login about faq

Can someone help me understand how can I achieve the following? 1. Perform a secured mutual authentication connection with the interface server. 2. Encrypt the SOAP body for all web service requests, using the server public certificate received during mutual authentication. 3. Sign all SOAP requests using the client private certificate, before sending the request via this interface. 4. Decrypt the SOAP body for all web service responses (that are received in this interface) using the client private certificate. 5. Verify the signatures on all received web service responses using the server public certificate before decrypting the SOAP body.

So far I have the following: 1. Use Chilkat_9_5_0.Http and SetSslClientCertPfx to set the certificate for mutual TLS. 2. Use Chilkat_9_5_0.Rsa, Chilkat_9_5_0.Crypt2, Chilkat_9_5_0.PublicKey, Chilkat_9_5_0.PrivateKey to encrypt an XML file. 3. This is where I'm having issue, how do POST using the file created with AES encrypt (CkEncryptFile)

asked Mar 20 at 15:26

apaustria's gravatar image

apaustria
12

edited Mar 20 at 15:37


This link shows an example of an encrypted SOAP message. It may help you understand what the service is looking for.

http://www.ibm.com/support/knowledgecenter/SSGMCP_5.3.0/com.ibm.cics.ts.webservices.doc/wsSecurity/dfhws_soapmsg_encrypted.html

link

answered Mar 20 at 17:02

TracyP's gravatar image

TracyP
1213

Thanks for the link. Interesting stuff indeed. I didn't even think that you can inject the encrypted message inside the XML itself.

link

answered Mar 21 at 10:03

apaustria's gravatar image

apaustria
12

To follow up on this one to fully understand how to things should work: If I have a simple XML like so:

<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:tns="http://interop.manitoba-ehealth.ca/health_hub/public/LabResultService"> <soapenv:Header/> <soapenv:Body> <tns:GetResultRequest> <ClientID>TESTH1</ClientID> <NumberOfMessages>10</NumberOfMessages> <TransactionID>0123456789</TransactionID> </tns:GetResultRequest> </soapenv:Body> </soapenv:Envelope>

Do I have to re-create the XML with all the corresponding tags similar to the link you have given below: https://www.ibm.com/support/knowledgecenter/SSGMCP_5.3.0/com.ibm.cics.ts.webservices.doc/wsSecurity/dfhws_soapmsg_encrypted.html

link

answered Apr 20 at 12:04

apaustria's gravatar image

apaustria
12

If memory serves me, what is inside the <soapenv:body> tag is unique to each service you connect to. Information in the <soapenv:header> tag may be similar, not the same.

link

answered Apr 24 at 10:44

TracyP's gravatar image

TracyP
1213

Hi Tracy, you seem to have an experience doing this specifically on VFP. Anyway I can PM you some details with what I have for this issue. I'm actually looking for a dev that can write this specific piece. Let me know if you are interested.

link

answered Apr 24 at 12:44

apaustria's gravatar image

apaustria
12

Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or __italic__
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Tags:

×110
×54
×13
×8

Asked: Mar 20 at 15:26

Seen: 626 times

Last updated: Apr 24 at 12:44

powered by OSQA