webServices with 1 way SSL

, ,
1

Hello All

Hope you are doing well.

I am using wM9.8. KIndly share your thoughts on the below need.

I am the consumer of the webService, provider asked us to use 1 way SSL where as they shared public key with us and process the message. They asked us to send the signature as part of a string which is an input of webService. As per them they Sign the message with their private key and share the payLoad sting with us.

Steps followed to process the message at our side ( consumer side )

  1. Created a truststore with their given publidcertificate as part of IS admin

As part of flow service followed below steps

  1. used string.base64Decode service which takes string nad geneated byte
  2. used getCertificate service passing trustStoreAlias, certAlias which returns certificate deails in byte
  3. used verify service, mapping byte returned from step1 to signature field,data is mapped with byte of step1, detachedSignature to false
    and as part of signerCertChain with output of step2.

Can someone suggest are the above steps are valid.

BR, Anil.

2

Looks like you are in right track but not sure as I didn’t implement.

RMG/Holger/Others can better give their views.

Thanks,

3

Hi,

please check the WebService Developers Guide as well as the Built-In-Services Guide for further infomations.

Please check for chapters referring to signing/crypting/decrypting of messages.

Regards,
Holger