Hyland Connect

viswa_gogineni · ‎04-03-2009

Hi

I've a problem with CMIS webserveices authentication. Can someone confirm what should be the soap header like & which one should we use PasswordText/ Digest?

I tried in all the following ways to all services, all of them failed. Only services that works is AuthenticationServices which returns sessionid, user ticket:

No.1
<wsse

ecurity soapenv:mustUnderstand="0" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
         <wsse:UsernameToken wsu:Id="UsernameToken-26993204" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
            <wsse:Username>admin</wsse:Username>
            <wsse

assword Type="PasswordText">admin</wsse

assword>
            <wsu:Created>2009-04-02T12:48:13.284Z</wsu:Created>
         </wsse:UsernameToken>
      </wsse

ecurity>

No.2

<wsse

ecurity soapenv:mustUnderstand="0" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
         <wsse:UsernameToken wsu:Id="UsernameToken-26993204" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
            <wsse:Username>admin</wsse:Username>
            <wsse

assword>admin</wsse

assword>
            <wsu:Created>2009-04-02T12:48:13.284Z</wsu:Created>
         </wsse:UsernameToken>
      </wsse

ecurity>

No.3

<wsse

ecurity soapenv:mustUnderstand="0" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
         <wsse:UsernameToken wsu:Id="UsernameToken-26993204" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
            <wsse:Username>admin</wsse:Username>
            <wsse

assword type='PasswordDiget'>Ticket_encrupted passeord from AuthenticationService</wsse

assword>
            <wsu:Created>2009-04-02T12:48:13.284Z</wsu:Created>
         </wsse:UsernameToken>
      </wsse

ecurity>

Tried diffrent types, but no joy! Appreciate anyone's help!

It was very simple to connect to EMC-CMIS through SOAPUI, not sure why is it not clear with Alfresco-CMIS.

Thanks in advance.

Vishwa

bill_curtis3 · ‎04-14-2009

I am not a CMIS expert nor an Alfresco expert. But I was having the same problem. I ended up setting up both the username AND the timestamp security entry on the project itself. I did this by double clicking on the project, and going to the Security Configurations tab. Then from there I created a new configuration called "test".

After I created the "test" item, I added to WSS Entries, one for username and the other is timestamp. For the username, I put:

uid: admin
pwd: admin
nonce: true
create: true
PwdType: PasswordDigest

Then on the timstamp tab, I put:

TTL: 600000
Milliseconds: true

I then used that "test" config for the call to Repository web service.

I actually get info back, so I think it works.

This will generate a header like:

<wsse

ecurity soapenv:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
   <wsu:Timestamp wsu:Id="Timestamp-22655307" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
      <wsu:Created>2009-04-14T01:44:11.406Z</wsu:Created>
      <wsu:Expires>2009-04-21T00:24:11.406Z</wsu:Expires>
   </wsu:Timestamp>
   <wsse:UsernameToken wsu:Id="UsernameToken-27628302" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
      <wsse:Username>admin</wsse:Username>
      <wsse

assword Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordDigest">Mbvqu69HYuRLcSYq0mypghrDZ/M=</wsse

assword>
<wsse:Nonce>oeNtE7YYXUcJ0cZ7llVMdQ==</wsse:Nonce><wsu:Created>2009-04-14T01:44:11.406Z</wsu:Created>
</wsse:UsernameToken>
</wsse

ecurity>

I hope that helps?

Hyland Connect

CMIS webservices access through SOAPClient