Re: JMeter and ease signing

Oliver Erlewein Mon, 30 May 2016 14:27:04 -0700

Oh and the header should look like this:

<soapenv:Envelope
    xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/"; xmlns:v2="htt
<http://customs.govt.nz/jbms/msggate/dochdr/v2>://v2
<http://customs.govt.nz/jbms/msggate/dochdr/v2>">
    <soapenv:Header>
        <wsse:Security
            xmlns:wsse="http://docs.oasis-open.org/
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd>
wss
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd>
/2004/01/oasis-200401-
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd>
wss
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd>
-
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd>
wssecurity
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd>
-
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd>
secext
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd>
-1.0.
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd>
xsd
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd>
"
            xmlns:wsu="http://docs.oasis-open.org/
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
wss
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
/2004/01/oasis-200401-
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
wss
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
-
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
wssecurity
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
-utility-1.0.
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
xsd
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
">
            <ds:Signature Id="SIG-33"
                xmlns:ds="http://www.w3.org/2000/09/
<http://www.w3.org/2000/09/xmldsig#>xmldsig
<http://www.w3.org/2000/09/xmldsig#># <http://www.w3.org/2000/09/xmldsig#>">
                <ds:SignedInfo>
                    <ds:CanonicalizationMethod Algorithm="
http://www.w3.org/2001/10/ <http://www.w3.org/2001/10/xml-exc-c14n#>xml
<http://www.w3.org/2001/10/xml-exc-c14n#>-
<http://www.w3.org/2001/10/xml-exc-c14n#>exc
<http://www.w3.org/2001/10/xml-exc-c14n#>-c14n#
<http://www.w3.org/2001/10/xml-exc-c14n#>">
                        <ec:InclusiveNamespaces PrefixList="soapenv v2"
                            xmlns:ec="http://www.w3.org/2001/10/
<http://www.w3.org/2001/10/xml-exc-c14n#>xml
<http://www.w3.org/2001/10/xml-exc-c14n#>-
<http://www.w3.org/2001/10/xml-exc-c14n#>exc
<http://www.w3.org/2001/10/xml-exc-c14n#>-c14n#
<http://www.w3.org/2001/10/xml-exc-c14n#>"/>
                        </ds:CanonicalizationMethod>
                        <ds:SignatureMethod Algorithm="
http://www.w3.org/2001/04/
<http://www.w3.org/2001/04/xmldsig-more#rsa-sha256>xmldsig
<http://www.w3.org/2001/04/xmldsig-more#rsa-sha256>-more#
<http://www.w3.org/2001/04/xmldsig-more#rsa-sha256>rsa
<http://www.w3.org/2001/04/xmldsig-more#rsa-sha256>-sha256
<http://www.w3.org/2001/04/xmldsig-more#rsa-sha256>"/>
                        <ds:Reference URI="#id-5">
                            <ds:Transforms>
                                <ds:Transform Algorithm="
http://www.w3.org/2001/10/ <http://www.w3.org/2001/10/xml-exc-c14n#>xml
<http://www.w3.org/2001/10/xml-exc-c14n#>-
<http://www.w3.org/2001/10/xml-exc-c14n#>exc
<http://www.w3.org/2001/10/xml-exc-c14n#>-c14n#
<http://www.w3.org/2001/10/xml-exc-c14n#>">
                                    <ec:InclusiveNamespaces PrefixList="v2"
                                        xmlns:ec="http://www.w3.org/2001/10/
<http://www.w3.org/2001/10/xml-exc-c14n#>xml
<http://www.w3.org/2001/10/xml-exc-c14n#>-
<http://www.w3.org/2001/10/xml-exc-c14n#>exc
<http://www.w3.org/2001/10/xml-exc-c14n#>-c14n#
<http://www.w3.org/2001/10/xml-exc-c14n#>"/>
                                    </ds:Transform>
                                </ds:Transforms>
                                <ds:DigestMethod Algorithm="
http://www.w3.org/2001/04/ <http://www.w3.org/2001/04/xmlenc#sha256>xmlenc
<http://www.w3.org/2001/04/xmlenc#sha256>#sha256
<http://www.w3.org/2001/04/xmlenc#sha256>"/>


<ds:DigestValue>xXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxX</ds:DigestValue>


                            </ds:Reference>
                        </ds:SignedInfo>

<ds:SignatureValue>xXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxX</ds:SignatureValue>
                        <ds:KeyInfo
Id="KI-xXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxX">
                            <wsse:SecurityTokenReference
wsu:Id="STR-xXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxX">
                                <wsse:KeyIdentifier EncodingType="
http://docs.oasis-open.org/
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary>
wss
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary>
/2004/01/oasis-200401-
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary>
wss
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary>
-soap-message-security-1.0#Base64Binary
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary>"
ValueType="http://docs.oasis-open.org/
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3>
wss
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3>
/2004/01/oasis-200401-
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3>
wss
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3>
-x509-token-profile-1.0#X509v3
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3>
">xXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxX</wsse:KeyIdentifier>
                            </wsse:SecurityTokenReference>
                        </ds:KeyInfo>
                    </ds:Signature>
                </wsse:Security>
            </soapenv:Header>
            <soapenv:Body wsu:Id="id-5"
                xmlns:wsu="http://docs.oasis-open.org/
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
wss
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
/2004/01/oasis-200401-
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
wss
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
-
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
wssecurity
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
-utility-1.0.
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
xsd
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
">
                                                <soapenv:Body
wsu:Id="id-5"  xmlns:wsu="http://docs.oasis-open.org/
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
wss
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
/2004/01/oasis-200401-
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
wss
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
-
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
wssecurity
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
-utility-1.0.
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
xsd
<http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd>
">
...
On 31/05/2016 08:36, "Oliver Erlewein" <[email protected]> wrote:

Hi,

I hope someone can help me here. I've been searching for days but getting
nowhere. I need to add to a XML message a WSSE header with signature (not
authentication!). Thing is I can't find anything on how to do that.
Dimitri's post on BlazeMeter goes in that direction but is a different type
of signature.

Thanks!
Oliver

Re: JMeter and ease signing

Reply via email to