Question
Mastercard Inc
US
Last activity: 26 Apr 2019 11:32 EDT
SAML in WS Security
We want to create a SOAP request as below with SAML in the header. How can we achieve this OOTB enabling the ws in the Connect-SOAP. The header request should be like this.
We want to create a SOAP request as below with SAML in the header. How can we achieve this OOTB enabling the ws in the Connect-SOAP. The header request should be like this.
<soapenv:Header xmlns:wsa="http://www.w3.org/2005/08/addressing"><wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" soapenv:mustUnderstand="1"><saml:Assertion xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" ID="Assertion-uuid27985a60-016a-19a3-b793-e9c639ac653d" IssueInstant="2019-04-16T19:20:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">MasterCard</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#" Id="uuid27985a61-016a-1ab6-9727-e9c639ac653d"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" /><ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512" /><ds:Reference URI="#Assertion-uuid27985a60-016a-19a3-b793-e9c639ac653d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" /><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"><xc14n:InclusiveNamespaces xmlns:xc14n="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="saml xs xsi" /></ds:Transform></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /><ds:DigestValue>l9iD3CWUVxokZSTu3DmgqhYbHtY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>LmqsAC31MjrkcIhNBKM6hMmGWU4LL6a6owutjsWzrcabVkHXpNt0d+SdWu13sICauMvFu2I2MuxkTDctkhhVBV4Arf94jgRKuiwpbPG5mQCf7roM1HZkhh6p66hzM/co=</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress">pega59</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData NotOnOrAfter="2019-04-16T19:35:57Z" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2019-04-16T19:19:57Z" NotOnOrAfter="2019-04-16T19:35:57Z"></saml:Assertion></wsse:Security><wsa:To>https://xx.int:25027/webservices_v2.0.0/ATF</wsa:To><wsa:MessageID>urn:uuid:709a1d1a-1234-41e7-ae85-108d8f7540f6</wsa:MessageID><wsa:Action>urn:anonOutInOpResponse</wsa:Action></soapenv:Header>
***Edited by Moderator Marissa to update SR Details***