Transcription
Web Services andService Oriented ArchitecturesThomas Soddemann, RZGDelaman Workshop 2004
Web Services and Service Oriented ArchitectureOverview The Garching Supercomputing Center - RZG Diving into the world of Web Services Service Oriented Architectures And beyondThomas SoddemannDelaman Workshop 20042
Web Services and Service Oriented ArchitectureRZG – Rechen-Zentrum GarchingSupercomputing Center for theMax Planck Society (MPG)Services and involvements: Supercomputing facility with a 5 TFlopIBM Regatta system Linux compute farms Data Storage DEISA MiGenAS D-Grid – German Grid initiative Data Acquisition for ASDEX Upgrade andWendelstein 7X (Plasma Physics)Thomas SoddemannDelaman Workshop 20043
Web Services and Service Oriented ArchitectureMachine RoomThomas SoddemannDelaman Workshop 20044
Web Services and Service Oriented ArchitectureDEISA – Distributed European Infrastructure forSupercomputing Applications Consortium of leading nationalsupercomputing centers focuses in deploying an Gridempowered infrastructure to build a distributed terascalesupercomputing facilityThomas SoddemannDelaman Workshop 20045
Web Services and Service Oriented ArchitectureWeb Services and moreThomas SoddemannDelaman Workshop 20046
Web Services and Service Oriented ArchitectureClient Server Architectures 2-Server Side Tier Applicationse.g. Web ServerPHP app.e.g. Web BrowserRich ClientInternetThomas SoddemannLegacyClientServerintegrated Controller/View/Business logic,legacy applications and databasese.g. DatabasesBatch systemsIntranetDelaman Workshop 20047
Web Services and Service Oriented ArchitectureClient Server Architecturese.g. Web BrowserRich ClientInternetThomas Soddemanne.g. Web Serverand Web App.LegacyEnterpriseFrontend3-Server Side Tier ApplicationsClient EnterpriseapplicationIntranetDelaman Workshop 20048
Web Services and Service Oriented ArchitectureClient Server ArchitecturesInternetThomas SoddemannLegacyProxyService ClientEnterpriseFrontend3-Server Side Tier Applications with explicit servicesClient EnterpriseapplicationIntranetDelaman Workshop 20049
Web Services and Service Oriented ArchitectureServiceA service . . can be discovered & dynamically bound. . is self-contained & modular. . exhibits a coarse grained service interface. . is based on a loose coupling between provider & consumer. . is interoperable. . is addressable and locatable via a network. . can be composed out of other services.Thomas SoddemannDelaman Workshop 200410
Web Services and Service Oriented ArchitectureWeb Service DefinitionW3C, Web Services Architecture, http://www.w3.org/TR/ws-archA Web Service is a software system designed to support interoperable machineto-machine interaction over a network. It has an interface described in amachine-processable format (specifically WSDL). Other systems interact with theWeb service in a manner prescribed by its description using SOAP messages,typically conveyed using HTTP with an XML serialization in conjunction with otherWeb-related standards.Thomas SoddemannDelaman Workshop 200411
Web Services and Service Oriented ArchitectureMessage Oriented Model rsMessage transportbodyThomas SoddemannDelaman Workshop 200412
Web Services and Service Oriented ArchitectureService Oriented alsmeta-datamessageThomas SoddemannDelaman Workshop 200413
Web Services and Service Oriented ArchitectureResource Oriented ViewURIhasownsresourcemay haverepresentationThomas SoddemannDelaman Workshop 200414
Web Services and Service Oriented ArchitecturePolicy Model Viewagentestablishessubject topolicyapplies toresourceThomas SoddemannconstraintsactionDelaman Workshop 200415
Web Services and Service Oriented ArchitectureWeb Services ExamplesWeb er Provides airport and flight weather informationAmazon Web Services (AWS & ECS)http://www.amazon.com/webservices Provide e-commerce services such as lookup of booksGoogle Web APIhttp://www.google.com/apis/ Guess .Thomas SoddemannDelaman Workshop 200416
Web Services and Service Oriented ArchitectureServices: Roles and InteractionImplementations:Service Broker(Registry)findpublishService ConsumerThomas SoddemannUDDIJNDICORBA namingbindDelaman Workshop 2004Service Provider17
Web Services and Service Oriented ArchitectureServices: (Dynamic) Proxyfinde.g.WSDLService Broker(Registry)Service ConsumerImplementationCodeThomas SoddemannProxybindDelaman Workshop 2004Service Provider18
Web Services and Service Oriented ArchitectureObjects Referenceidentifier to reference an object during its lifetime Statestate of the object represented by its attributes Interface“collection” of methods which are necessary to interactwith the objectThomas SoddemannDelaman Workshop 200419
Web Services and Service Oriented ArchitectureIs a Service an Object in general?A service . . can be referenced during its lifetimeRQ . does not necessarily have a stateQ . does have an interfaceR[ A service is not an Object in general.Thomas SoddemannDelaman Workshop 200420
Web Services and Service Oriented ArchitectureService Oriented Architectures (SOA)An architecture of software which is composed of services.Service Oriented ArchitectureWeb ServicesCORBAJiniEJBNo ObjectsObjectsObjectsObjectsSimple WS: No session, no state [ e.g. Shopping Cart realization?Desirable: Object like Web servicesThomas SoddemannDelaman Workshop 200421
Web Services and Service Oriented ArchitectureExample: Shopping Cart in J2EERRequestServlet containterEJB containterControllerEJBResponseViewThomas SoddemannDelaman Workshop 2004Database22
Web Services and Service Oriented ArchitectureProblem: Shopping Cart in a Web Service worldRRequestServlet containterEJB containterResponseDatabaseProblem: No State, no session[ no shopping cart serviceNote: HTTP(S) session is not enoughThomas SoddemannDelaman Workshop 200423
Web Services and Service Oriented ArchitectureServices ArchitecturesWeb serviceIs not an object in general Rather XML documents are exchanged Are the interface to a part of the Business Logic Enterprise Java BeansAre Objects by definition Encapsulate the Business Logic of J2EE applications CORBA – Common Object Resource Broker ArchitectureCORBA Objects are Objects by definition Encapsulate the Business Logic of Enterprise Applications Further: Jini, .Thomas SoddemannDelaman Workshop 200424
Web Services and Service Oriented ArchitectureFrom a simple Web Services to an (quasi) ObjectThe Web Services Resource Framework WS-RFA Web Service Resource (WS-Resource) . can be destroyed (explicit destroy or expiration) and its lifetime may be monitoredWS-ResourceLifetime. contains a state through attributes/propertiesWS-ResourceProperties. references can be renewedWS-AddressingWS-RenewableReferences. employs a (more) standardized fault reporting mechanismWS-BaseFaultFurther: By-reference collections of Web Services can be defined.WS-ServiceGroupThomas SoddemannDelaman Workshop 200425
Web Services and Service Oriented ArchitectureWeb Services Architecture StackXML, XSDSecurityProcessesDiscovery, Aggregation, Choreography, .Descriptions (WSDL)MessagesSOAP ExtensionsSOAPCommunication Layer (HTTP, SMTP, .)Thomas SoddemannDelaman Workshop 200426
Web Services and Service Oriented ArchitectureData ServicesData querying and access to mutitple data sourcesComponent ServicesAtomic services potentially acting on single ERsEnterprise ResourcesDBCodeLegacyDelaman Workshop 2004PartnersPoliciesSecurityComplex Services composed of component servicesInterceptrorsSMTPThomas SoddemannHTTPTransportPortalsConsumersRich ClientsCodeMessage BrokerBusiness ServicesCore ServicesPartnerskBusiness processes, services with external interactionBrokersWorkflow ServicesManagementSoftware Architecture for the Access Infrastructure27
Web Services and Service Oriented ArchitectureWS-SecurityOriginal RequesterEnd to end securitySOAP with security contextSecurity IntermediarySOAP with security contextUltimate ReceiverThomas SoddemannDelaman Workshop 200428
Web Services and Service Oriented ArchitectureWS-SecurityThreats: Message Alteration – modififying the message content Confidentiality – accessing message parts such as credit card info Man-in-the-middle – establishing complete access to messages Spoofing – exploting trusted relationshipsDenial of Service – preventing a legitimate user from accessing aservice Replay Attacks – interception of messages and playing to back tothe service Thomas SoddemannDelaman Workshop 200429
Web Services and Service Oriented ArchitectureWS-SecurityWS-Security has to insure/provide Authentication mechanisms (PKI) Authorization Data integrity and confidentiality Integrity of transactions and communications Non-repudiation (detection of transaction initiated/altered by a 3rd party) End-to-end integrity and confidentiality of messages Audit trails (trace user's behavior)Thomas SoddemannDelaman Workshop 200430
Web Services and Service Oriented ArchitectureImplementation and deployment: J2EENetworkWeb ServerEJB ContainerClientServletContainerThomas SoddemannDelaman Workshop 2004Database31
Web Services and Service Oriented ArchitectureDistributed Service CentersWeb ServerNetworkServletContainerEJB ContainerDatabaseNetworkClientWeb ServerServletContainerThomas SoddemannEJB ContainerDatabaseDelaman Workshop 200432
Web Services and Service Oriented Architecture Thomas Soddemann Delaman Workshop 2004 21 Service Oriented Architectures (SOA) Service Oriented Architecture Web Services CORBA Jini EJB An architecture of software which is composed of services. No Objects Objects Objects Objects Simple W
