Linux, windows, asterisk, vmware

Tags

Kategorien



Archiv
Meta:
Feb
26.
Perl SOAP::LITE WS Security and Addressing for Soap service
No Comments
Category: Uncategorized

I had alot of issues when trying to make SOAP-lite work with WS-Security, so here is a complete example below of a working service with WSSE

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
#!/usr/bin/perl

use SOAP::Lite +trace => 'debug';
$SOAP::Constants::PREFIX_ENV = "soapenv";
my $soap = SOAP::Lite
    -> proxy ('<strong>Enter Proxy URL HERE</strong>)
        -> on_action( sub {join '', '"urn:Process"',''} )
    -> readable(true); # make the XML readable, set this to false or comment out on production

#Change some HTTP Header defaults
$SOAP::Constants::DEFAULT_HTTP_CONTENT_TYPE
      = 'text/xml';
#Add some custom Name Spaces to the soapenv:Envronment
$soap->serializer->register_ns("http://api.payovation.com/xsd","xmlns:xsd");
$soap->serializer->register_ns("http://api.payovation.com","xmlns:api");
$soap->serializer->register_ns("http://www.w3.org/2005/08/addressing","xmlns:wsa");
#Need todo some funky business with the SoapAction --> See ->on_action as it joins.
$soap->default_ns('api:Process');
$soap->autotype(1);
$soap->outputxml('true');

#setup Username and Password, Get this from your Welcome email.
my $username = "testshayne";
#MD5 password
my $password = "8eee3efdde1eb6cf6639a58848362bf4";

#TODO: create a random word for the nounce, instead of using static base64_encode nounce
my $nonce = "4djRSlpeyWeGzcNgatneSA==";
#TODO: Auto create timestamp
my $timestamp = "2005-2-5T17:18:15Z";

#TODO - Get the digest to work! - This will enable the WSSE Password Digest, instead of using PlainText md5 password
#my $digest = MIME::Base64::encode_base64(Digest::SHA1::sha1(MIME::Base64::decode_base64($nonce) . $timestamp . $password), '');

#Build the WS Security Headers.
my $security=SOAP::Header->name("wsse:Security")->attr({'soapenv:mustUnderstand'=>1,'xmlns:wsse'=>'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd'});

my $userToken =SOAP::Header->name("wsse:UsernameToken" =>
                                   \SOAP::Header->value(
                                    SOAP::Header->name('wsse:Username')->value($username)->type(''),
                                    SOAP::Header->name('wsse:Password')->value($password)->type('')->attr({'Type'=>'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText'}),
                                    SOAP::Header->name('wsse:Nonce')->value($nonce)->type('')->attr({'EncodingType'=>'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary'}),
                                   
                                    SOAP::Header->name('wsu:Created')->value($timestamp)->type(''))
                                        )->attr({'xmlns:wsu'=>'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd'});
                                       
my $address="http://www.w3.org/2005/08/addressing";
my $addressing=SOAP::Header->name("wsa:ReplyTo" => \SOAP::Header->value(SOAP::Header->name('wsa:Address')->value($address)->type('')));
my $action=SOAP::Header->name('wsa:Action')->value('urn:Process')->type('')->attr({'soapenv:mustUnderstand'=>'1'});
my $message=SOAP::Header->name('wsa:MessageID')->value('uuid:7176ecf3-1066-4e97-99da-0aef3f5c12c8')->type('')->attr({'soapenv:mustUnderstand'=>'1'});

#Set minimum values to pass to the API

my $Amount = '100.00';
my $Currency = 'USD';
my $AttemptMode = '1';
my $IPAddress = '192.168.120.157';
my $Email = 'bob10@bob.com';
my $FirstName = 'Bob';
my $LastName = 'Builder';
my $Address1 = '450 Queen St';
my $Address2 = 'City';
my $City = 'Brisbane';
my $State = 'Queensland';
my $Country = 'AU';
my $Postcode = '4000';
my $Phone = 'XXXXXXXX';
my $CardName = 'Bob';
my $CardNumber = 'XXXXXXXXXXXXXXXX';
my $ExpiryMonth = '04';
my $ExpiryYear = '2010';
my $CVV = '123';
my $SiteId = 'XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX';
my $TestTransaction = 'true';
my $TuringKey = 'XXXXX';
my $Product = 'Shoes';
my $Note = 'Transaction for Shoes';
my $CustomerRef ='wo0t2';

#build the array

my $arrAmount = (\SOAP::Data->value(
    SOAP::Data->name('api:Amount')->value($Amount)->type(''),
    SOAP::Data->name('api:Currency')->value($Currency)->type('')
));
my $details = (\SOAP::Data->value(
        SOAP::Data->name('api:FirstName')->value($FirstName)->type(''),
        SOAP::Data->name('api:LastName')->value($LastName)->type(''),
        SOAP::Data->name('api:Address1')->value($Address1)->type(''),
        SOAP::Data->name('api:Address2')->value($Address2)->type(''),
        SOAP::Data->name('api:City')->value($City)->type(''),
        SOAP::Data->name('api:State')->value($State)->type(''),
        SOAP::Data->name('api:Country')->value($Country)->type(''),
        SOAP::Data->name('api:Postcode')->value($Postcode)->type(''),
        SOAP::Data->name('api:Phone')->value($Phone)->type(''),

)->type(''));
my $arrCustDetails = (\SOAP::Data->value(
    SOAP::Data->name('api:Details')->value($details)->type(''),
    SOAP::Data->name('api:CustomerRef')->value($CustomerRef)->type(''),
    SOAP::Data->name('api:Email')->value($Email)->type(''),
    SOAP::Data->name('api:IPAddress')->value($IPAddress)->type('')
));
my $arrCardDetails = (\SOAP::Data->value(
    SOAP::Data->name('api:CardName')->value($CardName)->type(''),
    SOAP::Data->name('api:CardNumber')->value($CardNumber)->type(''),
    SOAP::Data->name('api:ExpiryMonth')->value($ExpiryMonth)->type(''),
    SOAP::Data->name('api:ExpiryYear')->value($ExpiryYear)->type(''),
    SOAP::Data->name('api:CVV')->value($CVV)->type('')));

#package the final array                   
my $params = ( SOAP::Data->value(
    SOAP::Data->name('api:CardDetails' => $arrCardDetails),
    SOAP::Data->name('api:Customer' => $arrCustDetails),
    SOAP::Data->name('api:Amount' => $arrAmount),
    SOAP::Data->name('api:AttemptMode')->value($AttemptMode)->type(''),
    SOAP::Data->name('api:Note')->value($Note)->type(''),
    SOAP::Data->name('api:Product')->value($Product)->type(''),
    SOAP::Data->name('api:SiteId')->value($SiteId)->type(''),
    SOAP::Data->name('api:TuringKey')->value($TuringKey)->type(''),
    SOAP::Data->name('api:TestTransaction')->value($TestTransaction)->type('')
));

#Set the envrionment prefix for Process
$process ='api:Process';
#send our request and process a transaction
print $soap->$process($params, $security->value(\$userToken, $action, $message));

Popularity: 1% [?]


Jan
08.
HTC Hero Android 2.1
No Comments
Category: Uncategorized

While Google has launched the Nexus One, HTC Hero owners are still awaiting for the long promised ROM updated direct from HTC.

I have a gut feeling that Google has something todo with this, after looking at the added features with the Google Nexus One, the HTC Hero with it’s current version of Android is still far Superior phone with the HTC Sense UI, moving the HTC Hero to Android 2.1 with the HTC Sense UI is going to be a 100% better phone then the Nexus One….. Maybe Google is worried it will stall their sales, who knows.

Anybody else got any suggestions on this one?

Popularity: 2% [?]


Sep
21.
HTC HERO, Australia Thee Hutchinson
No Comments
Category: Uncategorized

I Received my HTC Hero two days ago, I was worried about all the reports of Lag when using the phone! however HTC have released a ROM update, After following the instructions on their website, The phone is now lighting fast!

I purchased my HTC hero from a Victoria supplier, the phone was shipped within one week of ordering.

  • No SD card was included with the Phone, I purchased a 8GB SDHC card separately.
  • The phone works well on the Three network, the phone reception is a little weak, however i’m awaiting for a Three ROM release or some other Aussie ROM release to see if this fixes the weak signal issue, other then that I’m very happy with this phone.

Popularity: 6% [?]


Sep
17.
Simplic8hosting.com has now been launched!
No Comments
Category: Uncategorized

Simplic8hosting.com has now been launched!

We are offering $1.99 hosting to launch our new hosting solution

What do you get for $1.99 ?

  • Automated account creation
  • Cpanel Access
  • SiteBuilder
  • 100MB of disk space
  • 1GB Of Bandwith each month!
  • Unlimited Email accounts
  • Unlimited Databases
  • Ruby On Rails
  • PHP
  • MySql

This hosting package is suitable for small websites, or Blogs! Host your own wordpress blog or small personal website. Other plans are available and if you need a tailored solution, please use the contact link on the main website.

Popularity: 6% [?]


Jul
22.
Kerberos Authentication setup RHEL4 Windows Server 2003
No Comments
Category: Uncategorized

Kerberos Authentication setup

Install the following packages

up2date krb5-workstation

update the contents of /etc/krb5.conf to the following.

[logging]
 default = FILE:/var/log/krb5libs.log
 kdc = FILE:/var/log/krb5kdc.log
 admin_server = FILE:/var/log/kadmind.log
 default_keytab_file = /usr/local/apache2/conf/devwiki.HTTP.keytab
[libdefaults]
 default_realm = DOMAIN.LOCAL
 ticket_lifetime = 24h
 forwardable = yes
 dns_lookup_realm = true
 dns_lookup_kdc = true
[realms]
 DOMAIN.LOCAL = {
  kdc = ad1.domain.local
  admin_server = ad1.domain.local
  default_domain = domain.local
 }

[domain_realm]
 wiki.dev = DOMAIN.LOCAL
 .domain.local = DOMAIN.LOCAL
 domain.local = DOMAIN.LOCAL

[kdc]
 profile = /var/kerberos/krb5kdc/kdc.conf

[appdefaults]
 pam = {
   debug = false
   ticket_lifetime = 36000
   renew_lifetime = 36000
   forwardable = true
   krb4_convert = false
   external = sshd
   use_shmem = sshd
 }

nano /etc/hosts

make sure “10.1.xxx.xxx ad1.domain.local ad1” is in the hosts file.

# Do not remove the following line, or various programs
# that require network functionality will fail.
127.0.0.1       dv1.domain.local    dv1 localhost.localdomain       localhost
10.1.200.101    ad1.domain.local    ad1

Test that Kerberos is authenticating to AD1.domain.local

[root@dv1 conf]# kinit aduser@DOMAIN.LOCAL
Password for aduser@DOMAIN.LOCAL:
[root@dv1 conf]# klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: aduser@DOMAIN.LOCAL

Valid starting     Expires            Service principal
07/20/09 23:34:26  07/21/09 09:34:34  krbtgt/DOMAIN.LOCAL@DOMAIN.LOCAL
	renew until 07/21/09 23:34:26

Kerberos 4 ticket cache: /tmp/tkt0
klist: You have no tickets cached
[root@dv1 conf]# kdestroy
[root@dv1 conf]#

update pam system-auth “nano /etc/pam.d/system-auth”

auth        required      /lib/security/$ISA/pam_env.so
auth        sufficient    /lib/security/$ISA/pam_unix.so likeauth nullok
auth        sufficient    /lib/security/$ISA/pam_krb5.so use_first_pass
auth        required      /lib/security/$ISA/pam_deny.so

account     required      /lib/security/$ISA/pam_unix.so broken_shadow
account     sufficient    /lib/security/$ISA/pam_succeed_if.so uid < 100 quiet
account     [default=bad success=ok user_unknown=ignore] /lib/security/$ISA/pam_krb5.so
account     required      /lib/security/$ISA/pam_permit.so

password    requisite     /lib/security/$ISA/pam_cracklib.so retry=3
password    sufficient    /lib/security/$ISA/pam_unix.so nullok use_authtok md5 shadow
password    sufficient    /lib/security/$ISA/pam_krb5.so use_authtok
password    required      /lib/security/$ISA/pam_deny.so

session     required      /lib/security/$ISA/pam_limits.so
session     required      /lib/security/$ISA/pam_unix.so
session     optional      /lib/security/$ISA/pam_krb5.so

Test changes to /etc/pam.d/system-auth

You will need to add a local user to the system first, before it will authenticate that user against Active Directory.

adduser aduser

passwd aduser

[root@dv1 conf]# ssh aduser@localhost
********************************************************************************
*                                                                              *
*                          ----------------------                              *
*                                  WARNING                                     *
*                          AUTHORISED USERS ONLY!                              *
*                          ----------------------                              *
*                                                                              *
*                                                                              *
*  The information on this computer and network is the intellectual property   *
*  of a private corporation and is protected by intellectual property rights.  *
*                                                                              *
*  You must be assigned an account on this computer to access information      *
*  and must only access information as defined by the system administrators.   *
*                                                                              *
*  Your activities may be monitored. Use of this computer implies consent to   *
*  monitoring.                                                                 *
*                                                                              *
********************************************************************************
aduser@localhost's password:
Last login: Mon Jul 20 02:54:31 2009 from 10.1.200.150
[aduser@dv1 ~]$

Popularity: 9% [?]


Jun
11.
Ubuntu 9.10 Linux Desktop Screenshot
2 Comments
Category: Uncategorized
Ubuntu Desktop

Ubuntu Desktop

Popularity: 100% [?]



Powered by Wordpress
Theme © 2005 - 2009 FrederikM.de
BlueMod is a modification of the blueblog_DE Theme by Oliver Wunder

4,857 views