Re: ColdFusion and .NET Web Services running WSE 3.0
I've committed to SVN the bare essentials to make a WS-Security call. Documentation will follow tomorrow. http://wss4cf.riaforge.org/ mxAjax / CFAjax docs and other useful articles: http://www.bifrost.com.au/blog/ On 8 June 2010 04:00, Paul Alkema wrote: > > James, > I too have had issue connecting to Exact Target's poorly documented API. > > I did manage to figure out how to add a user via an older API though. > > > http://paulalkema.com/post.cfm/how-to-subscribe-a-user-in-exact-target-via-t > heir-api > > Regards, > Paul Alkema > > -Original Message- > From: Dan O'Keefe [mailto:dan.oke...@gmail.com] > Sent: Sunday, June 06, 2010 2:36 PM > To: cf-talk > Subject: Re: ColdFusion and .NET Web Services running WSE 3.0 > > > James, > > I would be interested in participating on this as well as I have a > current need for the WS-Security piece with ExactTarget API. > > Dan > > > On Sat, Jun 5, 2010 at 7:13 AM, James Holmes > wrote: > > > > OK, I'll finish up the webservice wrapper CFC on which I'm working and > then > > look at what's necessary to add the digest password type (currently I > just > > have the text type working) and any other parts of WS-Security that are > > possible in CF. > > > > The code will work in CF8 and higher, although parts of it will probably > > work in CF7 (since that's when we got addSoapRequestHeader()). > > > > mxAjax / CFAjax docs and other useful articles: > > http://www.bifrost.com.au/blog/ > > > > > > On 5 June 2010 21:15, Phillip Duba wrote: > > > >> > >> James, I know I will definitely need something like that in the future. > >> While this project went the .NET route, there are two follow-on projects > >> that will most likely be needed, one requested by my group, so I know > I'll > >> be working on at least one more integration using WS-Securit. Thanks, > >> > >> Phil > >> > >> On Sat, Jun 5, 2010 at 8:12 AM, James Holmes > >> wrote: > >> > >> > > >> > Coincidentally, I've just finished developing the code necessary to do > a > >> > basic WS-SECURITY call in CF, using standard cf webservices code (i.e. > no > >> > extra Java jars or other external dependencies). > >> > > >> > If people need this sort of thing, let me know because I'm thinking of > >> > starting an open source project to flesh it out. > >> > > >> > mxAjax / CFAjax docs and other useful articles: > >> > http://www.bifrost.com.au/blog/ > >> > > >> > > >> > On 5 June 2010 01:04, Phillip Duba wrote: > >> > > >> > > > >> > > It did for the pure web services, not for the HTTP Post method (not > >> > > recommended for production). It was a proof-of-concept under a tight > >> > > deadline so I didn't have time to follow the web service all the way > to > >> > the > >> > > conclusion I would need for production. I did find a few blog posts > >> that > >> > > got > >> > > me pointed in the direction I probably needed to go. The specific > >> > > implementation was the Username Token profile. I eventually got to > >> > > receiving > >> > > an error of cannot authorize/validate the username token. It > probably > >> had > >> > > to > >> > > do with timestamps and the makeup of the token itself. Again, I just > >> ran > >> > > out > >> > > of time and the project was chosen to be done by another > organization > >> > > internally doing .NET work for which the WS-Security implementation > was > >> > > seamless using MS's WSE library. It wasn't the deciding factor, but > it > >> > was > >> > > definitely a differentiator, > >> > > > >> > > Phil > >> > > > >> > > On Fri, Jun 4, 2010 at 12:53 PM, Dan O'Keefe > >> > wrote: > >> > > > >> > > > > >> > > > Philip, > >> > > > > >> > > > Did you authorization require WS-Security? > >> > > > > >> > > > Dan > >> > > > -- > >> > > > Dan O'Keefe > >> > > > > >> > > > > >> > > > > >> > > > On Thu, Apr 29, 2010 at 12:13 PM, Phillip Duba < > phild...@gmail.com> > >> > > wrote: > >> > > > > > >> > > > > Dave, thanks for the response. I've gone to executing the > request > >> > using > >> > > > > CFHTTP, creating the soap:Header tag and building it as I go > >> through > >> > > the > >> > > > WSE > >> > > > > spec and examples. I've gotten to the point that I get > unauthorized > >> > so > >> > > > > that's where I'm at now. I may have to use CFHTTP to do it, but > >> we'll > >> > > > see. > >> > > > > Thanks again, > >> > > > > > >> > > > > Phil > >> > > > > > >> > > > > > >> > > > > > >> > > > > >> > > > > >> > > > >> > > > >> > > >> > > >> > >> > > > > > > > > ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334417 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
RE: ColdFusion and .NET Web Services running WSE 3.0
James, I too have had issue connecting to Exact Target's poorly documented API. I did manage to figure out how to add a user via an older API though. http://paulalkema.com/post.cfm/how-to-subscribe-a-user-in-exact-target-via-t heir-api Regards, Paul Alkema -Original Message- From: Dan O'Keefe [mailto:dan.oke...@gmail.com] Sent: Sunday, June 06, 2010 2:36 PM To: cf-talk Subject: Re: ColdFusion and .NET Web Services running WSE 3.0 James, I would be interested in participating on this as well as I have a current need for the WS-Security piece with ExactTarget API. Dan On Sat, Jun 5, 2010 at 7:13 AM, James Holmes wrote: > > OK, I'll finish up the webservice wrapper CFC on which I'm working and then > look at what's necessary to add the digest password type (currently I just > have the text type working) and any other parts of WS-Security that are > possible in CF. > > The code will work in CF8 and higher, although parts of it will probably > work in CF7 (since that's when we got addSoapRequestHeader()). > > mxAjax / CFAjax docs and other useful articles: > http://www.bifrost.com.au/blog/ > > > On 5 June 2010 21:15, Phillip Duba wrote: > >> >> James, I know I will definitely need something like that in the future. >> While this project went the .NET route, there are two follow-on projects >> that will most likely be needed, one requested by my group, so I know I'll >> be working on at least one more integration using WS-Securit. Thanks, >> >> Phil >> >> On Sat, Jun 5, 2010 at 8:12 AM, James Holmes >> wrote: >> >> > >> > Coincidentally, I've just finished developing the code necessary to do a >> > basic WS-SECURITY call in CF, using standard cf webservices code (i.e. no >> > extra Java jars or other external dependencies). >> > >> > If people need this sort of thing, let me know because I'm thinking of >> > starting an open source project to flesh it out. >> > >> > mxAjax / CFAjax docs and other useful articles: >> > http://www.bifrost.com.au/blog/ >> > >> > >> > On 5 June 2010 01:04, Phillip Duba wrote: >> > >> > > >> > > It did for the pure web services, not for the HTTP Post method (not >> > > recommended for production). It was a proof-of-concept under a tight >> > > deadline so I didn't have time to follow the web service all the way to >> > the >> > > conclusion I would need for production. I did find a few blog posts >> that >> > > got >> > > me pointed in the direction I probably needed to go. The specific >> > > implementation was the Username Token profile. I eventually got to >> > > receiving >> > > an error of cannot authorize/validate the username token. It probably >> had >> > > to >> > > do with timestamps and the makeup of the token itself. Again, I just >> ran >> > > out >> > > of time and the project was chosen to be done by another organization >> > > internally doing .NET work for which the WS-Security implementation was >> > > seamless using MS's WSE library. It wasn't the deciding factor, but it >> > was >> > > definitely a differentiator, >> > > >> > > Phil >> > > >> > > On Fri, Jun 4, 2010 at 12:53 PM, Dan O'Keefe >> > wrote: >> > > >> > > > >> > > > Philip, >> > > > >> > > > Did you authorization require WS-Security? >> > > > >> > > > Dan >> > > > -- >> > > > Dan O'Keefe >> > > > >> > > > >> > > > >> > > > On Thu, Apr 29, 2010 at 12:13 PM, Phillip Duba >> > > wrote: >> > > > > >> > > > > Dave, thanks for the response. I've gone to executing the request >> > using >> > > > > CFHTTP, creating the soap:Header tag and building it as I go >> through >> > > the >> > > > WSE >> > > > > spec and examples. I've gotten to the point that I get unauthorized >> > so >> > > > > that's where I'm at now. I may have to use CFHTTP to do it, but >> we'll >> > > > see. >> > > > > Thanks again, >> > > > > >> > > > > Phil >> > > > > >> > > > > >> > > > > >> > > > >> > > > >> > > >> > > >> > >> > >> >> > > ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334349 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: ColdFusion and .NET Web Services running WSE 3.0
James, I would be interested in participating on this as well as I have a current need for the WS-Security piece with ExactTarget API. Dan On Sat, Jun 5, 2010 at 7:13 AM, James Holmes wrote: > > OK, I'll finish up the webservice wrapper CFC on which I'm working and then > look at what's necessary to add the digest password type (currently I just > have the text type working) and any other parts of WS-Security that are > possible in CF. > > The code will work in CF8 and higher, although parts of it will probably > work in CF7 (since that's when we got addSoapRequestHeader()). > > mxAjax / CFAjax docs and other useful articles: > http://www.bifrost.com.au/blog/ > > > On 5 June 2010 21:15, Phillip Duba wrote: > >> >> James, I know I will definitely need something like that in the future. >> While this project went the .NET route, there are two follow-on projects >> that will most likely be needed, one requested by my group, so I know I'll >> be working on at least one more integration using WS-Securit. Thanks, >> >> Phil >> >> On Sat, Jun 5, 2010 at 8:12 AM, James Holmes >> wrote: >> >> > >> > Coincidentally, I've just finished developing the code necessary to do a >> > basic WS-SECURITY call in CF, using standard cf webservices code (i.e. no >> > extra Java jars or other external dependencies). >> > >> > If people need this sort of thing, let me know because I'm thinking of >> > starting an open source project to flesh it out. >> > >> > mxAjax / CFAjax docs and other useful articles: >> > http://www.bifrost.com.au/blog/ >> > >> > >> > On 5 June 2010 01:04, Phillip Duba wrote: >> > >> > > >> > > It did for the pure web services, not for the HTTP Post method (not >> > > recommended for production). It was a proof-of-concept under a tight >> > > deadline so I didn't have time to follow the web service all the way to >> > the >> > > conclusion I would need for production. I did find a few blog posts >> that >> > > got >> > > me pointed in the direction I probably needed to go. The specific >> > > implementation was the Username Token profile. I eventually got to >> > > receiving >> > > an error of cannot authorize/validate the username token. It probably >> had >> > > to >> > > do with timestamps and the makeup of the token itself. Again, I just >> ran >> > > out >> > > of time and the project was chosen to be done by another organization >> > > internally doing .NET work for which the WS-Security implementation was >> > > seamless using MS's WSE library. It wasn't the deciding factor, but it >> > was >> > > definitely a differentiator, >> > > >> > > Phil >> > > >> > > On Fri, Jun 4, 2010 at 12:53 PM, Dan O'Keefe >> > wrote: >> > > >> > > > >> > > > Philip, >> > > > >> > > > Did you authorization require WS-Security? >> > > > >> > > > Dan >> > > > -- >> > > > Dan O'Keefe >> > > > >> > > > >> > > > >> > > > On Thu, Apr 29, 2010 at 12:13 PM, Phillip Duba >> > > wrote: >> > > > > >> > > > > Dave, thanks for the response. I've gone to executing the request >> > using >> > > > > CFHTTP, creating the soap:Header tag and building it as I go >> through >> > > the >> > > > WSE >> > > > > spec and examples. I've gotten to the point that I get unauthorized >> > so >> > > > > that's where I'm at now. I may have to use CFHTTP to do it, but >> we'll >> > > > see. >> > > > > Thanks again, >> > > > > >> > > > > Phil >> > > > > >> > > > > >> > > > > >> > > > >> > > > >> > > >> > > >> > >> > >> >> > > ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334331 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: ColdFusion and .NET Web Services running WSE 3.0
please share once done! :) Regards, Arsalan -- From: "James Holmes" Sent: Saturday, June 05, 2010 7:13 PM To: "cf-talk" Subject: Re: ColdFusion and .NET Web Services running WSE 3.0 > > OK, I'll finish up the webservice wrapper CFC on which I'm working and > then > look at what's necessary to add the digest password type (currently I just > have the text type working) and any other parts of WS-Security that are > possible in CF. > > The code will work in CF8 and higher, although parts of it will probably > work in CF7 (since that's when we got addSoapRequestHeader()). > > mxAjax / CFAjax docs and other useful articles: > http://www.bifrost.com.au/blog/ > > > On 5 June 2010 21:15, Phillip Duba wrote: > >> >> James, I know I will definitely need something like that in the future. >> While this project went the .NET route, there are two follow-on projects >> that will most likely be needed, one requested by my group, so I know >> I'll >> be working on at least one more integration using WS-Securit. Thanks, >> >> Phil >> >> On Sat, Jun 5, 2010 at 8:12 AM, James Holmes >> wrote: >> >> > >> > Coincidentally, I've just finished developing the code necessary to do >> > a >> > basic WS-SECURITY call in CF, using standard cf webservices code (i.e. >> > no >> > extra Java jars or other external dependencies). >> > >> > If people need this sort of thing, let me know because I'm thinking of >> > starting an open source project to flesh it out. >> > >> > mxAjax / CFAjax docs and other useful articles: >> > http://www.bifrost.com.au/blog/ >> > >> > >> > On 5 June 2010 01:04, Phillip Duba wrote: >> > >> > > >> > > It did for the pure web services, not for the HTTP Post method (not >> > > recommended for production). It was a proof-of-concept under a tight >> > > deadline so I didn't have time to follow the web service all the way >> > > to >> > the >> > > conclusion I would need for production. I did find a few blog posts >> that >> > > got >> > > me pointed in the direction I probably needed to go. The specific >> > > implementation was the Username Token profile. I eventually got to >> > > receiving >> > > an error of cannot authorize/validate the username token. It probably >> had >> > > to >> > > do with timestamps and the makeup of the token itself. Again, I just >> ran >> > > out >> > > of time and the project was chosen to be done by another organization >> > > internally doing .NET work for which the WS-Security implementation >> > > was >> > > seamless using MS's WSE library. It wasn't the deciding factor, but >> > > it >> > was >> > > definitely a differentiator, >> > > >> > > Phil >> > > >> > > On Fri, Jun 4, 2010 at 12:53 PM, Dan O'Keefe >> > wrote: >> > > >> > > > >> > > > Philip, >> > > > >> > > > Did you authorization require WS-Security? >> > > > >> > > > Dan >> > > > -- >> > > > Dan O'Keefe >> > > > >> > > > >> > > > >> > > > On Thu, Apr 29, 2010 at 12:13 PM, Phillip Duba >> > > wrote: >> > > > > >> > > > > Dave, thanks for the response. I've gone to executing the request >> > using >> > > > > CFHTTP, creating the soap:Header tag and building it as I go >> through >> > > the >> > > > WSE >> > > > > spec and examples. I've gotten to the point that I get >> > > > > unauthorized >> > so >> > > > > that's where I'm at now. I may have to use CFHTTP to do it, but >> we'll >> > > > see. >> > > > > Thanks again, >> > > > > >> > > > > Phil >> > > > > >> > > > > >> > > > > >> > > > >> > > > >> > > >> > > >> > >> > >> >> > > ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334330 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: ColdFusion and .NET Web Services running WSE 3.0
OK, I'll finish up the webservice wrapper CFC on which I'm working and then look at what's necessary to add the digest password type (currently I just have the text type working) and any other parts of WS-Security that are possible in CF. The code will work in CF8 and higher, although parts of it will probably work in CF7 (since that's when we got addSoapRequestHeader()). mxAjax / CFAjax docs and other useful articles: http://www.bifrost.com.au/blog/ On 5 June 2010 21:15, Phillip Duba wrote: > > James, I know I will definitely need something like that in the future. > While this project went the .NET route, there are two follow-on projects > that will most likely be needed, one requested by my group, so I know I'll > be working on at least one more integration using WS-Securit. Thanks, > > Phil > > On Sat, Jun 5, 2010 at 8:12 AM, James Holmes > wrote: > > > > > Coincidentally, I've just finished developing the code necessary to do a > > basic WS-SECURITY call in CF, using standard cf webservices code (i.e. no > > extra Java jars or other external dependencies). > > > > If people need this sort of thing, let me know because I'm thinking of > > starting an open source project to flesh it out. > > > > mxAjax / CFAjax docs and other useful articles: > > http://www.bifrost.com.au/blog/ > > > > > > On 5 June 2010 01:04, Phillip Duba wrote: > > > > > > > > It did for the pure web services, not for the HTTP Post method (not > > > recommended for production). It was a proof-of-concept under a tight > > > deadline so I didn't have time to follow the web service all the way to > > the > > > conclusion I would need for production. I did find a few blog posts > that > > > got > > > me pointed in the direction I probably needed to go. The specific > > > implementation was the Username Token profile. I eventually got to > > > receiving > > > an error of cannot authorize/validate the username token. It probably > had > > > to > > > do with timestamps and the makeup of the token itself. Again, I just > ran > > > out > > > of time and the project was chosen to be done by another organization > > > internally doing .NET work for which the WS-Security implementation was > > > seamless using MS's WSE library. It wasn't the deciding factor, but it > > was > > > definitely a differentiator, > > > > > > Phil > > > > > > On Fri, Jun 4, 2010 at 12:53 PM, Dan O'Keefe > > wrote: > > > > > > > > > > > Philip, > > > > > > > > Did you authorization require WS-Security? > > > > > > > > Dan > > > > -- > > > > Dan O'Keefe > > > > > > > > > > > > > > > > On Thu, Apr 29, 2010 at 12:13 PM, Phillip Duba > > > wrote: > > > > > > > > > > Dave, thanks for the response. I've gone to executing the request > > using > > > > > CFHTTP, creating the soap:Header tag and building it as I go > through > > > the > > > > WSE > > > > > spec and examples. I've gotten to the point that I get unauthorized > > so > > > > > that's where I'm at now. I may have to use CFHTTP to do it, but > we'll > > > > see. > > > > > Thanks again, > > > > > > > > > > Phil > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334326 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: ColdFusion and .NET Web Services running WSE 3.0
James, I know I will definitely need something like that in the future. While this project went the .NET route, there are two follow-on projects that will most likely be needed, one requested by my group, so I know I'll be working on at least one more integration using WS-Securit. Thanks, Phil On Sat, Jun 5, 2010 at 8:12 AM, James Holmes wrote: > > Coincidentally, I've just finished developing the code necessary to do a > basic WS-SECURITY call in CF, using standard cf webservices code (i.e. no > extra Java jars or other external dependencies). > > If people need this sort of thing, let me know because I'm thinking of > starting an open source project to flesh it out. > > mxAjax / CFAjax docs and other useful articles: > http://www.bifrost.com.au/blog/ > > > On 5 June 2010 01:04, Phillip Duba wrote: > > > > > It did for the pure web services, not for the HTTP Post method (not > > recommended for production). It was a proof-of-concept under a tight > > deadline so I didn't have time to follow the web service all the way to > the > > conclusion I would need for production. I did find a few blog posts that > > got > > me pointed in the direction I probably needed to go. The specific > > implementation was the Username Token profile. I eventually got to > > receiving > > an error of cannot authorize/validate the username token. It probably had > > to > > do with timestamps and the makeup of the token itself. Again, I just ran > > out > > of time and the project was chosen to be done by another organization > > internally doing .NET work for which the WS-Security implementation was > > seamless using MS's WSE library. It wasn't the deciding factor, but it > was > > definitely a differentiator, > > > > Phil > > > > On Fri, Jun 4, 2010 at 12:53 PM, Dan O'Keefe > wrote: > > > > > > > > Philip, > > > > > > Did you authorization require WS-Security? > > > > > > Dan > > > -- > > > Dan O'Keefe > > > > > > > > > > > > On Thu, Apr 29, 2010 at 12:13 PM, Phillip Duba > > wrote: > > > > > > > > Dave, thanks for the response. I've gone to executing the request > using > > > > CFHTTP, creating the soap:Header tag and building it as I go through > > the > > > WSE > > > > spec and examples. I've gotten to the point that I get unauthorized > so > > > > that's where I'm at now. I may have to use CFHTTP to do it, but we'll > > > see. > > > > Thanks again, > > > > > > > > Phil > > > > > > > > > > > > > > > > > > > > > > > > ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334325 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: ColdFusion and .NET Web Services running WSE 3.0
Coincidentally, I've just finished developing the code necessary to do a basic WS-SECURITY call in CF, using standard cf webservices code (i.e. no extra Java jars or other external dependencies). If people need this sort of thing, let me know because I'm thinking of starting an open source project to flesh it out. mxAjax / CFAjax docs and other useful articles: http://www.bifrost.com.au/blog/ On 5 June 2010 01:04, Phillip Duba wrote: > > It did for the pure web services, not for the HTTP Post method (not > recommended for production). It was a proof-of-concept under a tight > deadline so I didn't have time to follow the web service all the way to the > conclusion I would need for production. I did find a few blog posts that > got > me pointed in the direction I probably needed to go. The specific > implementation was the Username Token profile. I eventually got to > receiving > an error of cannot authorize/validate the username token. It probably had > to > do with timestamps and the makeup of the token itself. Again, I just ran > out > of time and the project was chosen to be done by another organization > internally doing .NET work for which the WS-Security implementation was > seamless using MS's WSE library. It wasn't the deciding factor, but it was > definitely a differentiator, > > Phil > > On Fri, Jun 4, 2010 at 12:53 PM, Dan O'Keefe wrote: > > > > > Philip, > > > > Did you authorization require WS-Security? > > > > Dan > > -- > > Dan O'Keefe > > > > > > > > On Thu, Apr 29, 2010 at 12:13 PM, Phillip Duba > wrote: > > > > > > Dave, thanks for the response. I've gone to executing the request using > > > CFHTTP, creating the soap:Header tag and building it as I go through > the > > WSE > > > spec and examples. I've gotten to the point that I get unauthorized so > > > that's where I'm at now. I may have to use CFHTTP to do it, but we'll > > see. > > > Thanks again, > > > > > > Phil > > > > > > > > > > > > > > > ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334324 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: ColdFusion and .NET Web Services running WSE 3.0
It did for the pure web services, not for the HTTP Post method (not recommended for production). It was a proof-of-concept under a tight deadline so I didn't have time to follow the web service all the way to the conclusion I would need for production. I did find a few blog posts that got me pointed in the direction I probably needed to go. The specific implementation was the Username Token profile. I eventually got to receiving an error of cannot authorize/validate the username token. It probably had to do with timestamps and the makeup of the token itself. Again, I just ran out of time and the project was chosen to be done by another organization internally doing .NET work for which the WS-Security implementation was seamless using MS's WSE library. It wasn't the deciding factor, but it was definitely a differentiator, Phil On Fri, Jun 4, 2010 at 12:53 PM, Dan O'Keefe wrote: > > Philip, > > Did you authorization require WS-Security? > > Dan > -- > Dan O'Keefe > > > > On Thu, Apr 29, 2010 at 12:13 PM, Phillip Duba wrote: > > > > Dave, thanks for the response. I've gone to executing the request using > > CFHTTP, creating the soap:Header tag and building it as I go through the > WSE > > spec and examples. I've gotten to the point that I get unauthorized so > > that's where I'm at now. I may have to use CFHTTP to do it, but we'll > see. > > Thanks again, > > > > Phil > > > > > > > > ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334310 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: ColdFusion and .NET Web Services running WSE 3.0
Philip, Did you authorization require WS-Security? Dan -- Dan O'Keefe On Thu, Apr 29, 2010 at 12:13 PM, Phillip Duba wrote: > > Dave, thanks for the response. I've gone to executing the request using > CFHTTP, creating the soap:Header tag and building it as I go through the WSE > spec and examples. I've gotten to the point that I get unauthorized so > that's where I'm at now. I may have to use CFHTTP to do it, but we'll see. > Thanks again, > > Phil > > > ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334309 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: ColdFusion and .NET Web Services running WSE 3.0
Dave, thanks for the response. I've gone to executing the request using CFHTTP, creating the soap:Header tag and building it as I go through the WSE spec and examples. I've gotten to the point that I get unauthorized so that's where I'm at now. I may have to use CFHTTP to do it, but we'll see. Thanks again, Phil ~| Want to reach the ColdFusion community with something they want? Let them know on the House of Fusion mailing lists Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:333259 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: ColdFusion and .NET Web Services running WSE 3.0
> Hopefully someone else has run into this issue before and can at least point > me in the right direction. I am trying to consume a .NET web service that > has been protected using the .NET WSE 3.0 service. Here's the error I get > while trying to execute the service: > > Cannot perform web service invocation XX. > The fault returned when invoking the web service operation is: > > AxisFault > faultCode: { > http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd}Security > faultSubcode: > faultString: Security requirements are not satisfied because the security > header is not present in the incoming message. > > ... > > I've found some things searching for web services security header and it > looks like I need to use the addSOAPHeader function to my web service call, > but those posts seem to be incomplete and others have said the solutions > presented still throw errors. Well, I haven't worked with WSE 3.0 yet, so I don't know how much help I can offer. But here goes. First, you might want to check out the difference between good and bad requests on the wire, using a tool like Wireshark. You'd need a working client for this web service, perhaps written in .NET. Your provider probably has .NET reference code for this. This would allow you to see the headers in question, and see how they differ. Second, you might want to search specifically on WSE 3 and Axis, since Axis is the library that CF uses. You might have to write your web service client code in Java and manipulate Axis directly, also. I think that CF comes with Axis 1.2.1, which of course isn't the latest version. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ http://training.figleaf.com/ Fig Leaf Software is a Veteran-Owned Small Business (VOSB) on GSA Schedule, and provides the highest caliber vendor-authorized instruction at our training centers, online, or onsi ~| Want to reach the ColdFusion community with something they want? Let them know on the House of Fusion mailing lists Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:333258 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm