Re: Ws-Addressing - WSE and vanilla Web Service Proxies
- From: Steven L <StevenL@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 12 Jul 2006 02:43:02 -0700
Hi William - that article is a good pointer, but looks primarily at routing
WSE 2.0 clients over a WSE 2.0 routing architecture.
I know the WSE client adds headers - it is the wsa Headers that need to be
set by clients - that is the core point of what i need to know. I need to
know what these are as other clients (non-WSE) will NEED to set them. I
understand the architecure needs them, but that doesn't help me in knowing
what to set.
Once the correct headers are sent to the WSE routing service i wouldn't have
to DO anything else (this is WSE framework stuff now) as it works with WSE
proxy generated clients *without doing anything else*.
I will parse the article to see if it has some details on what headers need
to be set, but i'd love to see a real world article where all lof your
clients aren't all under your control (which I suspect is the majority of the
planet!).
Thanks for the article pointer though - if you have any other related
articles in your favourites, please let me know.
regards,
steven
http://stevenR2.com
"Softwaremaker" wrote:
Pardon me if I am wrong in understanding the requirements..
Like what Pablo had said, the proxies inherits differently from vanilla
asp.net web services and those proxies injects headers into the messages
transparent to you. It seems like the Routing service (hop-2-hop endpoint
scenario) is expecting a s:Message with s:Headers (wsa Headers to be
specific. For example, it needs to know where the s:FinalDestination is).
Ultimately, the s:Intermediary SHOULD remove all processed headers before
forwarding it to the next node so the s:FinalDestination has no part to play
here.
In other words, you are trying to make use of a routing architecture (which
is what SOAP is all about actually ... that POX/REST cannot do well) without
the required headers. You may need to introduce any layer of
abstraction/indirection to make this work. You would have to inject those
wsa goo into your s:Message one way or another for the Router to know what
you intend to do. In other words, you may need to write your own wsa headers
to the s:Message before it touches the wire. SOAP Extensions should be able
to do that. It would be a lot of work for you if need to sign them as well
;)
http://msdn.microsoft.com/webservices/default.aspx?pull=/library/en-us/dnwse/html/securesoapnode.asp
hth.
--
Thank you.
Regards,
William Tay
http://www.softwaremaker.net/blog
=========================================
"Steven L" <StevenL@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:9F43B081-2777-4434-AA22-A750428C677B@xxxxxxxxxxxxxxxx
Hi William - either you are or I am :)proxy.
I do have a single end point - the problem is that I get a "Message
Information
Header Required" when i call the routing service from a non-WSE client
end
All i want to know is how to get round this. Are you saying i need to do
something on the server rather that set one or two headers on the client?
You mention secure/insecure - why is that? I simply have a routing service
and haven't moved to attch any security to it - a very basic web service
point which i am simply accessing from clients via an intermediate WSEsingle
routing configuration.
I actually implemented exactly as stated in the WSE patterns book ... but
unfortunately they didn't details how to actually *use* WS-Addressing for
non-WSE clients.
steven
http://stevenR2.com
"Softwaremaker" wrote:
Why not let your routing service (I assume it probably implements a
checkrouting interface: ProcessMessage(m) and has a routing table as well)
thethe contents (Content-based) for the necessary s:headers and route it to
differentendpoint that can process it ?
In other words, you will have the same service (sort of) using 2
deploys.endpoints (one with security, one without) and they both can handle the
specific implementations that are required. You may want to deploy the
non-secured ones internally and the secured ones facing the cloud, for
example. This is akin to the address/bindings/contracts model WCF
endpoint
It is difficult and I dont see the point of having a single service
placebeing able to handle secured and unsecured messages. Seems like an
afterthought to me. What is the motivation of securing it in the first
proxies.?
Am I missing something ?
--
Thank you.
Regards,
William Tay
http://www.softwaremaker.net/blog
=========================================
"Steven L" <StevenL@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:724973C8-600D-4FD2-AD76-0FF5F814645B@xxxxxxxxxxxxxxxx
Gracias Pablo.
The pipeline process is something i'm reasoable familiar with - didn't
realise there was such a significant difference in the generated
use
Here is crux of my problem - i need to allow a normal .Net service to
notthe routing services i am creating - that is *essential* and some may
byuse
WSE.
Got any pointers on making this work?
saludos,
steven.
http://stevenR2.com
"Pablo Cibraro" wrote:
Hi Steven,
The proxies created by WSE are completely different to those created
where..NET.
The WSE proxies intercept the SOAP messages and execute a pipeline
versionthe
message is transformed to a different version (The new message
tracingconfiguration,contains WS-Addressing and WS-Security headers).
The WS-Addressing headers are always added in that pipeline, but the
WS-Security headers are not (that depend on some WSE specific
pipelinethe WSE policies).
The same happens on the server side, if you configure WSE, a WSE
differentwill run before calling to your service (This pipeline performs
headers).security validations and removes the WS-Addressing and WS-Security
The best way to know what headers are required is to enable WSE
weand
see the different messages between the client and the service.
Regards,
Pablo Cibraro
http://weblogs.asp.net/cibrax
[MVP - Connected Systems Developer]
"Steven L" <Steven L@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:CEC76416-7CEC-464F-950C-A502B33EF494@xxxxxxxxxxxxxxxx
I have a hub performing some internal routing for a set of services
servicehave,
using the WS-Addressing support in WSE 3.0.
When a vanilla .Net generated proxy client tries to call the
proxyyou
Informationget:
"Microsoft.Web.Services3.Addressing.AddressingFault: Message
Header Required"
When a WSE generated proxy client does the same it works fine.
Can someone explain or point me at the different in the client
iconfigurations between these.
I will have some vanilla .Net clients and some Java clients and so
client soneed
to
tell them exactly what (Soap Headers?) to set on their proxy
thesethey
can successfully call the routing service - i don't need to set
when
thiscalling the service directly, so any detail on exactly what causes
requirement by the WSE would be greatly appreciated!
Regards,
Steven
http://stevenR2.com
- Follow-Ups:
- Re: Ws-Addressing - WSE and vanilla Web Service Proxies
- From: Softwaremaker
- Re: Ws-Addressing - WSE and vanilla Web Service Proxies
- References:
- Re: Ws-Addressing - WSE and vanilla Web Service Proxies
- From: Pablo Cibraro
- Re: Ws-Addressing - WSE and vanilla Web Service Proxies
- From: Steven L
- Re: Ws-Addressing - WSE and vanilla Web Service Proxies
- From: Softwaremaker
- Re: Ws-Addressing - WSE and vanilla Web Service Proxies
- From: Steven L
- Re: Ws-Addressing - WSE and vanilla Web Service Proxies
- From: Softwaremaker
- Re: Ws-Addressing - WSE and vanilla Web Service Proxies
- Prev by Date: Re: Ws-Addressing - WSE and vanilla Web Service Proxies
- Next by Date: Re: WSE2005: Protection requirements in MutualCertificate11Asserti
- Previous by thread: Re: Ws-Addressing - WSE and vanilla Web Service Proxies
- Next by thread: Re: Ws-Addressing - WSE and vanilla Web Service Proxies
- Index(es):
Relevant Pages
|
Loading
