You should use AspHTTPS to send https requests to the system certification server from your web resource?s scripts (for example, from MS IIS web server). This module was designed in the form of ActiveX specially for this purpose. The module is the AspHTTPS.dll file. This module can send requests to https servers and receive response from the certification server of the system.
You can download AspHTTPS and a sample of its usage here.
In order to register and use an ActiveX component, you should:
-
copy the AspHTTPS.dll file to the computer (web server) from which is will be requested
-
execute the following command:
regsvr32 AspHTTPS.dll
-
Each user on whose behalf the AspHTTPS object will be created (by default IUSR_COMPUTERNAME for MS IIS), should install a system certificate that can be downloaded below:
WebMoney_Transfer_Root_Authority.cer
-
Each user should be allowed full access to the following register nodes:
\REGISTRY\USER\.DEFAULT
\REGISTRY\USER\.DEFAULT\Control Panel\International
\REGISTRY\USER\.DEFAULT\SOFTWARE\MICROSOFT\SystemCertificates\ca
\REGISTRY\USER\.DEFAULT\SOFTWARE\MICROSOFT\SystemCertificates\ca\Certificates
\REGISTRY\USER\.DEFAULT\SOFTWARE\MICROSOFT\SystemCertificates\ca\CRLs
\REGISTRY\USER\.DEFAULT\SOFTWARE\MICROSOFT\SystemCertificates\ca\CTLs
\REGISTRY\USER\.DEFAULT\SOFTWARE\MICROSOFT\SystemCertificates\my
\REGISTRY\USER\.DEFAULT\SOFTWARE\MICROSOFT\SystemCertificates\my\Certificates
\REGISTRY\USER\.DEFAULT\SOFTWARE\MICROSOFT\SystemCertificates\my\CRLs
\REGISTRY\USER\.DEFAULT\SOFTWARE\MICROSOFT\SystemCertificates\my\CTLs
\REGISTRY\USER\.DEFAULT\SOFTWARE\MICROSOFT\SystemCertificates\Root
\REGISTRY\USER\.DEFAULT\SOFTWARE\MICROSOFT\SystemCertificates\Trust
\REGISTRY\USER\.DEFAULT\SOFTWARE\MICROSOFT\SystemCertificates\Trust\Certificates
\REGISTRY\USER\.DEFAULT\SOFTWARE\MICROSOFT\SystemCertificates\Trust\CRLs
\REGISTRY\USER\.DEFAULT\SOFTWARE\MICROSOFT\SystemCertificates\Trust\CTLs
\REGISTRY\USER\.DEFAULT\SOFTWARE\Policies\MICROSOFT\SystemCertificates
\REGISTRY\USER\.DEFAULT\SOFTWARE\Policies\MICROSOFT\SystemCertificates\ca
\REGISTRY\USER\.DEFAULT\SOFTWARE\Policies\MICROSOFT\SystemCertificates\ca\Certificates
\REGISTRY\USER\.DEFAULT\SOFTWARE\Policies\MICROSOFT\SystemCertificates\ca\CRLs
\REGISTRY\USER\.DEFAULT\SOFTWARE\Policies\MICROSOFT\SystemCertificates\ca\CTLs
\REGISTRY\USER\.DEFAULT\SOFTWARE\Policies\MICROSOFT\SystemCertificates\Trust
\REGISTRY\USER\.DEFAULT\SOFTWARE\Policies\MICROSOFT\SystemCertificates\Trust\Certificates
\REGISTRY\USER\.DEFAULT\SOFTWARE\Policies\MICROSOFT\SystemCertificates\Trust\CRLs
\REGISTRY\USER\.DEFAULT\SOFTWARE\Policies\MICROSOFT\SystemCertificates\Trust\CTLs
Below you will find a sample https request (JScript - ASP - MS IIS):
//Request on issuing a bill sent to the certification center
// This request uses the same parameters that
//are used to create a digital signature of the PlanStr sting using WMSigner
var redirectURL = 'asp/Invoice.asp'+
'?SL='+LoginOfStores+
'&SP='+PurseOfStores+
'&CL='+LoginOfCust+
'&IN='+OrderID+
'&D=' +Desc+
'&AD='+InvAddress+
'&A=' +Amount.toString()+
'&E=' +Experation.toString()+
'&P=' +Period.toString()+
'&RN='+RequestN.toString()+
'&SS='+SignStr;
var AspHTTPSObj = Server.CreateObject("AspHTTPS.Get") //Creating a request object via https (SSL)
AspHTTPSObj.Server = "w3s.webmoney.ru" // indicating the URL of the certification server
AspHTTPSObj.Port = "443" // indicating the port
AspHTTPSObj.Page = redirectURL // indicating the URL of the request created before
var resultLen = AspHTTPSObj.getPage() //request to the server ? response from the server (information in bytes or an error code)
var resultStr = AspHTTPSObj.Data // getting the result
RN=RequestN is a parameter required to call each interface. This parameter must be unique for each request. Its value must not be repeated. It must increase from one request to another. This parameter helps refrain from repetition of one and the same request. Current date and time should be used to form this parameter. Below you can see how RequestN is generated on JavaScript ASP IIS 4,5:
<SCRIPT LANGUAGE=JavaScript RUNAT=SERVER>>
function TimeDemo(){
var d, s = "";
d = new Date();
s +=( String(d.getYear()).substring(3,4));
s += (String(d.getMonth() + 1).length==1 ? ('0'+(d.getMonth() + 1)):(d.getMonth() + 1));
s += (String(d.getDate()).length==1 ? ('0'+(d.getDate())):(d.getDate()));
s += (String(d.getHours()).length==1 ? ('0'+(d.getHours() )):(d.getHours()));
s += (String(d.getMinutes()).length==1 ? ('0'+(d.getMinutes())):(d.getMinutes() ));
s += (String(d.getSeconds()).length==1 ? ('0'+(d.getSeconds() )):(d.getSeconds() ));
s += (String(d.getMilliseconds() ).length==1 ? ('00'+(d.getMilliseconds() )) : (String(d.getMilliseconds() ).length==2 ? ('0'+(d.getMilliseconds() )) : (d.getMilliseconds() )));
return(s);
}
</SCRIPT>
