嗨,我正在使用 C# 中的 SOAP 在线连接动态以添加自定义实体。正在使用的登录类型是 Windows Live 帐户。
当我尝试连接到服务器 atm 时遇到了一个奇怪的错误,它似乎只是从很少的解释开始。
当我尝试使用 windows live 进行身份验证时,我收到一个 xml 响应 [最后发布],其中包含一条错误消息“凭据被阻止。”但是,当我尝试使用假用户名连接时,我知道这是无效的,我得到“输入并存储密码不匹配。”
我检查了我的 xml 响应,并且我的设备注册正常。它只是身份验证位。
crm 是否有可能以某种方式阻止了此登录(它仍然适用于登录 crm 本身,只是不适用于此肥皂登录)?
有没有办法将用户名列入白名单?
这是我发送以获取安全令牌的 xml:
<s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
xmlns:a="http://www.w3.org/2005/08/addressing"
xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
<s:Header>
<a:Action s:mustUnderstand="1">
http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue</a:Action>
<a:MessageID>
urn:uuid:88dea52e-97a3-4222-82cd-3c4cde5e3e2f</a:MessageID>
<a:ReplyTo>
<a:Address>
http://www.w3.org/2005/08/addressing/anonymous</a:Address>
</a:ReplyTo>
<VsDebuggerCausalityData xmlns="http://schemas.microsoft.com/vstudio/diagnostics/servicemodelsink">
uIDPozBEz+P/wJdOhoN2XNauvYcAAAAAK0Y6fOjvMEqbgs9ivCmFPaZlxcAnCJ1GiX+Rpi09nSYACQAA</VsDebuggerCausalityData>
<a:To s:mustUnderstand="1">
https://login.live.com/extSTS.srf</a:To>
<o:Security s:mustUnderstand="1"
xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
<u:Timestamp u:Id="_0">
<u:Created>2013-04-19T12:41:25.256Z</u:Created>
<u:Expires>2013-04-19T12:46:25.256Z</u:Expires>
</u:Timestamp>
<o:UsernameToken u:Id="user">
<o:Username>==USERNAME REMOVED FOR POST==</o:Username>
<o:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">
==PASSWORD REMOVED FOR POST==</o:Password>
</o:UsernameToken>
<wsse:BinarySecurityToken ValueType="urn:liveid:device"
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
<EncryptedData Id="BinaryDAToken0"
Type="http://www.w3.org/2001/04/xmlenc#Element"
xmlns="http://www.w3.org/2001/04/xmlenc#">
<EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc">
</EncryptionMethod>
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:KeyName>http://Passport.NET/STS</ds:KeyName>
</ds:KeyInfo>
<CipherData>
<CipherValue>
==LONG CYPHER VALUE REMOVED FOR POST==
</CipherValue>
</CipherData>
</EncryptedData>
</wsse:BinarySecurityToken>
</o:Security>
</s:Header>
<s:Body>
<t:RequestSecurityToken xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust">
<wsp:AppliesTo xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy">
<a:EndpointReference>
<a:Address>urn:crmemea:dynamics.com</a:Address>
</a:EndpointReference>
</wsp:AppliesTo>
<wsp:PolicyReference URI="MBI_FED_SSL"
xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy" />
<t:RequestType>
http://schemas.xmlsoap.org/ws/2005/02/trust/Issue</t:RequestType>
</t:RequestSecurityToken>
</s:Body>
</s:Envelope>
这是我得到的回应:
<?xml version="1.0" encoding="utf-8" ?>
<S:Envelope xmlns:S="http://www.w3.org/2003/05/soap-envelope" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:wst="http://schemas.xmlsoap.org/ws/2005/02/trust" xmlns:psf="http://schemas.microsoft.com/Passport/SoapServices/SOAPFault">
<S:Body>
<S:Fault>
<S:Code>
<S:Value>
S:Sender</S:Value>
<S:Subcode>
<S:Value>
wst:FailedAuthentication</S:Value>
</S:Subcode>
</S:Code>
<S:Reason>
<S:Text xml:lang="en-US">
Authentication Failure</S:Text>
</S:Reason>
<S:Detail>
<psf:error>
<psf:value>
0x80048823</psf:value>
<psf:internalerror>
<psf:code>
0x80041010</psf:code>
<psf:text>
The credential is blocked.
</psf:text>
</psf:internalerror>
</psf:error>
</S:Detail>
</S:Fault>
</S:Body>
</S:Envelope>