Application WSDK - Practice Web Services X.509 certificate signature (order)

zhaozj2021-02-17 70

Apply WSDK - Practice Web Services X.509 certificate signature

Mood

2002-12-18

Article Type: Overview

Difficult level: 2/9

Version: 1.18

Ok, I think this is a beautiful moment, at least for many ordinary, dependence, trendy and very cool Microsoft developers, WSE 1.0 (Web Services Enhancements 1.0 for Microsoft. Net) is definitely an economy. Selection and expectations of liberation. WSE1.0 will quickly occupy all low-end and medium-high Web Services development and application markets, which is very economical and low and very "strong", and even unable to attract any Web Services developers. No wonder DON BOX a month ago, the second phase of the Web Services has ended, and the writing and debate in the future. The debates are no longer important, and the market needs the weight and killer "Web Services Server". Very good, the entire WSE sweeps Web Services all the key points related to the Message level, no matter how tenacious opponents in this field, there is no doubt that there is a big step behind, the whole 2002 Microsoft All products are not the problem of technology, market and .NET strategy, but too fast, speed is too fast; no matter how much IT layoffs this year, there is no microsoft user to fall, "they are obvious and easy to slow down." Go forward. "

WSE The earliest version is GXA-> WSDK-> WSE, please also forgive me for not using the latest WSE as the title of the article, although we are already using it. I am willing to discuss our journey here, my first "Application WSDK" is about WSDK, the second "Application WSDK" tells some of the change in naming space from WSDK to WSE, this and 9 Migrate from Framework Bate2 to Framework V1.0, but a lot of workloads. The third article "Application WSDK" began WS-Security Practice, which also emphasized the issue of debugging tools, which was published in that article, WSE1.0.

This article we will practice WS-Security in Web Services For the issue of X.509 certificate signature, there will be one or two articles will practice symmetrical encryption (Symmetric Encryption) and asymmetric encryption (asymmetric environment). After you practice these five articles, you will find that it is actually covered with the most basic functionality and programming methods of WSE, which also covers all examples of QuickStart in WSE1.0 (I prefer these examples and practices. ). After that, I also modified the title of the article, migrated to the new WSE "title", the subsequent journey may be about the application of some advanced or WSE1.0 basic functions ContentBaseRouting (the advanced application above the second article), Custom BinarySecurityToken (Advanced Applications above the Third Four), CustomFilter, and Pipeline customization (some applications of WSE kernels or principle levels). The entire process is actually a process of learning and understanding WS-Routing (WS-Referral), WS-Security, WS-ATTACHMENTS (DIME), etc., so it will be very wonderful and interesting.

Of course, WSE is also disadvantaged. The longer you have exposed it, you will find it significant "A Filter-Centric Model", you may have written your Services with WSE, then you may also need to use WSE or compatible tools. Generate your client, shallower, you need to be able to have enough control over Server and Client, because IBM or BEA's Web Services tools may not be fully compatible or know WSE's description (of course you said this is not good , Do not meet the Web Services in your previous impression, yes, you want to be very neutral and correct). As another example, Tim Ewald also said, "The WSE implementation of WS-Security gives you direct control over when and how a message is authenticated, but you have to write some code to map username to passwords or interpret the meaning of particular digital certificates "I or your boss will teach us: From" long time "and" short time "to plan or do something or a business, WSE I think, I need you from more angles and vision. Look at it, short-term it is very very good technology and foundation, it can truly let Web Services do some ambitious and real things; but from the long run, it is not the ultimate, it is not the ultimate reflection of Microsoft GXA strategy It changes, develops, and grows (even for IBM, these WEB SERVICES to compromise or mix), but this step in it is very necessary, elegant and meaningful. "From my perspective, the flexibility of WSE is a huge asset. It provides plumbing to handle the grungy details of building messages with advanced protocol headers without forcing you to adopt a particular programming model. The means you can use WSE to solve a very wide Range of Problems without Having to stay Inside a Particular Set of Architectural Boundaries. "(Tim Ewald / December 2002)

Also allow me to change the way, I don't introduce a very detailed steps and processes as this practice, because all the ways are similar, and different details need to be paying attention, then I will be in the following article. Description of the next one. Because this whole process is a process of understanding and practical, action is the biggest obstacle.

1. About related articles.

This is the greatest reason I am willing to practice, because I found that the relevant document is quite small, all the articles can be possible, and Chinese documents I hope you will want to see the latest J

You must see:

Programming with Web Services Enhancements 1.0

WS-Security Authentication and Digital Signatures with Web Services Enhancements

Inside the Web Services Enhancements Pipeline

Can refer to and found

Compare Web Service Security METRICS

Use x.509 certificates with the WSDK Technical PreviewDig Into WS-Security with the WSDK Technical Preview

Test-Drive Microsoft's New Web Services Development Kit

Web Services Development Kit Technology Preview (MS)

/ WSDK Web Service Development Kit Dev Article

Regardless of these documents, it may be helpful, but they may be on this topic as much resource as possible. Three articles about WSE only have to look at it. My application WSDK articles are compatible from the second article and WSE.

Debugging and practicing WSDK in the WSE environment is painful and depressed, I think the biggest challenge here is that you need to be familiar with the programming model of WSE, because WSDK-> WSE does not change.

2. About installation.

This is mainly about the installation of WSDK. According to my experience, there are many Maches that have been installed by WSDK, and there will be some small problems when installing WSE, and sometimes WSE can't completely delete the issue of WSDK in the original GAC, and generate errors when installing WSE.

If you have installed the version before WSDK or WSE1.0, you should do the following command before installation:

Gacutil / u Microsoft.Web.Services (or Microsoft.wsdk)

NGEN / DELETE Microsoft.Web.Service (or Microsoft.wsdk)

In addition, there are questions about the X.509 certificate.

Whether you should refer to the description of the Readme.htm and Managing Applications Created with the Web Services Enhancements-> Managing X.509 Certificate section in WSE documentation, set your Certificate environment.

If you don't have CERTIFICATES SERVER or you can't get a CA certificate, you can use Makecert.exe in the .NET Framework or you can use a certificate that can be used. This article is also used by Makecert.exe certificates.

If you decide to use Makecert.exe, make sure your .NET Framework must be the latest version, that is, at least 1.1, whether the certificate generated by the old tool is uncomfortable.

The environment I passed was Windowns .NET Server 2003 RC1 3663, VS.NET 7.1.2215 (EVERETT BATE 1). Microsoft.Net Framework 1.1.4322

If you also use Windows.Net Server 2003, then you need to ensure that ASP.NET is also running on Framework 1.1. And it is clear that the APNET_WP is now running under the Network Services user instead of the previous system.

3. About new tools and environments.

Here you need to talk about Web Services Enhancements 1.0 Settings in WSE Team, which is used within WSE Team. It is used as a PLUG-IN tool for VS.NET, without any technical support, perhaps in the future and in Everett It mainly helps you complete the more cumbersome configuration file (web.config) manual settings, because when using WSDK, the mysterious publickeyToken value makes me confused and I don't know from there, now very well, if you use VS .NET it is well integrated inside, almost all automatic. Of course, I don't know if the Chinese version of VS.NET is the same. But I want to use it. The important thing is that this tool is almost no help to your program, which reduces the mechanical labor that you have pasted / copied. Do not install this software with vs.net still develop WSE applications. But I am hard to imagine that I don't use VS.NET to use WSE, of course, but I really do some people do. Of course, there is an unconfirmed statement, I have mentioned in the second one. After installing WSE1.0, VS.NET will automatically generate two agents when adding Microsoft.Web.Services.dll's web service. The class is inherited from the original System.Web.Services.Protocols.SoAphttpClientProtocol, which inherits from Microsoft.Web.Services.WebServicesClientProtocol and automatically adds the "WSE" to the original agent class after the proxy class name. This will be very convenient, and I have been manually WSDL.EXE to generate a proxy class, and then manually replace. The legend is that there is a function after installing WSE1.0; another says that there is a function after installed WSE setting, as for that kind of I don't know J

My suggestion is: In your project, you first use this tool to set the relevant parameters, because there are time if you have multiple Project, especially when there is WinForm's Project, the WSE SETTING menu may not suddenly Appeared. This way, you almost restarted manually. Of course it may be my own reasons, because I didn't close vs.netj when I installed WSE setting.

In any case, please use this tool from WSE Install Directory / Unsupported / WSESETTINGS / README.HTM.

There seems to be a lot, really haven't started yet, let's talk about it next time. Finally, there are entire related files. You can Download.

9cbs

New Post(0)