1. Zuhause
  2. Frage und Antwort
  3. So signieren Sie SOAP-Nachricht in PHP

So signieren Sie SOAP-Nachricht in PHP

2016-04-21 13 views
0

Ich verwende php (yii2) und ich möchte SOAP-Kommunikation mit Server implementieren. Ich habe folgende Anleitung zu SOAP:So signieren Sie SOAP-Nachricht in PHP

The Customer’s system uses the Customer’s private key for issuing digital signatures. Both the application request (ApplicationRequest) and the SOAP message must be signed separately in the WSC. The signature is performed with the private key. The signing system must include in the signature also the certificate. This certificate contains the public key corresponding to the private key used in the signing. The receiver uses the public key to authenticate the signature.

und:

Next step: Digitally sign (detached type XML Digital Signature) the whole SOAP message with the Private Key of Sender Certificate and put the signature into SOAP-header

So habe ich eigene private.key, public.key und certificate.cer

Mein Code wie

$client = new SoapClient($wdsl, ['trace' => true]); 
    $arguments = ['DownloadFileListRequest' => $dflr]; 
    $appResponse = $client->__call('downloadFileList', $arguments);

sieht Aber ich Erhalte den erwarteten Fehler:

SOAP signature error

Was ich tun muss und wie diese SOAP zu unterschreiben?

Quelle

2016-04-21 Lari13

Antwort

0

XMLSecurityDSig half (https://github.com/robrichards/xmlseclibs)

$dom = new DOMDocument('1.0', 'UTF-8'); 
$ar = $dom->createElementNS('http://bxd.fi/xmldata/', 'ApplicationRequest'); 
$dom->appendChild($ar); 
$ar->appendChild($dom->createElement('CustomerId', $this->userID)); 
... 
$ar->appendChild($dom->createElement('Content', $contentBase64)); 

$objDSig = new XMLSecurityDSig(); 
$objDSig->setCanonicalMethod(XMLSecurityDSig::EXC_C14N); 
$objDSig->addReference(
      $dom, 
      XMLSecurityDSig::SHA256, 
      ['http://www.w3.org/2000/09/xmldsig#enveloped-signature'], 
      ['force_uri' => true] 
     ); 
$objKey = new XMLSecurityKey(XMLSecurityKey::RSA_SHA256, ['type'=>'private']); 
$objKey->loadKey($this->privateKeyPath, true); 
$objDSig->sign($objKey); 
$objDSig->add509Cert(base64_encode(file_get_contents($this->certificatePath)), false); 
$objDSig->appendSignature($dom->documentElement); 

$xmlRaw = $dom->saveXML();

Quelle

2017-03-12 11:30:41 Lari13

Verwandte Themen

 Verwandte Themen