Ajouter à la (aux) collection (s) Ajouter à enregistré
  1. Ingénierie
  2. Informatique
  3. Java

What are Web Services

publicité 
Panorama
sur les
Web Services
Didier DONSEZ
Université Joseph Fourier (Grenoble 1)
IMAG/LSR/ADELE
[email protected]
Agenda Web Services
èDefinition
èCore Technologies
ØSOAP
ØWSDL
ØUDDI
èRelated Technologies
èWeb Services and Security
Didier Donsez, Web Services
What’s a Web Service ???
èWhat are Web Services ?
ØBusiness objects that can be deployed and combined
over the internet, with loose dependence on
technologies and protocols.
Ø(Components of) modular applications deployed over
internet technologies, with a predictable format and
behaviour.
èYet another distributed objects technology ?
ØRemote invocation of Web services
ØDescribe Web services
ØRegister & Discover Web services
SOAP
WSDL
UDDI
èXML-based standards
Didier Donsez, Web Services
Architecture of an Web Service
Step 1 : Deployment
UDDI Directory
Registered web services
white
yellow
green
WSDL
WSDL
Description
Description
Web Services Providers
Web
Server
Web
Service
Web
Service
Application
Server
EAI
Business
&
Object Connectors Back Office
And
Business
Enterprise
Object
Systems
Business
Object
Didier Donsez, Web Services
Architecture of an Web Service
Step 2 : WS Registration
UDDI Directory
Registered web services
white
yellow
green
WSDL
WSDL
WSDL
Description
WSDL
Description
Description
Description
WSDL
WSDL
Description
Description
Web Services Providers
Web
Server
Web
Service
Web
Service
Application
Server
EAI
Business
&
Object Connectors Back Office
And
Business
Enterprise
Object
Systems
Business
Object
Didier Donsez, Web Services
Architecture of an Web Service
Step 3 : WS Discovery
UDDI Directory
Registered web services
white
yellow
green
WSDL
WSDL
WSDL
Description
WSDL
Description
Description
Description
Web Services Providers
Web
Server
Web Service Client
Web
Service
WSDL
Description
Business
Object
Web
Service
generated
stub
Application
Server
EAI
Business
&
Object Connectors Back Office
And
Business
Enterprise
Object
Systems
Business
Object
Didier Donsez, Web Services
Architecture of an Web Service
Step 4 : WS Invocation
UDDI Directory
Registered web services
white
yellow
green
WSDL
WSDL
WSDL
Description
WSDL
Description
Description
Description
Web Services Providers
SOAP
Web
Server
over
Web Service Client
HTTP, SMTP,…
Web
Service
WSDL
Description
Business
Object
Web
Service
generated
stub
Application
Server
EAI
Business
&
Object Connectors Back Office
And
Business
Enterprise
Object
Systems
Business
Object
Didier Donsez, Web Services
Who is involved ?
èTargets
ØB2B (Business To Business)
ØEAI (Enterprise Application Integration)
ØP2P (Peer to Peer)
èDefining the standards
ØW3C (SOAP, WSDL)
ØAriba/IBM/Microsoft (UDDI)
èFrameworks & Developing tools
ØMicroSoft .NET
ØSun JavaONE : J2EE + WebServices (JAXy y∈{M,P,R,…} )
ØApache, IBM, Oracle, BEA, Iona, Enhydra
Didier Donsez, Web Services
Extended
Core
Base
Business Process
BPML, WSFL, XLANG...
Management
tpaML
Discovery
UDDI
Description
WSDL
Transactions
BTP, XAMLN
Advanced
Security
SAML, XACML, XKMS
Web Services Architecture:
A wider picture
Exchange
SOAP
Transport
HTTP/HTTPR, SMTP/MIME, MOM/JMS...
D’après M.Pontacq, Evidian
Didier Donsez, Web Services
SOAP
Simple Access Object Protocol
èTransport
ØHTTP, RPC, MOM (JMS), SMTP/POP3/IMAP4 ...
èXML Encoding
ØXML serialization of simple/complex types
èMessage Structure : Envelope
ØHEADER : non functional aspects
lSession Context, Security context, Transaction context, …
ØBODY : functional aspects
lBusiness methods, …
èExample …
Didier Donsez, Web Services
SOAP Request / Response
Request SOAP envelope
Web Service
Client
Business
Object
<SOAP-ENV:Envelope xmlns:SOAP-ENV="...">
<SOAP-ENV:Header> non functional
</SOAP-ENV:Header>
<SOAP-ENV:Body>
<m:GetLastTradePrice xmlns:m="Some-URI">
<symbol>ACMECORP</symbol>
</m:GetLastTradePrice>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
Response SOAP envelope
<SOAP-ENV:Envelope xmlns:SOAP-ENV="...">
<SOAP-ENV:Body>
<m:GetLastTradePriceResponse
xmlns:m="Some-URI">
<Price>34.5</Price>
</m:GetLastTradePriceResponse>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
Web Service
Provider
Web
Server
Web
Service
Web
Service
Didier Donsez, Web Services
Deploy an JOnAS EB
as an Apache/SOAP WS
è Step 1 : Install (Apache &) TomCat & Apache/SOAP Servlet
è Step 2 : Deploy an (existing) Enterprise Bean with this file
<isd:service xmlns:isd="http://xml.apache.org/xml-soap/deployment"
id="urn:lastprice_web_service">
="org.apache.soap.providers.EntityEJBProvider"
="org.apache.soap.providers.StatelessEJBProvider"
="org.apache.soap.providers.StatefulEJBProvider"
<isd:provider
type
="Provider"
scope ="Scope"
="Request"
="Application"
="Session"
methods ="Lifecycle
="create lastprice"
…"& Business Methods">
<isd:option key="JNDIName" value="tradeprice"/>
<isd:option key="FullHomeInterfaceName"
value="com.mycomp.trade.TradePriceHome" />
<isd:option key="ContextProviderURL"
value="rmi:// trade.mycomp.com:1099/tradeprice" />/>
value="jrmi://trade.mycomp.com:12340/tradeprice"
<isd:option key="FullContextFactoryName"
value="org.objectweb.jeremie.libs.services.registry.jndi.JRMIInitialContextFactory
value="com.sun.jndi.rmi.registry.RegistryContextFactory" />
"/>
</isd:provider>
<isd:faultListener>org.apache.soap.server.DOMFaultListener</isd:faultListener>
</isd:service>
Didier Donsez, Web Services
WSDL
Web Service Description Language
èDescribe services as a set of operations and messages
bound to protocols and servers
èDefine a message
<message name="EntryMessage">
<part name="name" type="xsd:string"/>
<part name="address" type="typens:address"/>
</message>
èDefine a request/response service
<portType name="AddressBook">
<operation name="addEntry">
<input message="EntryMessage"/>
<output message="EntryMessage"/>
</operation>
</portType>
èDefine types, and bindings to transport protocols and servers.
Didier Donsez, Web Services
Generation
WSDL
Web Sv
(Java)
Web Sv
(C++)
Business
Object
(Java)
Web Sv
(ADA95)
Web Sv
(C#)
Business
Object
(C++)
WSDL Tk
Business
Object
(ADA95)
Business
Object
(C#)
WSDL
Description
WSDL Tk
Apache/SOAP
Deploy file
generated
Stub (Java)
generated
Stub (C++)
generated
Stub (ADA95)
generated
Stub (C#)
Didier Donsez, Web Services
UDDI
Universal Directory & Discovery Interface
èWorldwide directory of companies, services,
products...
ØWhite pages,
ØYellow pages,
ØGreen pages
è"Green pages“
ØNamespace to describe how to use the service, etc...
Identifier of who published the service
Unique identifier (tModelKey) of this service for registration
èAccessing web services
ØBindings declared in directory entries:
for example, (tModelKey, URL) associations
èUDDI directories, search engines
Øxmethods.net, soapware.org, salcentral.com, soap-wrc.com, …
Didier Donsez, Web Services
Other related technologies
èWSFL/XLang (Flow), WSCL (Conversation), …
è“Full Packages”
ØebXML (OASIS/UN initiative)
ldefine all the layers in the web services stack. That includes categories
such as registries, business process modeling, service descriptions, and
transport/packaging/messaging.
Øe-speak (open software platform)
ldesigned for supporting the description, registration, and discovery of eservices, the ability to compose multiple e-services into higher-level eservices, the ability to negotiate among e-services, and the ability to
manage e-service interactions.
ØBizTalk/.NET (Microsoft initiative)
ldefine all the layers in the web services stack. That includes four
categories, registries(UDDI), business modeling languages (X-Lang),
service descriptions (WSDL), and transport/packaging/messaging(SOAP).
ØRossettaNET, …
Didier Donsez, Web Services
Security and Web Services
SAML, XACML, XKMS
Web Service
Requestor
SSL/TLS, S/MIME, PGP
for transport layers
XML Sig, XML Enc
for presentation layers
SAML, XACML
Web Service
SAML, XACML
Web Service
XKMS
Trust Service
XKMS
XKMS
Didier Donsez, Web Services
Security and Web Services:
SAML, XACML, XKMS
èSAML (Security Assertion Markup Language)
ØXML-based security standard for exchanging authentication and
authorization information
Ødefines formats and protocols for exchanging and validating
"security assertions", which identify a user or a user's access rights
Øallows a single user session to span multiple enterprises and
multiple security managers (log in once at one site and access
all partner sites)
èXACML (eXtensible Access Control Markup Language)
Øcomplements SAML to define an XML schema for representing
authorization policies for XML objects.
èXKMS (XML Key Management Standard)
ØXML way of representing PKI (Public Key Infrastructure) certificates
and some of its operations (digital certification processing,
revocation status checking, etc.)
èRemark: SAML, XACML, XKMS use XML Sig & Enc
Didier Donsez, Web Services
Trust (Web) Services
èMotivation
ØGestion des PKI par des échanges basés sur des
messages XML transportés sur SOAP.
lEn évitant d’utiliser la syntaxe ASN.1
èStandards
ØXKMS XML Key Management Specification
lhttp://www.xmltrustcenter.org/xkms
lBasé sur
–XML Digital Signature http://www.w3.org/TR/xmldsig-core/
–XML Digital Encryption http://www.w3.org/TR/xmlenc-core/
Didier Donsez, Web Services
XKMS - XML Key Management System
èMotivation
Ø Replacer les formats et protocoles PKI (PKIX, Card Management
Services, OCSP, etc.) par des documents XML transportés par
SOAP.
èDéfinit les messages de requête et de réponse pour
Ø Requérir (request) un certificat
Ø Renouveler (renew) un certificat
Ø Valider (validate) un certificat (expiration, CRL, OCSP, etc.)
Ø Révoquer (revoke) un certificat (CRL)
èBasé sur XML Signature & XML Encryption
èW3C
Ø Initié
Ø XKMS XML Key Management Specification
l http://www.xmltrustcenter.org/xkms
Ø API Java : JSR 104 XML Trust Service APIs
Didier Donsez, Web Services
XKMS
Exemple de message de révocation
A request to revoke the key specified by <KeyID>
<?xml version="1.0"?>
<Request>
<Prototype>
<AssertionStatus>Invalid</AssertionStatus>
<KeyID>unique_key_identifier</KeyID>
<ds:KeyInfo>……</ds:KeyInfo>
</Prototype>
<AuthInfo>
<AuthUserInfo>
<ProofOfPossession>[RSA-Sign]</ProofOfPossesion>
</AuthUserInfo>
</AuthInfo>
<Respond>
<string>KeyName</string>
</Respond>
</Request>
Didier Donsez, Web Services
XKMS
Extension
èX-KRSS et CMS
èX-BULK (Baltimore)
Øgestion des clés pour des cartes SIM, des modems
Cable, …
ØMotivations : batchs
Didier Donsez, Web Services
Web services vendors offering
èHewlett-Packard's e-Speak and Netaction
èMicrosoft's .NET Framework and .NET MyServices
èIBM's Web Services Architecture
èOracle's Dynamic Services
èSun's Sun ONE
èBEA Web Services architecture based on WebLogic EBusiness Platform
èIona
èSilverStream SilverStream eXtend (runs on Websphere,
Weblogic and Silverstream)
èSystinet WASP (Web Applications and Services Platform)
(available for Apache)
èCapeClear CapeConnect
Didier Donsez, Web Services
Java ONE (Open Net Environment)
è Annoncé le 5/2/2001
è Ajout des techonologies Web Services dans J2EE
Ø SOAP, WSDL, UDDI, ebXML, …
è Nouvelles API (JSR)
Ø Context API
l Interface vers les données contextuelles d’un service Web
Ø JAX/RPC (Java API for XML based RPC)
l Interface aux protocoles de transport de message XML de type RPC (SOAP, W3C XP, …)
Ø JAXB (Java API for XML Data Binding)
l Correspondance automatique entre des objets Java et des données XML
Ø JAXM (Java API for XML Messaging)
l Interface aux protocoles de transport de messages XML : SOAP, ebXML Message Service
Ø JAXP (Java API for XML Processing)
l Gestion des arborescence DOM
Ø JAXR (Java API for XML Registries)
l Interface aux annuaires ebXML Registry/Repository et UDDI Business Registry
Ø JAXTX (XML Transactioning API for Java)
l Interface pour l’encaspulation et le transport de contextes transactionnels ACID et avancées
dans SOAP, …
Didier Donsez, Web Services
Web services and Open source arguments
èThesis: shift towards Web services has reduced the
attractiveness of the current generation of Open Source
Web products
èMicrosoft's Webserver has gained 5% in market share
at the expense of Apache
ØThey have turned the "good enough" argument against us. IIS on
.NET is a Web services delivery platform, but it's also a "good
enough" Webserver, if that's all the customer wants today
èWhat we need today is no longer a Web Server, but a
Web services delivery platform
èWhat we need to do now is add Open Source
implementations of Web services standards (WSDL,
UDDI, ebXML) to open source J2EE platforms
Actually, the choice is between either a
Java-Linux world, or a .NET world
Didier Donsez, Web Services
Open source Web services projects(1)
èApache XML project
Øincludes a Soap project that is an implementation of the draft W3C
SOAP protocol. It is based on, and supersedes, the IBM SOAP4J
implementation
èjUDDI (bowstreet)
Øis an open source Java-based implementation of a UDDI registry
and a toolkit for developers to build access to UDDI registries within
their own applications. jUDDI has been architected to allow it to
act as the UDDI front-end on top of existing directories and
databases.
èUDDI4J (IBM)
Øis a Java class library that provides an API to interact with a UDDI
registry. It can be used to easily develop a Java application that can
publish and find services in a UDDI registry.
Didier Donsez, Web Services
Open source Web services projects(2)
èWSDL4Py
Øan open-source Python library for WSDL 1.1 from IBM
èWSDL4J
Ø for Java Toolkit (IBM) allows the creation,
representation, and manipulation of WSDL documents
describing services
èEnhydra kSOAP
ØkSOAP is an SOAP API suitable for the Java 2
MicroEdition, based on kXML (a lean XML API with
optional WAP support -WBXML/WML-), and kUDDI
Didier Donsez, Web Services
Benefits
èMultiple languages, platforms, vendors
ØJava RMI requires java
ØDCOM requires Windows
èIndependent stardard organization (W3C)
ØUnlike Java RMI (Sun) and DCOM (Microsoft)
èSimple and interoperable
(what CORBA is not...)
ØXML is a widely understood and accepted technology
ØEasy to map from any language
ØSuitable for large and small systems:
lPDAs, Cell Phones, Consumer Electronics, Home Portals, …
Didier Donsez, Web Services
Comparaison
RMI
RPC
DCOM
CORBA
SOAP
Qui
SUN
SUN/OSF
MicroSoft
OMG
W3C
Plate-formes
Multi
Multi
Win32
Multi
Multi
Langages
de Programmation
Java
C, C++, …
C++, VB, VJ,
OPascal, …
Multi
Multi
Langages de
Définition de Service
Java
RPCGEN
ODL
IDL
WSDL
Réseau
TCP, HTTP, IIOP
customisable
TCP, UDP
IP/IPX
Firewall
Tunneling
HTTP
Nommage
RMI, Courtage JINI
IP+Port
IP+Nom
Sv Nom,
SvCourtage
IP+Port, URL
Courtage UDDI
Transaction
Non
Non
MTS
OTS, XA
Extension applicative
dans le header (BTP)
Sécurité
SSL,JAAS
Non
??
SSL
SSL, XKMS,
XACML, SAML
Extra
Chargement
dynamique
des classes
GIOP, IIOP, HTTP, HTTPR
Pluggable Transport Layer SMTP, MOM
HTTP
Services Communs
Services Sectoriels
Didier Donsez, Web Services
Documents connexes
Didier Richter | Paperjam Guide
Didier Richter | Paperjam Guide
java developer (m/w)
java developer (m/w)
10 rue de Metz, 5 Impasse de Metz
10 rue de Metz, 5 Impasse de Metz
Senior Java Developer - Galaxia Business park
Senior Java Developer - Galaxia Business park
rolland_patrice_cv_uk - Patrice Rolland
rolland_patrice_cv_uk - Patrice Rolland
backend developer 1
backend developer 1
Anthony BOSSAN Education Looking for opportunities in Product Management
Anthony BOSSAN Education Looking for opportunities in Product Management
MOHAN VINOTHKUMAR Phone: (+33) 782818078 | Email:
MOHAN VINOTHKUMAR Phone: (+33) 782818078 | Email:
Java Exercices
Java Exercices
Tobacco industry tactics in Belgium
Tobacco industry tactics in Belgium
THE ORIGINAL JAVA CARD GRID
THE ORIGINAL JAVA CARD GRID
Java - LSV
Java - LSV
sea in a jar
sea in a jar
resume - sysra
resume - sysra
341177501-Linear-Discriminant-Analysis-LDA-Tutorial
341177501-Linear-Discriminant-Analysis-LDA-Tutorial
Chaton java
Chaton java
Java™ Technologies for Interactive Television
Java™ Technologies for Interactive Television
Getting Started With Sun Java System Application Server 91 Update 2
Getting Started With Sun Java System Application Server 91 Update 2
Java™ Dynamic Management™ Architecture for Intelligent
Java™ Dynamic Management™ Architecture for Intelligent
Java - Heroku
Java - Heroku
SE Runtime Environment sun.boot.library.path C:\Program Files (x86)
SE Runtime Environment sun.boot.library.path C:\Program Files (x86)
JAVA WebSerivices
JAVA WebSerivices
Téléchargement
publicité