时间戳

首页 > 解决方案 > 在 Groovy 中创建 WS-security 标头

web-services - 在 Groovy 中创建 WS-security 标头

问题描述

我必须使用 Groovy 在 SOAP 标头中创建 UsernameToken 部分,但我找不到如何去做。我查看了 WSLite,但我如何理解这个库不能与 WSS 标头一起使用。我需要这样的东西

<wsse:UsernameToken wsu:Id="UsernameToken-1">
            <wsse:Username>testuser</wsse:Username>
            <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">******</wsse:Password>
            <wsse:Nonce EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary">/KRqhWHKnB66WVTgZ4GBVg==</wsse:Nonce>
            <wsu:Created>2019-02-25T12:50:36.307Z</wsu:Created>
        </wsse:UsernameToken>
    </wsse:Security>
</soapenv:Header>

标签: web-servicessoapgroovy

解决方案

我决定使用 spring ws 模板

compile "org.springframework.ws:spring-ws-security"

它帮助了我

def WebServiceTemplate createWsTemplate(String url, String login, String password) {

Wss4jSecurityInterceptor wss4jSecurityInterceptor = new Wss4jSecurityInterceptor()
wss4jSecurityInterceptor.setSecurementActions(WSHandlerConstants.USERNAME_TOKEN)
wss4jSecurityInterceptor.setSecurementUsername(login)
wss4jSecurityInterceptor.setSecurementPassword(password)
wss4jSecurityInterceptor.setSecurementPasswordType("PasswordText")
wss4jSecurityInterceptor.setSecurementUsernameTokenCreated(true)
wss4jSecurityInterceptor.setSecurementUsernameTokenNonce(true)

SaajSoapMessageFactory msgFactory = new SaajSoapMessageFactory(MessageFactory.newInstance())
msgFactory.afterPropertiesSet()
WebServiceTemplate wsTemplate = new WebServiceTemplate(msgFactory)
wsTemplate.setInterceptors(wss4jSecurityInterceptor)
wsTemplate.setDefaultUri(url)
wsTemplate.afterPropertiesSet()
wsTemplate.setMessageSender(sender)

return wsTemplate }

推荐阅读