"/>
                     </ns2:Name>
                  </ns2:ExternalIdentifier>
               </ns2:RegistryPackage>
               <ns2:Classification
classificationNode="urn:uuid:a54d6aa5-d40d-43f9-88c5-b4633d873bdd"
classifiedObject="SubmissionSet01" id="cl10"/>
               <ns2:Association associationType="HasMember" id="as01"
sourceObject="SubmissionSet01" targetObject="Document01">
                  <ns2:Slot name="SubmissionSetStatus">
                     <ns2:ValueList>
                        <ns2:Value>Original</ns2:Value>
                     </ns2:ValueList>
                  </ns2:Slot>
               </ns2:Association>
            </ns2:RegistryObjectList>
         </ns5:SubmitObjectsRequest>
         <Document
id="Document01">UjBsR09EbGhjZ0dTQUxNQUFBUUNBRU1tQ1p0dU1GUXhEUzhi</Document>
      </ProvideAndRegisterDocumentSetRequest>
   </soap:Body>
</soap:Envelope>

http://cxf.547215.n5.nabble.com/file/n5709150/NhinXDR20.wsdl NhinXDR20.wsdl 

--
View this message in context: http://cxf.547215.n5.nabble.com/ws-security-server-tp5709138p5709150.html
Sent from the cxf-dev mailing list archive at Nabble.com.

Mime
View raw message