how to customize WSSE parameters for response soap...

AbdulHammed · ‎11-30-2023

Dear Experts,

my scenario is soap to proxy synchronous where sender triggers signed soap message and i have to validate the signature for that i enabled the security profile option at sender channel level like attached and selected the validate option for request at ICO level, for response also i have to sign and send the signature with envelope but with multiple prefixes and namespaces where as default response soap envelop produces more tags than the expected(which are not required like sap passport and etc., needed only WSSE Security) but namespace prefixes are not as expected for MessageHeader(expecting ns5 as prefix with namespaces) and soap body tags(with ns2 prefix and namespaces).

sample request, expected response and soap standard response are added here for reference.

Kindly help how to achieve this.

request:

<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Header>
<wsse:Security xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
                xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
                xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
                xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" SOAP-ENV:mustUnderstand="1">
<wsse:BinarySecurityToken
               EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary"
               ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509"
               wsu:Id="x509cert00">Certifcate</wsse:BinarySecurityToken>
<ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"
                 xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
                 xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
                 xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
   <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
    <c14n:InclusiveNamespaces xmlns:c14n="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="ds wsu xenc SOAP-ENV "/>
   </ds:CanonicalizationMethod>
   <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
   <ds:Reference URI="#TheBody">
    <ds:Transforms>
     <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
       <c14n:InclusiveNamespaces xmlns:c14n="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="wsu SOAP-ENV "/>
     </ds:Transform>
    </ds:Transforms>
    <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
    <ds:DigestValue>QORZEA+gpafluShspHxhrjaFlXE=</ds:DigestValue>
   </ds:Reference>
  </ds:SignedInfo>
  <ds:SignatureValue>qzQA9yEtjQX2NOAl4rq45NOv7JBXFDgOlBqkZ9267U/DYHKQfBGLmDHMVcMOg0HCkKaU2QHEMXIY
iY9OiQ6qdoH2MD60+o+l2Qu0E/WBuZ4Rb7J9WN9z8TsBcPx5FKIMWgaAdoVoj19RSp3F7B3qwwcV
zpU6n34C7pmQIJxg2P8dBbCwyTbDGn3B/FCFb7nbaL3+LlH3Qx3Fl6O3LkBKAebXDCGyNHhOhHB6
kAXARvbToHurCfWk0vHrpF9KBMAg0CS/ZL5+eF36v7Inb3nzlK/yxtbvPt4TJ6bup04k+4YV3Rtz
TkiFJqNo+vNxPOIcEK69NeEY/xhhck90YcbGfQ==</ds:SignatureValue>
   <ds:KeyInfo>
    <wsse:SecurityTokenReference>
      <wsse:Reference URI="#x509cert00"
                      ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509"/>
    </wsse:SecurityTokenReference>
   </ds:KeyInfo>
  </ds:Signature>
</wsse:Security>
</SOAP-ENV:Header>
<SOAP-ENV:Body xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="TheBody">
<getVersion xmlns="http://msgsec.wssecfvt.ws.ibm.com"/>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope><br>

response generated by standard options:

<SOAP:Envelope xmlns:SOAP="http://schemas.xmlsoap.org/soap/envelope/">
   <SOAP:Header xmlns:SAP="http://sap.com/xi/XI/Message/30" xmlns:dp="http://www.datapower.com/extensions" xmlns:ns="http://test.com/schema/definition/Header/1.0" xmlns:ns1="http://test.com/schema/service/BillerNotification/1.0" xmlns:ns2="http://test.com/schema/domain/Payment/1.0" xmlns:ns3="http://test.com/schema/Common/1.0" xmlns:ns4="http://test.com/schema/definition/MOI/1.0" xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:wsu="http://www.docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
      <ns:MessageHeader>
         <ns:ServiceInitiatorKey>test</ns:ServiceInitiatorKey>
         <ns:ServiceProviderKey>346</ns:ServiceProviderKey>
         <ns:ServiceConsumerId>346</ns:ServiceConsumerId>
         <ns:RqUID>5bd752fe-d4f9-11ec-be92-0a01bb110000</ns:RqUID>
         <ns:Date>2022-05-16T12:24:59.288</ns:Date>
         <ns:Lang>en-gb</ns:Lang>
      </ns:MessageHeader>
      <SAP:ReliableMessaging soapenv:mustUnderstand="1">
         <SAP:QualityOfService>BestEffort</SAP:QualityOfService>
      </SAP:ReliableMessaging>
      <SAP:DynamicConfiguration soapenv:mustUnderstand="1">
         <SAP:Record namespace="http://sap.com/xi/XI/System/SOAP" name="SndrEndpointURL">http://vhmqrpidjp01.hec.AGH.com.sa:50000/XISOAPAdapter/MessageServlet</SAP:Record>
         <SAP:Record namespace="http://sap.com/xi/XI/System/SOAP" name="SndrTransportProtocol">http</SAP:Record>
         <SAP:Record namespace="http://sap.com/xi/XI/Message/30/routing" name="SourceMessageType">NotifyPaymentRq</SAP:Record>
         <SAP:Record namespace="http://sap.com/xi/XI/System/SOAP" name="SndrClientAddr">10.212.134.100</SAP:Record>
        </SAP:DynamicConfiguration>
      <SAP:HopList soapenv:mustUnderstand="1">
         <SAP:Hop timeStamp="2023-11-30T20:08:03Z" wasRead="false">
            <SAP:Engine type="AE">af.pid.vhmqrpiddb</SAP:Engine>
            <SAP:Adapter namespace="http://sap.com/xi/XI/System">XIRA</SAP:Adapter>
            <SAP:MessageId>2b3cb2c9-8fbc-11ee-8c5c-0000003d9ae6</SAP:MessageId>
            <SAP:Info/>
         </SAP:Hop>
         <SAP:Hop timeStamp="2023-11-30T20:08:03Z" wasRead="false">
            <SAP:Engine type="BS">sa_com_AGH_S4D_ECCSystem</SAP:Engine>
            <SAP:Adapter namespace="http://sap.com/xi/XI/System">XI</SAP:Adapter>
            <SAP:MessageId>2b3cb2c9-8fbc-11ee-8c5c-0000003d9ae6</SAP:MessageId>
            <SAP:Info>3.0</SAP:Info>
         </SAP:Hop>
         <SAP:Hop timeStamp="2023-11-30T20:08:04Z" wasRead="false">
            <SAP:Engine type="AE">af.pid.vhmqrpiddb</SAP:Engine>
            <SAP:Adapter namespace="http://sap.com/xi/XI/System">XIRA</SAP:Adapter>
            <SAP:MessageId>cb99d052-9497-1eee-a3f7-856aa6eaafea</SAP:MessageId>
         </SAP:Hop>
      </SAP:HopList>
      <SAP:Diagnostic soapenv:mustUnderstand="1">
         <SAP:TraceLevel>Information</SAP:TraceLevel>
         <SAP:Logging>Off</SAP:Logging>
      </SAP:Diagnostic>
      <SAP:System soapenv:mustUnderstand="1">
         <SAP:Record namespace="/xmlvalidation" name="SYNC_RESPONSE_BEFORE_MAPPING">1</SAP:Record>
      </SAP:System>
      <SAP:Passport>
         <SAP:PassportHash>2A54482A0300E60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000065353337313066643866626231316565386362633030303030303364396165360000000002E53710FD8FBB11EE8CBC0000003D9AE60000000000000000000000000000000000000000000000002A54482A</SAP:PassportHash>
         <SAP:Transaction_ID>e53710fd8fbb11ee8cbc0000003d9ae6</SAP:Transaction_ID>
      </SAP:Passport>
      <SAP:Main versionMajor="3" versionMinor="1" soapenv:mustUnderstand="1">
         <SAP:MessageClass>ApplicationResponse</SAP:MessageClass>
         <SAP:ProcessingMode>synchronous</SAP:ProcessingMode>
         <SAP:MessageId>cb99d052-9497-1eee-a3f7-856aa6eaafea</SAP:MessageId>
         <SAP:RefToMessageId>2b3cb2c9-8fbc-11ee-8c5c-0000003d9ae6</SAP:RefToMessageId>
         <SAP:TimeSent>2023-11-30T20:08:04Z</SAP:TimeSent>
         <SAP:Sender>
            <SAP:Party agency="" scheme=""/>
            <SAP:Service>sa_com_AGH_S4D_ECCSystem</SAP:Service>
         </SAP:Sender>
         <SAP:Receiver>
            <SAP:Party agency="http://sap.com/xi/XI" scheme="XIParty"/>
            <SAP:Service>BC_test</SAP:Service>
         </SAP:Receiver>
         <SAP:Interface namespace="urn:ISU:test:Services">PmtNotify_WS_Out</SAP:Interface>
      </SAP:Main>
      <wsse:Security SOAP:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/">
         <wsse:BinarySecurityToken wsu:Id="sap-2" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">MIIGvzCCBaegAwIBAgIEXVJNhTANBgkqhkiG9w0BAQsFADBSMQswCQYDVQQGEwJTQTENMAsGA1UEChMEU0FNQTEbMBkGA1UECxMSU0FNQSBlVHJ1c3QgQ2VudGVyMRcwFQYDVQQDEw5TQU1BIFNoYXJlZCBDQTAeFw0yMzEwMzEwNjAzNDFaFw0yNDEwMTYwNTI2MDVaMGcxCzAJBgNVBAYTAlNBMQ0wCwYDVQQKEwRTQU1BMRswGQYDVQQLExJTQU1BIGVUcnVzdCBDZW50ZXIxFTATBgNVBAsTDFNBREFEIERvbWFpbjEVMBMGA1UEAxMMdmhtcXJwaWRqcDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXrF8/FzKiTc96sssaSbiXtvvU5MpWFWoO5Hotbgmln/kIRUVCbidnjgnpChthlB3OQ5ltTyUfaPJAlxbchX9KXxjqYQuIy6</wsse:BinarySecurityToken>
         <wsu:Timestamp wsu:Id="wsu-targetID-2b7ceff2-8fbc-11ee-9586-0000003d9ae6" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
            <wsu:Created ValueType="xsd:dateTime">2023-11-30T20:08:04Z</wsu:Created>
            <wsu:Expires ValueType="xsd:dateTime">2023-11-30T20:08:09Z</wsu:Expires>
         </wsu:Timestamp>
         <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
            <ds:SignedInfo>
               <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
               <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
               <ds:Reference URI="#wsuid-body-2b7cbaa4-8fbc-11ee-b422-0000003d9ae6">
                  <ds:Transforms>
                     <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                  </ds:Transforms>
                  <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
                  <ds:DigestValue>y+xtCLDL2MGHkT/fkqkkrQc1omI=</ds:DigestValue>
               </ds:Reference>
               <ds:Reference URI="#wsu-targetID-2b7ceff2-8fbc-11ee-9586-0000003d9ae6">
                  <ds:Transforms>
                     <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                  </ds:Transforms>
                  <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
                  <ds:DigestValue>yNdUd1564VaPtoTAZ0gJ2LxH2pQ=</ds:DigestValue>
               </ds:Reference>
            </ds:SignedInfo>
            <ds:SignatureValue>nReIBNkRV95v8bv8a6xNVFuzws5ewbqJOT6YDa7Wo2BKmz9skAqoML4Dj6zIXlsenGw+I6z2nmsJZRn0NcvMcRHT0Rl7YUjm7lIw8S+vz3JpFDualyjTAAcUAGzunpSD6bUcDX0/WMDRlfyerOGRNy5subX8xuzfZxsKttPj4WmpsxyRbHnNrMkFbVSbrs0Dna2cEihDlpzwH2FutlP0FRkZNnwnL4tjQ6MSD8zlhTIhZ51aCXFQ/KH711GzseWKt9Fo3BqQXmgwX92LztZcHybZkbNlWM/HaLJkBs8tb0It/Mwxf8g++abSGZ12HeM49bKtu5wVfxcTsMZf37wtKA==</ds:SignatureValue>
            <ds:KeyInfo>
               <wsse:SecurityTokenReference>
                  <wsse:Reference URI="#sap-2"/>
               </wsse:SecurityTokenReference>
            </ds:KeyInfo>
         </ds:Signature>
      </wsse:Security>
   </SOAP:Header>
   <SOAP:Body wsu:Id="wsuid-body-2b7cbaa4-8fbc-11ee-b422-0000003d9ae6" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:dp="http://www.datapower.com/extensions" xmlns:ns="http://test.com/schema/definition/Header/1.0" xmlns:ns1="http://test.com/schema/service/BillerNotification/1.0" xmlns:ns2="http://test.com/schema/domain/Payment/1.0" xmlns:ns3="http://test.com/schema/Common/1.0" xmlns:ns4="http://test.com/schema/definition/MOI/1.0">
      <test>
         <SignonRs>
            <ClientDt>2023-11-30T23:08:04</ClientDt>
            <ServerDt>2023-11-30T23:08:04.101</ServerDt>
            <SignonProfile>
               <Sender>AGH</Sender>
               <Receiver>test</Receiver>
               <MsgCode/>
            </SignonProfile>
         </SignonRs>
      </test>
   </SOAP:Body>
</SOAP:Envelope><br>

Expected SOAP Response :

<?xml version="1.0" encoding="UTF-8"?>
<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/">
<soap:Header>
		<ns5:MessageHeader xmlns:ns7="http://test.com/schema/error/Notification/1.0" xmlns:ns6="http://test.com/schema/domain/Payment/1.0" xmlns:ns5="http://test.com/schema/definition/Header/1.0" xmlns:ns4="http://test.com/schema/definition/MOI/1.0" xmlns:ns3="http://test.com/schema/Common/1.0" xmlns:ns2="http://test.com/schema/service/BillerNotification/1.0">
			<ns5:ServiceInitiatorKey>TEST</ns5:ServiceInitiatorKey>
			<ns5:ServiceProviderKey>000</ns5:ServiceProviderKey>
			<ns5:ServiceConsumerId>000</ns5:ServiceConsumerId>
			<ns5:RqUID>0ba5a784-141e-11ea-8f72-0a01bb110000</ns5:RqUID>
			<ns5:Date>2019-12-01T12:36:29.345</ns5:Date>
			<ns5:Lang>en-gb</ns5:Lang>
		</ns5:MessageHeader>
	<wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" soap:mustUnderstand="1"><wsu:Timestamp wsu:Id="Timestamp-6fd8bc8b-7f35-4a1d-8daf-ba1aefb6b950" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"><wsu:Created>2022-05-19T07:27:12Z</wsu:Created><wsu:Expires>2022-05-19T07:32:12Z</wsu:Expires></wsu:Timestamp><wsse:BinarySecurityToken wsu:Id="SecurityToken-2ab0aca2-ec41-416e-8349-ba1aefb670d7" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">MIIHdTCCBl2gAwIBAgIEXVGIKDANBgkqhkiG9w0BAQsFADBSMQswCQYDVQQGEwJTQTENMAsGA1UEChMEU0FNQTEbMBkGA1UECxMSU0FNQSBlVHJ1c3QgQ2VudGVyMRcwFQYDVQQDEw5TQU1BIFNoYXJlZCBDQTAeFw0yMDExMDUwOTA2NTRaFw0yMjExMDUwOTM2NTRaMGsxCzAJBgNVBAYTAlNBMQ0wCwYDVQQKEwRTQU1BMRswGQYDVQQLExJTQU1BIGVUcnVzdCBDZW50ZXIxFTATBgNVBAsTDFNBREFEIERvbWFpbjEZMBcGA1UEAxMQZWJwcGl0LnNhZGFkLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJ95jCxnMldR77y6i8KtW8KTfjehtCy4f9EjWH7cpeop/dETL10v4eOVxNpObDfMWBz97n9kJ5/g9KAK5mVSNi/N5HBtWQzpxuhb7vKYBddXuz5zLq2B+6SQTP+nvK/i7f8S2Xg9B4tkrmGQfjetM2R7IYe8HKXXOUe/ekRZRJFWqkfZssVoR1bvFXjb/OGAFFKHGUlOwAXUkLQZY2Xz1kPD05hPG2opwozXhDTzn+b78rZxx1ISNu/EBrDmIP+z+kmXlUxDkawyG9lKEl9V8AkFlBhmFFcem0ph8B4fwRZddcNH9DRMgyawDet5hpxVWrU1fN6KJF8GEGzk8WAIkwcCAwEAAaOCBDgwggQ0MAsGA1UdDwQEAwID+DBYBglghkgBhvprHgEESwxJVGhlIHByaXZhdGUga2V5IGNvcnJlc3BvbmRpbmcgdG8gdGhpcyBjZXJ0aWZpY2F0ZSBtYXkgaGF2ZSBiZWVuIGV4cG9ydGVkLjAxBgNVHSUEKjAoBggrBgEFBQcDAQYIKwYBBQUHAwIGCCsGAQUFBwMEBggrBgEFBQcDBzCB3wYDVR0gBIHXMIHUMIHRBg0rBgEEAYGHHQEBBgAPMIG/MIG8BggrBgEFBQcCAjCBrwyBrFRoaXMgY2VydGlmaWNhdGUgaGFzIGJlZW4gaXNzdWVkIGJ5IFNBTUEgZVRydXN0IENlbnRlciBvbiBiZWhhbGYgb2YgU0FEQUQuIE5laXRoZXIgU0FNQSBub3IgU0FEQUQgYWNjZXB0IGFueSBsaWFiaWxpdHkgZm9yIGFueSBjbGFpbSBleGNlcHQgYXMgZXhwcmVzc2x5IHByb3ZpZGVkIGluIHRoaXMgQ1AwgckGA1UdEQSBwTCBvoISZWJwcGl0c3Auc2FkYWQuY29tghJlYnBwdXRzcC5zYWRhZC5jb22CFGVicHB1dGJhbmsuc2FkYWQuY29tghZlYmJwdXRiaWxsZXIuc2FkYWQuY29tghNlYnBwdXRnc24uc2FkYWQuY29tgg5zYWRhZGl0LmNvbS5zYYIWZWJwcGl0YmlsbGVyLnNhZGFkLmNvbYITZWJwcGl0Z3NuLnNhZGFkLmNvbYIUZWJwcGl0YmFuay5zYWRhZC5jb20wggFVBgNVHR8EggFMMIIBSDCB2qCB16CB1IZmaHR0cDovL3BraWZyb250LXAxLmV0cnVzdC1jZW50ZXIuc2FtYS5nb3Yuc2EvQ1JML3NhbWFfc2hhcmVkX2NhX3NhbWFfZXRydXN0X2NlbnRlcl9tYV9jX3NhX2NybGZpbGUuY3JshmpsZGFwOi8vUEtJQ0EtRFIvY249U0FNQSUyMFNoYXJlZCUyMENBLG91PVNBTUElMjBlVHJ1c3QlMjBDZW50ZXIsbz1TQU1BLGM9U0E/Y2VydGlmaWNhdGVSZXZvY2F0aW9uTGlzdD9iYXNlMGmgZ6BlpGMwYTELMAkGA1UEBhMCU0ExDTALBgNVBAoTBFNBTUExGzAZBgNVBAsTElNBTUEgZVRydXN0IENlbnRlcjEXMBUGA1UEAxMOU0FNQSBTaGFyZWQgQ0ExDTALBgNVBAMTBENSTDcwKwYDVR0QBCQwIoAPMjAyMDExMDUwOTA2NTRagQ8yMDIyMDMzMTA5MzY1NFowHwYDVR0jBBgwFoAUVMwso2AIJir4u/8qKvZ164nEQQEwHQYDVR0OBBYEFPcaKiA/KFP648vqx92YewhZabN+MAkGA1UdEwQCMAAwGQYJKoZIhvZ9B0EABAwwChsEVjguMwMCBLAwDQYJKoZIhvcNAQELBQADggEBAF35q8iK0m1SpnpE1KM+qgJ04BSxMD6jqvCMk6ZwguU9Nj1sPfLdRUhNGRbY5NNutH2imgpMUvAf/7Gh06XgPrwuvDcet8tLK2mcnLCfd0ZhyVVlO9L0ur0JTdUw5eh7enyAJygFU88QI7RqeixXhYLfCw5cKQj</wsse:BinarySecurityToken><Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
<SignedInfo>
  <CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
  <SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
  <Reference URI="#Timestamp-6fd8bc8b-7f35-4a1d-8daf-ba1aefb6b950">
    <Transforms>
      <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    </Transforms>
    <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
    <DigestValue>xHpNv4tGM1apeu3rakOhbNkZERw=</DigestValue>
  </Reference>
  <Reference URI="#id-0a27c16a-6756-4878-aea3-d0c1b792f78c">
    <Transforms>
      <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    </Transforms>
    <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
    <DigestValue>dLjsxVBLkAOLKx1vGxGUdlUv1KU=</DigestValue>
  </Reference>
</SignedInfo>
    <SignatureValue>VyOrLpMN05WAgo3vd2NIoHPNWzTga+LBMey2Iytyy+T//oqp6CPx4EDsYNEiibAHcFm6gshX+xZU5TepweT52y+uZMoqa+9olRjYWpJnQHMky46CGAXYpD5Jpeld9z+t9NqKSl7D2YyufJxM3ylnfw41JbsojK8mpHHiWC/dX2/V6pmfAQd4KvPGFWuLVOyMO4hDbacrnodQobnmqCb78KwJbYWlDc52KWPlkKnmzptm5DNPGyZGTAd9CHwhVCY1HvdBQhLX77+qOf/o1qY1PClcCayixzOem4JYyxnwguzZHta371kA+ecKglO1/1I0UnkqoTA0RZt5R7bWLHq3Cg==</SignatureValue><KeyInfo><wsse:SecurityTokenReference xmlns=""><wsse:Reference URI="#SecurityToken-2ab0aca2-ec41-416e-8349-ba1aefb670d7" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/></wsse:SecurityTokenReference></KeyInfo></Signature></wsse:Security></soap:Header><soap:Body wsu:Id="id-0a27c16a-6756-4878-aea3-d0c1b792f78c" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
		<ns2:NotifyPaymentRs xmlns:ns2="http://test.com/schema/service/BillerNotification/1.0" xmlns:ns3="http://test.com/schema/Common/1.0" xmlns:ns4="http://test.com/schema/definition/MOI/1.0" xmlns:ns5="http://test.com/schema/definition/Header/1.0" xmlns:ns6="http://test.com/schema/domain/Payment/1.0" xmlns:ns7="http://test.com/schema/error/BillerNotification/1.0">
			<ns2:PrcDt>2019-12-01T12:35:48.612+03:00</ns2:PrcDt>
		</ns2:NotifyPaymentRs>
	</soap:Body></soap:Envelope><br>

anupam_ghosh2 · ‎12-01-2023

Hi Abdul,

Validation of signature should be optional at receiver end for the incoming payload. While you try to send a response from PI then it must cater WSSEC protocol format. Using java mapping / adapter module you can validate or create WSSEC format of messages. This will allow you to create exact format of messages using namespace. Details of such coding can be found here https://github.com/DinoChiesa/Apigee-Java-WsSec-Signature-2 .

I am afraid it's difficult (if not impossible) to achieve this using standard adapter setting as you are trying here.

Regards

Anupam

how to customize WSSE parameters for response soap envelop in sender soap channel of sap po

Accepted Solutions (0)

Answers (1)

Answers (1)

Re: Using Integration Suite API's with Basic Auth

Zircuit Invite Code 'N5BKFE': Get Point Boost!

Elevate Your XP Points with Linea Surge Referral C...

Claim More XP Points with Linea Surge Referral Cod...

Zircuit Invite Code 'N5BKFE': Get Point Boost!