Difference between revisions of "Validating the XML Message validation schema"

From PlatiOnline.EU
Jump to: navigation, search
m
Line 2: Line 2:
  
 
'''Plati Online version 5.x'''
 
'''Plati Online version 5.x'''
#Post URL: https://secure.plationline.eu/
+
#Post URL: '''https://secure.plationline.eu/'''
#Request XML validation schema: https://secure2.plationline.ro/xml_validation/po.request.v5.xsd
+
#Request XML validation schema: '''https://secure.plationline.eu/xml_validation/po.request.v5.xsd'''
#XML_Message validation schema: https://secure2.plationline.ro/xml_validation/f_message.auth.v5.xsd
+
#XML_Message validation schema: '''https://secure.plationline.eu/xml_validation/f_message.auth.v5.xsd'''
  
 
Pseudo-code:
 
Pseudo-code:
Line 12: Line 12:
 
#*USER_AGENT = '''PlatiOnline-SOAP'''
 
#*USER_AGENT = '''PlatiOnline-SOAP'''
 
#*SOAPACTION = '''auth-only'''
 
#*SOAPACTION = '''auth-only'''
#Create a random 32 alphanumeric AES KEY;
+
#Create a random 32 alphanumeric '''AES KEY''';
#Encrypt the AES KEY with the RSA algorithm, UrlEncode this hash (this is the value of F_CRYPT_MESSAGE);
+
#Encrypt the '''AES KEY''' with the '''RSA''' algorithm, this is the value of '''f_crypt_message''' tag;
#Encrypt the XML_Message with the AES algoritm using the AES KEY and the IV_AUTH, UrlEncode this hash (this is the value of F_MESSAGE field);
+
#Encrypt the '''XML_Message''' with the AES algorithm using the '''AES KEY''' and the '''IV_AUTH''', this is the value of '''f_message''' tag;
#Post the F_LOGIN, F_MESSAGE and F_CRYPT_MESSAGE to https://secure.plationline.eu/
+
#Validate the '''Request XML''' using '''https://secure.plationline.eu/xml_validation/po.request.v5.xsd'''
 +
#Post SOAP (version 1.1 or 1.2) to https://secure.plationline.eu/
 +
#*SOAP version 1.1: '''CONTENT_TYPE = "text/xml; charset=utf-8"''' and '''HTTP_SOAPACTION = auth-only '''
 +
#*SOAP version 1.2: '''CONTENT_TYPE = "application/soap+xml; charset=utf-8; action=auth-only" '''

Revision as of 12:08, 2 April 2014

XML Authorization

Plati Online version 5.x

  1. Post URL: https://secure.plationline.eu/
  2. Request XML validation schema: https://secure.plationline.eu/xml_validation/po.request.v5.xsd
  3. XML_Message validation schema: https://secure.plationline.eu/xml_validation/f_message.auth.v5.xsd

Pseudo-code:

  1. Create the XML_Message;
  2. SOAP heders:
    • CONTENT_TYPE = text/xml; charset=utf-8
    • USER_AGENT = PlatiOnline-SOAP
    • SOAPACTION = auth-only
  3. Create a random 32 alphanumeric AES KEY;
  4. Encrypt the AES KEY with the RSA algorithm, this is the value of f_crypt_message tag;
  5. Encrypt the XML_Message with the AES algorithm using the AES KEY and the IV_AUTH, this is the value of f_message tag;
  6. Validate the Request XML using https://secure.plationline.eu/xml_validation/po.request.v5.xsd
  7. Post SOAP (version 1.1 or 1.2) to https://secure.plationline.eu/
    • SOAP version 1.1: CONTENT_TYPE = "text/xml; charset=utf-8" and HTTP_SOAPACTION = auth-only
    • SOAP version 1.2: CONTENT_TYPE = "application/soap+xml; charset=utf-8; action=auth-only"
Retrieved from "https://wiki.plationline.eu/index.php?title=Validating_the_XML_Message_validation_schema&oldid=29"