Validating the XML Message validation schema

From PlatiOnline.EU
Revision as of 12:08, 2 April 2014 by PlatiOnline (talk | contribs)
Jump to: navigation, search

XML Authorization

Plati Online version 5.x

  1. Post URL: https://secure.plationline.eu/
  2. Request XML validation schema: https://secure.plationline.eu/xml_validation/po.request.v5.xsd
  3. XML_Message validation schema: https://secure.plationline.eu/xml_validation/f_message.auth.v5.xsd

Pseudo-code:

  1. Create the XML_Message;
  2. SOAP heders:
    • CONTENT_TYPE = text/xml; charset=utf-8
    • USER_AGENT = PlatiOnline-SOAP
    • SOAPACTION = auth-only
  3. Create a random 32 alphanumeric AES KEY;
  4. Encrypt the AES KEY with the RSA algorithm, this is the value of f_crypt_message tag;
  5. Encrypt the XML_Message with the AES algorithm using the AES KEY and the IV_AUTH, this is the value of f_message tag;
  6. Validate the Request XML using https://secure.plationline.eu/xml_validation/po.request.v5.xsd
  7. Post SOAP (version 1.1 or 1.2) to https://secure.plationline.eu/
    • SOAP version 1.1: CONTENT_TYPE = "text/xml; charset=utf-8" and HTTP_SOAPACTION = auth-only
    • SOAP version 1.2: CONTENT_TYPE = "application/soap+xml; charset=utf-8; action=auth-only"
Retrieved from "https://wiki.plationline.eu/index.php?title=Validating_the_XML_Message_validation_schema&oldid=29"