Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Don't include Nonce and Created for PasswordText #131

Merged
1 commit merged into from
Jan 11, 2011
Merged

Conversation

jkingdon
Copy link
Contributor

Before this change, Savon sends Nonce and Created whether the password type is PasswordText or PasswordDigest.

However, according to http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0.pdf (line 173 on page 9), Nonce and Created should not be sent for PasswordText, and the SOAP server which we are using actually rejects the request if you send Nonce and Created on PasswordText.

@rubiii
Copy link
Contributor

rubiii commented Jan 11, 2011

fix released with v0.8.3. thank you very much!

calamitas pushed a commit to calamitas/savon that referenced this pull request Jun 7, 2011
renamed Savon::WSSE#password_value to Savon::WSSE#digest_password and
removed the raise when accessed for PasswordText authentication because
it's a private method.
@Pooriafd
Copy link

Pooriafd commented Oct 4, 2013

Hi Daniel
I try to post a request with wsse which includes nonce, and at the same time sends Password with password type Text and not digest
I couldn't find any solution in that regards, i ended up changing the the type in the code to send always password text and uses digest function.
the problem solved, i'm not sure if it is not implemented or i'm missing something.
(Nonce with Password type text)
having said that i still have problem but i guess it is related to some other part (I would be gratefull if you help me with that) now i get:

(s:Sender) The message with Action '' cannot be processed at the receiver, due to a ContractFilter mismatch at the EndpointDispatcher. This may be because of either a contract mismatch (mismatched Actions between sender and receiver) or a binding/security mismatch between the sender and the receiver. Check that sender and receiver have the same contract and the same binding (including security requirements, e.g. Message, Transport, None). (Savon::SOAPFault)

my wsdl: https://fmsextapi.scania.com/externalinterface/wsdl/Positioning.wsdl

in documentation it requires both ssl (not mentioned the version) and wsse authentication with password type text
i'm stuck.
regards

@Pooriafd
Copy link

Pooriafd commented Oct 5, 2013

Hi, I solved it.
Problem appears to be on action part pf the header information. auto generated code was SoapAction, however the service required, action=.. in content - type
Kind Regards & thanks for the great Savon

This pull request was closed.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Development

Successfully merging this pull request may close these issues.

3 participants