24 Enabling AS4-Based Message Exchange

This chapter describes how to enable AS4-based message (typically SOAP-based) exchange between trading partners in Oracle B2B.

This chapter contains the following sections:

• Introduction to AS4-Based Message Exchange

• Exchanging AS4-Based Service Messages with Custom WSDL File

• Setting Up Trading Partners and Hosts

• Message Partition Channels

• Duplicate Message Detection

• P-Mode Parameters

• Local Policy Attachment

• Use Case Scenarios

24.1 Introduction to AS4–Based Message Exchange

Applicability Statement4 (AS4) is a leading standard that aggregates the web service standards to provide necessary transactional features. It standardizes exception handling by defining acknowledgement receipts and error messages, and supports message choreographies. Oracle B2B supports the AS4 protocol in its exchange protocol stack for secure document-agnostic exchange of payloads using web services.

AS4 provides various features such as one-way push, one-way pull, reliability and security over web services. AS4 secures data with authentication, message integrity, non-repudiation of origin, and privacy features.

24.2 Exchanging AS4-Based Service Messages with Custom WSDL File

The support for AS4-based messages is available for both inbound and outbound directions. You need to create or use Generic WebService or upload a Web Service Definition Language (WSDL) file that you can customize according to your requirement.

AS4 ebHandler mandates SOAP 1.2, the requirements from BSP 1.1 that depend on SOAP 1.1 would not apply. Similarly, none of the requirements for DESCRIPTION (WSDL) or REGDATA (UDDI) apply here, as these are not used. In the case of SOAP 1.1, the SOAP fault will be received from the service.

It is not necessary to provide a WSDL, because AS4 eliminates WSDL complexity by avoiding the pitfalls of mapping document types and business processes to SOAP operations and actions. The existing Generic WSDL can be used with SOAP 1.2 support.

24.2.1 Exchanging Outbound Messages

From the backend Application (Fabric/AQ/JMS/File/FTP/SFTP) the message will be sent to B2B like other messages. In B2B the Agreement identification will happen based on the From/To/Action and Service or From/To/Doctype and Doc Revision.

Based on the Agreement Configuration, the message (any type of document) will be processed using AS4 Exchange Plugin, SOAP Packing and send through AS4 Transport as configured in the trading partner delivery channel. Based on the Configured delivery channel SYNC/None and Async mode of transport can be supported.

24.2.2 Exchanging Inbound Messages

Based on the registered AS4 WS listening channel the trading partner can post the message with appropriate AS4 headers. The user can register an AS4 endpoint using administration -> Listening Channel. The document will be identified based on the user message soap header or normal document identification flow. The message will be processed by AS4 exchange plugin and deliver to the configured backend application.

The AS4 Exchange can be identified by the following url:

http://docs.oasis-open.org/ebxml-msg/ebms/v3.0/ns/core/200704/

AS4 exchange plugin also uses WS-HTTP as transport layer. The generic SOAP exchange will use this for identify the exchange. The AS4 Exchange plugin is added much before Generic WS, so if the exchange is identified as AS4 then Generic Exchange will skip the identification layer.

The document identification will be based on the SOAP Header “CollaborationInfo” -> Action/Service combination. The trading partner Identification will be always based on the ebMS 3.0 specification, PartyInfo ->From/To partyId and type combination. There is no specific identifier for AS4, the user can configure custom identifier as part of the administration->types and use the same in partner profile configuration. Default identifier is name and any other Identified like duns. But there is no specific identifier for AS4 (no AS4 Identifier)

24.3 Setting up Trading Partners and Hosts

Oracle B2B provides support for AS4 web-service based message exchange with trading partners. This is achieved by having a composite with B2B binding, or AQ, JMS, File, FTP, or SFTP to initiate the payload from the backend application. The same can be sent to the trading partner using AS4.

On the inbound side, Oracle B2B receives the AS4 message and delivers it to the backend application using a SOA composite or through AQ, JMS, File, FTP, or SFTP. Oracle B2B can identify the incoming trading partner based on the SOAP envelope header “PartyInfo”.

To add the initiating trading partner and configure the trading partner delivery channel:

1. In Partner Configuration, click Partners.
2. Rename the host to your company name.
3. Click + to add a trading partner and enter the name of the partner.
4. Click the trading partner you just created.
5. Click the Documents tab to add the supported documents and click + to add the appropriate document.
6. Click the Channels tab and click + to add the exchange/transport.
7. In the Protocol list, select AS4-1.0.
8. If you have defined a custom WSDL file in admin, select it here. If you do not have a custom WSDL file, select the Use Generic SOAP option.
9. From the Service drop-down list, select Generic SOAPService.
10. From the Port drop-down list, select Generic Port.
11. From the SOAP Action drop-down list, select generic/soap/process.
12. Enter the URL of the endpoint.
    An example URL: http://myhost.com:7878/b2b/services/ws/tradingpartnername_listeningchannel
13. Click Save to save the details.

    Note:

    Follow the steps above to set up the responder as well, using the name of the responder in step 2.

24.4 Message Partition Channels

The Message partition channels (MPC) allows for partitioning the flow of the message from sender to receiver into several flows that can be controlled separately and consumed differently.

MPC allows:

• Setting the transfer priorities: Some messages may be transferred with higher priority than others regardless of the order which they have been submitted.

• Organizing the inflow of messages on the receiver side: Enables the receiver to dictate each flow in a distinct way.

The following figure shows an example of the MPC work flow for one-way pull transactions.

Description of the illustration GUID-CFE64215-C7A1-445C-A868-D6C332D9DD75-default.gif

This can be achieved in Oracle B2B’s existing sequencing mechanism. From the backend application, if the messages are sent with the “MPC” property, then MPC is used as a sequence message target. It is inserted into the appmessage table and sequence manager table. The messages cannot be processed by B2B until the pull message request is received.

Based on the pull message request the corresponding message is picked from the sequence manger table and enqueue into event queue. The message thenpasses through the agreement identification based on the From/To/Action/Service or From/To/Doctype/Docrevision. Based on the agreement configuration, the message is processed and sent to the trading partner as per the delivery channel configuration.

The message prioritization can be handled as part of pull request and response.

24.5 Duplicate Message Detection

The duplicate message detection feature provides the ability to detect the message duplication based on the message id. The existing duplicate detection feature is re-used for AS4.

It can be configured as part of the delivery channel. In case of inbound message flow, if the duplicate detection is enabled then the message duplication is identified and a fault message is sent to the message sender.

Example 24-1 Example — Duplicate Message Detection

The following message id is used to detect the message is duplicated or not.

eb:MessageInfo/eb:MessageId.

24.6 P-Mode Parameters

B2B supports P-Mode parameters. The parameters relevant to AS4 features are listed here.

Table 24-1 P-Mode Parameters and Descriptions

P-Mode Parameter	Description
PMode.ID	Trading Partner profile, the identifier can be configured.
PMode.Agreement	The Agreement id will be used to provide th agreement Ref.
PMode.MEP	The message exchange pattern(MEP) will be based on the eventName enqueued from backend application.
PMode.MEPbinding	The message exchange pattern (MEP) will be based on the eventName enqueued from backend application. The trading partner delivery channel configuration is available.
PMode.Initiator.Party	While Enqueue set the From Party will be always a initiator
PMode.Initiator.Role	While Enqueue set the ActionName/event Name to set the FromRole
PMode.Initiator.Authorization.username	Set the Auth user in OWSM credentials, incase of Basic Authentication
PMode.Responder.Party	While Enqueue set the To Party will be always a Responder
PMode.Responder.Role	While Enqueue set the ActionName/event Name to set the ToRole
PMode.Responder.Authorization.username	Set the Auth user in OWSM credentials, incase of Basic Authentication
Protocol.Address	There is no need to configure anything specific to this, as part of delivery channel http will be consider always.
Protocol.SOAPVersion	AS4 delivery channel configuration is enough, it will always uses SOAP 1.2
BusinessInfo.Service:	As part of enqueue, set the ActionName/event Name with Service or other wise set as part of Custom Document protocol in case of static service
BusinessInfo.Action	As part of enqueue, set the ActionName/event Name with Action or other wise set as part of Custom Document protocol in case of static Action
BusinessInfo.Properties[]:	Not Supported to add Properties
ErrorHandling.Report.ReceiverErrorsTo	Incase of error/exception B2B will send a exception message to sender
ErrorHandling.Report.AsResponse	Incase of error/exception B2B will send a exception message to sender
[1].ErrorHandling.Report.ProcessErrorNotifyProducer	The errors will be processed and it will also update request message state to Error.
ErrorHandling.Report.DeliveryFailuresNotifyProducer	The errors will not be delivered then the error receipt message will be change the state to Error.
Security.WSSVersion	OWSM configuration handles
Security.X509.Sign	OWSM configuration handles
Security.X509.Signature.Certificate	OWSM configuration handles
Security.X509.Signature.HashFunction	OWSM configuration handles
Security.X509.Signature.Algorithm	OWSM configuration handles
Security. X509.Encryption.Encrypt	OWSM configuration handles
Security.X509.Encryption.Certificate	OWSM configuration handles
Security.X509.Encryption.Algorithm	OWSM configuration handles
Security.UsernameToken.username	OWSM configuration handles
Security.UsernameToken.password	OWSM configuration handles
Security.UsernameToken.Digest	OWSM configuration handles
Security.UsernameToken.Created	OWSM configuration handles
Security.PModeAuthorize	OWSM configuration handles
Security.SendReceipt	OWSM configuration handles
Security.SendReceipt.ReplyPattern	OWSM configuration handles

24.7 Local Policy Attachment

You can attach multiple policies to a delivery channel using LPA (Local Policy Attachment). As part of the delivery channel configuration, you select the OWSM policies and attach to the particular endpoint.

This is used to handle the policies attached for the webservice endpoint. The list of policies can be selected from the drop -down list and then provide the necessary information. For example, message protection policy will be used to protect the messages (sign+encryption) based on the certificate alias configured in the policy.

24.8 Use-Case Scenarios

Scenarios about exchanging documents between two partners.

In the following scenarios, we are assuming that two partners, Acme and GlobalChips, want to exchange documents using AS4 Protocol. For this purpose, we assume that Oracle B2B AS4 is installed on two separate servers (one for each partner). One of the servers, called Acme, acts as the initiator and sends an XML document using the AS4 protocol to the responder, called GlobalChips.

24.8.1 Inbound Messaging

The sending and receiving MSH are configured to exchange a particular message type using reliable messaging. The sending MSH sends a signed message of this type.

The expected result is that the receiving MSH returns a synchronous AS4 non-repudiation receipt. The content of the NonRepudiationInformation element in the returned receipt MUST match the Signature of the received message. This can be determined using Message logs, message trackers and/or TCP monitoring tools; the latter requires the to not use TLS.

24.8.1.1 Setting Up the Responder

To set up the responder, in this case, GlobalChips:

1. Login to Oracle B2B on the receiver side,
2. Click Administration to create a document.
3. In the Document tab, select Custom and add the Document Version, for example 1.0.
4. Select the Document Version created and add Document Type, for example, ORDERS.
5. Select the Document Type created and add Document Definition, for example, Ord_def.
6. Click Definition to provide the schema.
7. Select the Identification Type as xml.
8. Provide the Identification Expression (XPath) to identify the incoming document.
   Example: /*/*[local-name()='shipto']/*[local-name()='country']
9. Click Save to save the details.
10. On the Receiver side, as part of setting up the listening channel, click on the Policy Configuration.
11. From the policy list, select the oracle/wss10_message_protection_service_policy and attach.
12. Click + on the above selected policy to provide the certificate alias
13. Provide keystore.sig.csf.key as the private key alias of the host to verify the signature of the messages.
14. Provide keystore.enc.csf.key as private key alias of the host to decrypt the message.