通用服務用戶端概觀

通用服務用戶端的用途在於傳送要求給使用 HTTP、JMS、WebSphere® MQ 或 Microsoft .NET 傳輸的任何服務。通用服務用戶端也會顯示服務所傳回的回應。

當您無法存取專用用戶端來傳送要求時,通用服務用戶端對於除錯或測試服務很有用。您可以設定服務的多樣傳輸和安全配置、編輯要求參數,以及傳送附件。

當順利呼叫要求時,會將其訊息回覆新增至要求歷程中。您可以利用這項特性,回顧不同時間產生的結果。

如果您使用 IBM® Rational® Performance TesterIBM Rational Service Tester for SOA Quality,您可以選取要求歷程中的要求,然後按一下產生測試,來產生測試,以便重播所有選取的要求。您可以編輯測試,用變數測試資料來取代所記錄的測試值,或是在測試中新增動態資料相關性。您也可以在服務回應的 XML 文件內容上設定驗證點。

支援的服務

通用服務用戶端可讓您針對使用下列傳輸通訊協定的多種類型服務,來傳送要求:
  • HTTP
  • Java™ 訊息服務 (JMS),包括 JBoss 和 WebSphere 實作
  • WebSphere MQ
  • Microsoft .NET Framework Windows Communication Foundation (WCF)。
註: 如果您使用 IBM Rational AppScan®,則只支援 HTTP 傳輸通訊協定。

Encryption and security

The Java Runtime Environment (JRE) that the workbench uses must support the level of encryption required by the digital certificate that you select. For example, you cannot use a digital certificate that requires 256-bit encryption with a JRE that supports only 128-bit encryption. By default, the workbench is configured with restricted or limited strength ciphers. To use less restricted encryption algorithms, you must download and apply the unlimited jurisdiction policy files (local_policy.jar and US_export_policy.jar).

You can download unlimited jurisdiction policy files from this site: http://www.ibm.com/developerworks/java/jdk/security/50/

Click on IBM SDK Policy files, and then log in to developerWorks® to obtain the unlimited jurisdiction policy files. Before installing these policy files, back up the existing policy files in case you want to restore the original files later. Then overwrite the files in /jre/lib/security/ directory with the unlimited jurisdiction policy files.

SSL Authentication

Service tests support simple or double SSL authentication mechanisms:
  • Simple authentication (server authentication): In this case, the test client needs to determine whether the service can be trusted. You do not need to setup a key store. If you select the Always trust option, you do not need to provide a server certificat key store.

    If you want to really authenticate the service, you can configure an certificate trust store, which contains the certificates of trusted services. In this case, the test will expect to receive a valid certificate.

  • Double authentication (client and server authentication): In this case, the service needs to authenticate the test client according to its root authority. You must provide the client certificate keystore that needs to be produced to authenticate the test as a certified client.

When recording a service test through a proxy, the recording proxy sits between the service and the client. In this case, you must configure the SSL settings of the recording proxy to authenticate itself as the actual service to the client (for simple authentication), and as the client to the service (for double authentication). This means that you must supply the recording proxy with the adequate certificates.

When using stub services, you can also configure the SSL settings of the stub service to authenticate itself as the actual server. This means that you must supply the service stub with the adequate certificate.

Digital certificates

You can test services with digital certificates for both SSL and SOAP security protocol. Digital certificates must be contained in Java Key Store (JKS) keystore resources that are accessible in the workspace. When dealing with keystore files, you must set the password required to access the keys both in the security editor and the test editor. For SOAP security you might have to provide an explicit name for the key and provide a password to access the private keys in the keystore.

If you are deploying tests to agent computers, these files must also be added to the JRE that the IBM Agent Controller uses.

限制

不支援陣列。

由於缺乏規格,使用「Java 訊息服務 (JMS)」傳輸時,不支援附件。封套是利用 UTF-8 編碼直接傳送。

並非所有的安全演算法都能用於每個「Java 執行時期環境 (JRE)」實作。如果特定的安全實作無法使用,請將必要的程式庫新增至這項產品使用之 JRE 的類別路徑。

通用服務測試程式會顯示 XML 文件中所反映的封套。不過,安全演算法會將封套視為二進位。因此,您必須設定 SOAP 安全配置,讓送入及送出的訊息能正確加密,又能在測試內維持解密。

Microsoft .NET 傳輸通訊協定不支援交易、範圍或雙工模式要求,例如:以 MS-MQ 傳輸為基礎的回呼或雙向服務。


意見