On 02/14/2012 07:59 AM, Stephane Eybert wrote:
POST /springws HTTP/1.1
Content-Type: text/xml; charset=UTF-8
Accept: */*
SOAPAction: ""
User-Agent: Apache CXF 2.5.1
Cache-Control: no-cache
Pragma: no-cache
Host: localhost:9000
Connection: keep-alive
Content-Length: 939
<soap:Envelope
xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/";><soap:Header><wsse:Security
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd";
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd";
soap:mustUnderstand="1"><wsse:UsernameToken
wsu:Id="UsernameToken-4"><wsse:Username>stephane</wsse:Username><wsse:Password
Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordDigest";>[...]</wsse:Password><wsse:Nonce
EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary";>5nKjMgMCqf86s+nxby0iNg==</wsse:Nonce><wsu:Created>2012-02-14T12:53:44.932Z</wsu:Created></wsse:UsernameToken></wsse:Security></soap:Header><soap:Body><ns2:makeBusinessException
xmlns:ns2="http://service.common.springws.nki.no/"/></soap:Body></soap:Envelope>HTTP/1.1
302 Found
Location: http://localhost:9000/springws/
Content-Length: 0
Server: Jetty(7.5.3.v20111011)
As you can see there are some non xml trailing content but I don't know it
that is normal or not, I'm a first time user of Wireshark, cool tool !
Welcome to Wireshark! (Nice something good came out of this problem you
were having.) The non-XML content are the HTTP headers, obligatory for
SOAP over HTTP.
(Also, if what you're doing is sensitive, since you sent this to a
mailing list be sure to change your password--even if encrypted as above
replay attacks are possible if the nonce is not checked.)
Glen
--
Glen Mazza
Talend Community Coders - coders.talend.com
blog: www.jroller.com/gmazza
