php - Calling an ADFS service with a .pfx certificate -


i trying connect adfs soap service receive sts token. have been given .pfx , not have username or password. first service take .pfx , give me token. use token in subsequent service calls.

i given link: somecompany.com/adfs/services/trust/13/usernamemixed , wsdl. php's built in soap functionality doesn't seem support ws-* functionality don't believe can use wsdl normal soap call. simplesamlphp seems geared towards sps , idps rather consumers. have seen several other libraries looks call adfs service use usernames , passwords rather certificate.

the way have found looks work writing envelope , posting that, seems tedious when doing several different soap calls.

are there ways / libraries call adfs service consumer?

edit:

part of wsdl:

<wsp:policy wsu:id="certificatewstrustbinding_iwstrustfeb2005async_policy"> <wsp:exactlyone>   <wsp:all>     <sp:transportbinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">       <wsp:policy>         <sp:transporttoken>           <wsp:policy>             <sp:httpstoken requireclientcertificate="false"/>           </wsp:policy>         </sp:transporttoken>         <sp:algorithmsuite>           <wsp:policy>             <sp:basic256/>           </wsp:policy>         </sp:algorithmsuite>         <sp:layout>           <wsp:policy>             <sp:strict/>           </wsp:policy>         </sp:layout>         <sp:includetimestamp/>       </wsp:policy>     </sp:transportbinding>     <sp:endorsingsupportingtokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">       <wsp:policy>         <sp:x509token sp:includetoken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/includetoken/alwaystorecipient">           <wsp:policy>             <sp:requirethumbprintreference/>             <sp:wssx509v3token10/>           </wsp:policy>         </sp:x509token>         <mssp:rsatoken sp:includetoken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/includetoken/never" wsp:optional="true" xmlns:mssp="http://schemas.microsoft.com/ws/2005/07/securitypolicy"/>         <sp:signedparts>           <sp:header name="to" namespace="http://www.w3.org/2005/08/addressing"/>         </sp:signedparts>       </wsp:policy>     </sp:endorsingsupportingtokens>     <sp:wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">       <wsp:policy>         <sp:mustsupportrefkeyidentifier/>         <sp:mustsupportrefissuerserial/>         <sp:mustsupportrefthumbprint/>         <sp:mustsupportrefencryptedkey/>       </wsp:policy>     </sp:wss11>     <sp:trust10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">       <wsp:policy>         <sp:mustsupportissuedtokens/>         <sp:requirecliententropy/>         <sp:requireserverentropy/>       </wsp:policy>     </sp:trust10>     <wsaw:usingaddressing/>   </wsp:all> </wsp:exactlyone>  </wsp:policy>

another portion:

<wsp:policy wsu:id="issuedtokenwstrustbinding_iwstrustfeb2005async_policy"> <wsp:exactlyone>   <wsp:all>     <sp:transportbinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">       <wsp:policy>         <sp:transporttoken>           <wsp:policy>             <sp:httpstoken requireclientcertificate="false"/>           </wsp:policy>         </sp:transporttoken>         <sp:algorithmsuite>           <wsp:policy>             <sp:basic256/>           </wsp:policy>         </sp:algorithmsuite>         <sp:layout>           <wsp:policy>             <sp:strict/>           </wsp:policy>         </sp:layout>         <sp:includetimestamp/>       </wsp:policy>     </sp:transportbinding>     <sp:endorsingsupportingtokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">       <wsp:policy>         <sp:issuedtoken sp:includetoken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/includetoken/alwaystorecipient">           <sp:requestsecuritytokentemplate>             <t:keytype>http://schemas.xmlsoap.org/ws/2005/02/trust/publickey</t:keytype>             <t:encryptwith>http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p</t:encryptwith>             <t:signaturealgorithm>http://www.w3.org/2000/09/xmldsig#rsa-sha1</t:signaturealgorithm>             <t:canonicalizationalgorithm>http://www.w3.org/2001/10/xml-exc-c14n#</t:canonicalizationalgorithm>             <t:encryptionalgorithm>http://www.w3.org/2001/04/xmlenc#aes256-cbc</t:encryptionalgorithm>           </sp:requestsecuritytokentemplate>           <wsp:policy>             <sp:requireinternalreference/>           </wsp:policy>         </sp:issuedtoken>         <mssp:rsatoken sp:includetoken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/includetoken/never" wsp:optional="true" xmlns:mssp="http://schemas.microsoft.com/ws/2005/07/securitypolicy"/>         <sp:signedparts>           <sp:header name="to" namespace="http://www.w3.org/2005/08/addressing"/>         </sp:signedparts>       </wsp:policy>     </sp:endorsingsupportingtokens>     <sp:wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">       <wsp:policy>         <sp:mustsupportrefkeyidentifier/>         <sp:mustsupportrefissuerserial/>         <sp:mustsupportrefthumbprint/>         <sp:mustsupportrefencryptedkey/>       </wsp:policy>     </sp:wss11>     <sp:trust10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">       <wsp:policy>         <sp:mustsupportissuedtokens/>         <sp:requirecliententropy/>         <sp:requireserverentropy/>       </wsp:policy>     </sp:trust10>     <wsaw:usingaddressing/>   </wsp:all> </wsp:exactlyone>  </wsp:policy>


-

Comments

Post a Comment

Popular posts from this blog

c# - Binding a comma separated list to a List<int> in asp.net web api -

the default binder in web api expecst http://url.com/webapi/report/?pageids=3243&pageids=2365 to bind public ihttpactionresult report(list<int> pageids){ // exciting webapi code} i wish bind http://url.com/webapi/report/?pageids=3243,2365 as running out of space in url get . i have created class public class commaseparatedmodelbinder : system.web.http.modelbinding.imodelbinder { public bool bindmodel(httpactioncontext actioncontext, modelbindingcontext bindingcontext) { //binding in here } } and registered in webapiconfig.cs var provider = new simplemodelbinderprovider( typeof(list<int>), new commaseparatedmodelbinder()); config.services.insert(typeof(modelbinderprovider), 0, provider); i have altered method signature use model binder so public ihttpactionresult report( [modelbinder] list<int> pageids){ // exciting webapi code} however break point in binder not being
Read more

Delphi 7 and decode UTF-8 base64 -

in delphi 7, have widestring encoded base64(that received web service widestring result) : pd94bwwgdmvyc2lvbj0ims4wij8+dqo8c3ryaw5nptiq2lpyqjwvc3ryaw5npg== when decoded it, result not utf-8: <?xml version="1.0"?> <string>طھط³طھ</string> but when decoded base64decode.org, result true : <?xml version="1.0"?> <string>تست</string> i have use encddecd unit decodestring function. the problem have using decodestring . function, in delphi 7, treats decoded binary data being ansi encoded. , problem text utf-8 encoded. to continue encddecd unit have couple of options. can switch decodestream . instance, code produce utf-8 encoded text file data: {$apptype console} uses classes, encddecd; const data = 'pd94bwwgdmvyc2lvbj0ims4wij8+dqo8c3ryaw5nptiq2lpyqjwvc3ryaw5npg=='; var input: tstringstream; output: tfilestream; begin input := tstringstream.create(data); try output := tfilestream.
Read more

html - Is there any way to exclude a single element from the style? (Bootstrap) -

so, have img logo, overlaid on div styled background-image: url("...") , , both elements inside 2 div classes .to-color , .to-overlay respectively, black transparent overlay. is there way exclude logo style given these 2 classes? here's jsfiddle example: link html , css example: - html - <div class="to-color"> <div class="to-overlay"> <div class="respo"> <div class="row"> <div class="col-xs-4 col-xs-offset-4 text-center"> <img src="http://ansonalex.com/wp-content/uploads/2011/06/google-logo-768x260.png" alt="..." class="img-responsive"> </div> </div> </div> </div> </div> - css - .to-color { background-color: #000; } .to-overlay { opacity : 0.5; } .respo { background-image: url("https://source.unsplash.com/category/objects/1600x900"); background-position: center center;
Read more