如何在PHP中解密加密的soap响应？

I am trying to implement a webservice using PHP SoapClient. The Webservice is protected with WS-Security. I am using this package https://github.com/robrichards/wse-php and followed the examples provided within the package.

I applied UsernameToken, signed the headers & body and sent encrypted request to the webservice.

Below is the code snippet:

<?php
define('PRIVATE_KEY', dirname(__FILE__) . '/private.pem');
define('SERVICE_CERT', dirname(__FILE__) . '/downloadedfromwebpage.cer');
define('CERT_FILE', dirname(__FILE__) . '/convertedfromCER.pem');

class MySoap extends SoapClient {
    function __doRequest($request, $location, $saction, $version) {
        $doc = new DOMDocument('1.0');
        $doc->loadXML($request);

        $objWSSE = new WSSESoap($doc);

        // add Timestamp with no expiration timestamp
        $objWSSE->signAllHeaders = true; 
        $objWSSE->addTimestamp();

        // create new XMLSec Key using AES256_CBC and type is private key
        $objKey = new XMLSecurityKey(XMLSecurityKey::RSA_SHA1, array('type'=>'private'));

        // load the private key from file - last arg is bool if key in file (TRUE) or is string (FALSE)
        $objKey->loadKey(PRIVATE_KEY, TRUE);

        // Sign the message - also signs appropiate WS-Security items
        $options = array("insertBefore" => FALSE, "");
        $objWSSE->signSoapDoc($objKey, $options);

        // Add certificate (BinarySecurityToken) to the message
        $token = $objWSSE->addBinaryToken(file_get_contents(CERT_FILE));

        // Attach pointer to Signature
        $objWSSE->attachTokentoSig($token);

        $objKey = new XMLSecurityKey(XMLSecurityKey::AES256_CBC);
        $objKey->generateSessionKey();

        $siteKey = new XMLSecurityKey(XMLSecurityKey::RSA_OAEP_MGF1P, array('type'=>'public'));
        $siteKey->loadKey(SERVICE_CERT, TRUE, TRUE);

        $options = array("KeyInfo" => array("X509SubjectKeyIdentifier" => true));
        $objWSSE->encryptSoapDoc($siteKey, $objKey, $options);

        $retVal = parent::__doRequest($objWSSE->saveXML(), $location, $saction, $version);

        #return $retVal;
        $doc = new DOMDocument();
        $doc->loadXML($retVal);

        $options = array("keys" => array("private" => array("key" => PRIVATE_KEY, "isFile" => true, "isCert" => false)));
        $objWSSE->decryptSoapDoc($doc, $options); // Here it always throws exception "Failure decrypting Data"

        return $doc->saveXML();
    }
}

I am receiving the encrypted response but i am not able to decrypt it. It always throws me exception "Failure decrypting Data".
Any help is much appreciated.

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

报告相同问题？

关注问题

在Nodejs中加密并在PHP中解密 php
2019-02-02 14:40

回答 1 已采纳 Your method is not secure and can also be victim to man in the middle attacks, you should always u
在PHP中加密文本并在Python中解密 php python
2019-01-14 06:49

回答 1 已采纳 The main issue here is that you're using different key-size. PHP's openssl_encrypt determines the
AES在终端加密并在PHP中解密 php
2017-12-09 12:46

回答 1 已采纳 OpenSSL uses a proprietary KDF that you probably don't want to put the effort in to reproduce in P
bi java lajp 和php_PHP SM2 国密算法与 CURL SSL 双向认证
2021-01-15 18:35

weixin_40001634的博客最近在对接民生银行的电子账户接口，按照民生的要求，调用接口需要涉及 SM2 ...1、SM2 国密算法针对接口请求参数的加密加签及响应数据的解密验签操作，民生银行的要求如下：对数据进行 PKCS#7 带原文签名，并将签...
在PHP中加密，在IOS中解密 ios objective-c php
2017-03-20 21:10

回答 3 已采纳 I ended up getting this to work using RNCryptor because it has versions for both IOS and PHP, and
PHP - 无论如何在PHP中加密/解密哈希？ [关闭] php
2017-06-08 11:40

回答 2 已采纳 Hashing algorithms are not encryption algorithms. Hashing algorithms have the following principles
ras加密解密用PHP解密的时候没有作用 javascript php 后端
2021-09-01 10:50

回答 2 已采纳 +号在URL地址栏中是空白字符，服务器端获取后你箭头的地方变空格了，要发送+号，发送前用encodeURIComponent编码下数据，如 var s='123+abc'; s=encodeURICo
CTF php反序列化总结
2022-11-17 11:36

E1gHt_1的博客前言：本⼈⽔平不⾼，只能做⼀些类似收集总结这样的⼯作，本篇文章是我自己在学php反序列化写的...在反序列化的过程中自动触发了某些魔术方法。当进行反序列化的时候就有可能会触发对象中的一些魔术方法。常用魔术方法
java 对应php的 3DES CBC PKCS7 解密方式？ c# java php
2022-06-06 09:48

回答 2 已采纳题主的问题，我曾经遇到过类似的。可以和加密方确认下，在加密过程中，是否对加密内容进行了base64编码。我记得java实现这种加密时是不需要进行编码的。但是PHP的话这边，就得依赖base64加密。两
如何在PHP中回显解密数据 php
2017-12-07 08:30

回答 2 已采纳 Don't you need to use an alias here? SELECT aes_decrypt(pass, 'k') AS pass_decrypted FROM ... A
在Python和PHP上解密AES256 php python
2019-03-08 12:04

回答 1 已采纳 You are defining a 64-character key; that those 64 characters are hex digits is neither here nor t
PHP面试题大全
2019-12-20 09:54

Rudon滨海渔村的博客系统限制，只显示了2902行，请下载完整版： ...回答：PHP全称：Hypertext Preprocessor，是一种用来开发动态网站的服务器脚本语言。问题：什么是MVC？回答：MVC由Model（模型）, View（视图...
使用golang解密使用php openssl_encrypt加密的文件 php
2018-04-13 06:29

回答 1 已采纳 Let's take a step back and simplify: // encrypt.php <?php $iv = base64_decode("AJf3QItKM7+Lkh
Java发起SOAP请求代码参考
2023-12-20 23:04

顶子哥的博客目录文章所属专区超链接 2.加密参数 3.发起连接 4.解析返回数据参考 Java生成Soap请求响应实体,Java 生成wsdl请求响应实体 SOAP请求方式
php网络开发完全手册
2009-03-02 13:17

12.5 在JavaScript中调用PHP程序 196 12.5.1 页面的跳转 196 12.5.2 隐性调用PHP程序 196 12.6 JavaScript和PHP的综合实例——表单 12.6 验证 197 12.6.1 表单设计 197 12.6.2 JavaScript代码设计 199 12.6.3 PHP...
没有解决我的问题, 去提问

悬赏问题

¥15 关于大棚监测的pcb板设计
¥15 stm32开发clion时遇到的编译问题
¥15 lna设计源简并电感型共源放大器
¥15 如何用Labview在myRIO上做LCD显示？(语言-开发语言)
¥15 Vue3地图和异步函数使用
¥15 C++ yoloV5改写遇到的问题
¥20 win11修改中文用户名路径
¥15 win2012磁盘空间不足,c盘正常，d盘无法写入
¥15 用土力学知识进行土坡稳定性分析与挡土墙设计
¥70 PlayWright在Java上连接CDP关联本地Chrome启动失败,貌似是Windows端口转发问题

码龄粉丝数原力等级 --

如何在PHP中解密加密的soap响应？

0条回答默认最新

悬赏问题

如何在PHP中解密加密的soap响应？

0条回答 默认 最新

悬赏问题

0条回答默认最新