AS2Sender Class
Properties Methods Events Configuration Settings Errors
The AS2Sender class implements an AS2 / EDI-INT client.
Syntax
class ipworksedi.AS2Sender
Remarks
The AS2Sender component may be used to send EDI or other messages over HTTP/S, using the AS2 protocol. It may also be used to verify synchronous or asynchronous server responses.
A typical AS2 transaction is as follows:
(1) The sender sends an EDI document to the receiver using HTTP or HTTPS. Typically the document will be signed and encrypted (particularly if SSL is not used). A signed receipt will also be requested.
(2) The receiver decrypts the message and verifies the signature.
(3) The receiver sends a signed receipt back to the client. The signature is over the hash of an MDN, which contains a hash of the received message.
When sending an EDI message, the client should specify, at a minimum, as2_from and as2_to, url, and edi_data. The post method should then be invoked.
To secure the EDI transmission, the message may be signed and/or encrypted by setting the appropriate certificates. By default, the class will apply message security if the appropriate certificates are specified. To sign the data, set signing_cert. To encrypt, set recipient_certs. If the recipient uses different certificates for signing and encryption it will also be necessary to set receipt_signer_cert.
SSL will also be used if the scheme in url is "https". If your trading partner is using a self-signed certificate, it will be necessary to set ssl_accept_server_cert or trap the on_ssl_server_authentication event to accept the certificate.
The message may also be compressed by setting compression_format.
To request a receipt, or Message Disposition Notification (MDN), simply set the mdn_to property. The mdn_options property may be used to customize the request. By default, the class will request a signed MDN over an SHA1 hash.
The class supports both synchronous and asynchronous MDN receipt delivery. By default, the class requests synchronous MDN receipt delivery, and the MDN will be returned in the HTTP reply. To request asynchronous MDN delivery, set the mdn_delivery_option to the URL where MDN's are to be delivered.
The HTTP reply will automatically be processed by the class. If an MDN was requested, post will validate the MDN and (if signed) establish non-repudiation of receipt. Any errors or warnings will cause the class to throw an exception.
In either case, after the EDI transaction is processed successfully, the mdn_receipt will be populated with the appropriate values.
Validating Asynchronous MDNs
The class may also be used to process and verify asynchronous MDNs. To do this, you should invoke read_async_receipt. This will read the receipt from the current HTTP context (or from mdn_receipt, if set manually), and allow you to determine your trading partner's identity and the message ID. You should then set receipt_signer_cert and original_content_mic, and finally invoke verify_receipt.
Property List
The following is the full list of the properties of the class with short descriptions. Click on the links for further details.
| as2_from | The AS2 Identifier of the sending system. |
| as2_to | The AS2 Identifier of the receiving system. |
| as2_version | The version of AS2 being used. |
| async_mdn_info_dir | Path to a directory to store data used in verifying AsyncMDNs. |
| attachment_count | The number of records in the Attachment arrays. |
| attachment_content_type | The MIME content-type of this ediattachment . |
| attachment_data | This property contains the attachment data. |
| attachment_filename | The file name of the attachment. |
| attachment_headers | The class fills out Headers each time any of the other properties for that ediattachment are changed. |
| attachment_name | Name is the final name to be associated with the contents of either the Data or Filename properties. |
| cem_count | The number of records in the CEM arrays. |
| cem_accepted | Whether the CEM request is accepted. |
| cem_cert_id | A user defined identifier for the certificate. |
| cem_cert_issuer | This property holds the issuer of the certificate. |
| cem_cert_serial_number | This property holds the serial number of the certificate. |
| cem_cert_store | The name of the certificate store for the certificate. |
| cem_cert_store_password | If the certificate store is of a type that requires a password, this property is used to specify that password in order to open the certificate store. |
| cem_cert_store_type | The type of certificate store for this certificate. |
| cem_cert_subject | The subject of the certificate. |
| cem_cert_usage | This property defines which usages are applicable to the certificate. |
| cem_rejection_reason | If Accepted is False this property specifies the reason a request was rejected. |
| cem_respond_by_date | This property specifies the date by which the other party should respond. |
| cem_response_url | This property defines the URL to which the response should be sent. |
| compression_format | The compression format (if any) to use. |
| cookie_count | The number of records in the Cookie arrays. |
| cookie_domain | The domain of a received cookie. |
| cookie_expiration | This property contains an expiration time for the cookie (if provided by the server). |
| cookie_name | The name of the cookie. |
| cookie_path | This property contains a path name to limit the cookie to (if provided by the server). |
| cookie_secure | This property contains the security flag of the received cookie. |
| cookie_value | This property contains the value of the cookie. |
| edi_data | This property contains the EDI payload of the transmission. |
| edi_type | The Content-Type of the EDI message. |
| edi_filename | In a sender, if Filename is specified, the file specified will be used for the EDI payload of the transmission. |
| edi_name | Name is the final name to be associated with the contents of either the Data or FileName properties. |
| encryption_algorithm | The algorithm used to encrypt the EDI data. |
| etag | The Etag of the file being sent. |
| firewall_auto_detect | This property tells the class whether or not to automatically detect and use firewall system settings, if available. |
| firewall_type | This property determines the type of firewall to connect through. |
| firewall_host | This property contains the name or IP address of firewall (optional). |
| firewall_password | This property contains a password if authentication is to be used when connecting through the firewall. |
| firewall_port | This property contains the TCP port for the firewall Host . |
| firewall_user | This property contains a user name if authentication is to be used connecting through a firewall. |
| from_ | The email address of the HTTP agent (optional). |
| local_host | The name of the local host or user-assigned IP interface through which connections are initiated or accepted. |
| log_directory | The path to a directory for logging. |
| log_file | The log file written. |
| mdn_delivery_option | A URL indicating how the receipt is to be delivered. |
| mdn_options | Used to indicate the options requested for the MDN receipt. |
| mdn_receipt_content | This contains the entire content of the MDN Receipt. |
| mdn_receipt_header_count | The number of headers in the MDN. |
| mdn_receipt_header_field | The property name of the MDN header currently selected by HeaderIndex . |
| mdn_receipt_header_index | Which MDN header is currently selected to populate HeaderField and HeaderValue . |
| mdn_receipt_headers | Headers contains all of the headers of the AS2 MDN Receipt as a single string. |
| mdn_receipt_header_value | The value of the MDN header currently selected by HeaderIndex . |
| mdn_receipt_mdn | MDN will contain the entire machine readable text of the Message Disposition Notification in the receipt. |
| mdn_receipt_message | The human-readable portion of the MDN receipt. |
| mdn_receipt_mic_value | The Message Integrity Check(s) (one-way hash) of the original EDI message. |
| mdn_receipt_signing_protocol | This property contains the MIME type of the signature used, if any (i. |
| mdn_to | Used to indicate that a message disposition notification is requested. |
| message_id | The Id of the message. |
| original_content_mic | The Message Integrity Check(s) (one-way hash) of the outgoing message. |
| proxy_auth_scheme | This property is used to tell the class which type of authorization to perform when connecting to the proxy. |
| proxy_auto_detect | This property tells the class whether or not to automatically detect and use proxy system settings, if available. |
| proxy_password | This property contains a password if authentication is to be used for the proxy. |
| proxy_port | This property contains the TCP port for the proxy Server (default 80). |
| proxy_server | If a proxy Server is given, then the HTTP request is sent to the proxy instead of the server otherwise specified. |
| proxy_ssl | This property determines when to use SSL for the connection to the proxy. |
| proxy_user | This property contains a user name, if authentication is to be used for the proxy. |
| receipt_signer_cert_encoded | The certificate (PEM/base64 encoded). |
| receipt_signer_cert_store | The name of the certificate store for the client certificate. |
| receipt_signer_cert_store_password | If the certificate store is of a type that requires a password, this property is used to specify that password in order to open the certificate store. |
| receipt_signer_cert_store_type | The type of certificate store for this certificate. |
| receipt_signer_cert_subject | The subject of the certificate used for client authentication. |
| recipient_cert_count | The number of records in the RecipientCert arrays. |
| recipient_cert_encoded | The certificate (PEM/base64 encoded). |
| recipient_cert_store | The name of the certificate store for the client certificate. |
| recipient_cert_store_password | If the certificate store is of a type that requires a password, this property is used to specify that password in order to open the certificate store. |
| recipient_cert_store_type | The type of certificate store for this certificate. |
| recipient_cert_subject | The subject of the certificate used for client authentication. |
| restart_directory | The directory to log cached files when using AS2 restart functionality. |
| rollover_signing_cert_encoded | The certificate (PEM/base64 encoded). |
| rollover_signing_cert_store | The name of the certificate store for the client certificate. |
| rollover_signing_cert_store_password | If the certificate store is of a type that requires a password, this property is used to specify that password in order to open the certificate store. |
| rollover_signing_cert_store_type | The type of certificate store for this certificate. |
| rollover_signing_cert_subject | The subject of the certificate used for client authentication. |
| signature_algorithm | Signature algorithm to be used in outgoing messages. |
| signing_cert_encoded | The certificate (PEM/base64 encoded). |
| signing_cert_store | The name of the certificate store for the client certificate. |
| signing_cert_store_password | If the certificate store is of a type that requires a password, this property is used to specify that password in order to open the certificate store. |
| signing_cert_store_type | The type of certificate store for this certificate. |
| signing_cert_subject | The subject of the certificate used for client authentication. |
| ssl_accept_server_cert_encoded | The certificate (PEM/base64 encoded). |
| ssl_cert_encoded | The certificate (PEM/base64 encoded). |
| ssl_cert_store | The name of the certificate store for the client certificate. |
| ssl_cert_store_password | If the certificate store is of a type that requires a password, this property is used to specify that password in order to open the certificate store. |
| ssl_cert_store_type | The type of certificate store for this certificate. |
| ssl_cert_subject | The subject of the certificate used for client authentication. |
| ssl_server_cert_encoded | The certificate (PEM/base64 encoded). |
| subject | The subject of the message. |
| timeout | A timeout for the class. |
| url | The URL to which the request is made. |
| use_oaep | Whether to use Optimal Asymmetric Encryption Padding (OAEP). |
| use_pss | Whether to use RSA-PSS during signing and verification. |
| user_agent | Information about the user agent. |
Method List
The following is the full list of the methods of the class with short descriptions. Click on the links for further details.
| config | Sets or retrieves a configuration setting. |
| do_events | Processes events from the internal message queue. |
| interrupt | Interrupt the current method. |
| post | Post data to the AS2 server, and check the receipt. |
| read_async_receipt | Reads an asynchronous MDN receipt from the current HTTP session. |
| reset | Resets the state of the control. |
| restart | Restart sending of the file specified by the Etag property. |
| send_cem_request | Sends a Certificate Exchange Messaging (CEM) request. |
| send_cem_response | Sends a Certificate Exchange Messaging (CEM) response. |
| set_request_header | Allows the user to set or add arbitrary HTTP request headers. |
| set_tp_info | A convenient way to set AS2 communication parameters using XML strings. |
| verify_receipt | Verifies an asynchronous MDN receipt. |
Event List
The following is the full list of the events fired by the class with short descriptions. Click on the links for further details.
| on_connected | Fired immediately after a connection completes (or fails). |
| on_disconnected | Fired when a connection is closed. |
| on_end_transfer | Fired when a document finishes transferring. |
| on_error | Information about errors during data delivery. |
| on_header | Fired every time a header line comes in. |
| on_log | Fired with log information while processing a message. |
| on_set_cookie | Fired for every cookie set by the server. |
| on_ssl_server_authentication | Fired after the server presents its certificate to the client. |
| on_ssl_status | Shows the progress of the secure connection. |
| on_start_transfer | Fired when a document starts transferring (after the headers). |
| on_transfer | Fired while a document transfers (delivers document). |
Configuration Settings
The following is a list of configuration settings for the class with short descriptions. Click on the links for further details.
| AllowMDNWarnings | Whether to fail on MDN warnings. |
| Authorization | The Authorization string to be sent to the server. |
| AuthScheme | The authorization scheme to be used when server authorization is to be performed. |
| EncodeToTempDir | Whether to use temporary files when creating messages. |
| IncludeHeaders | Whether headers are included when posting to a file. |
| LogDebug | Whether to log debug data. |
| LogFilename | The base name of the log file. |
| LogOptions | The information to be written to log files. |
| MDNDisposition | Returns the Disposition header of the MDN. |
| MessageHeaders | Returns the headers of the message. |
| NormalizeMIC | Whether to normalize line endings before calculating the MIC. |
| OAEPMGF1HashAlgorithm | The MGF1 hash algorithm used when encrypting a key. |
| OAEPParams | The hex encoded OAEP parameters to be used when encrypting a key. |
| OAEPRSAHashAlgorithm | The RSA hash algorithm used when encrypting a key. |
| Password | A password if authentication is to be used. |
| PostToFile | Creates the message on disk. |
| RequiredSignatureAlgorithms | Specifies a list of acceptable signature algorithms. |
| User | A user name if authentication is to be used. |
| AcceptEncoding | Used to tell the server which types of content encodings the client supports. |
| AllowHTTPCompression | This property enables HTTP compression for receiving data. |
| AllowHTTPFallback | Whether HTTP/2 connections are permitted to fallback to HTTP/1.1. |
| Append | Whether to append data to LocalFile. |
| Authorization | The Authorization string to be sent to the server. |
| BytesTransferred | Contains the number of bytes transferred in the response data. |
| ChunkSize | Specifies the chunk size in bytes when using chunked encoding. |
| CompressHTTPRequest | Set to true to compress the body of a PUT or POST request. |
| EncodeURL | If set to true the URL will be encoded by the class. |
| FollowRedirects | Determines what happens when the server issues a redirect. |
| GetOn302Redirect | If set to true the class will perform a GET on the new location. |
| HTTP2HeadersWithoutIndexing | HTTP2 headers that should not update the dynamic header table with incremental indexing. |
| HTTPVersion | The version of HTTP used by the class. |
| IfModifiedSince | A date determining the maximum age of the desired document. |
| KeepAlive | Determines whether the HTTP connection is closed after completion of the request. |
| KerberosSPN | The Service Principal Name for the Kerberos Domain Controller. |
| LogLevel | The level of detail that is logged. |
| MaxRedirectAttempts | Limits the number of redirects that are followed in a request. |
| NegotiatedHTTPVersion | The negotiated HTTP version. |
| OtherHeaders | Other headers as determined by the user (optional). |
| ProxyAuthorization | The authorization string to be sent to the proxy server. |
| ProxyAuthScheme | The authorization scheme to be used for the proxy. |
| ProxyPassword | A password if authentication is to be used for the proxy. |
| ProxyPort | Port for the proxy server (default 80). |
| ProxyServer | Name or IP address of a proxy server (optional). |
| ProxyUser | A user name if authentication is to be used for the proxy. |
| SentHeaders | The full set of headers as sent by the client. |
| StatusLine | The first line of the last response from the server. |
| TransferredData | The contents of the last response from the server. |
| TransferredDataLimit | The maximum number of incoming bytes to be stored by the class. |
| TransferredHeaders | The full set of headers as received from the server. |
| TransferredRequest | The full request as sent by the client. |
| UseChunkedEncoding | Enables or Disables HTTP chunked encoding for transfers. |
| UseIDNs | Whether to encode hostnames to internationalized domain names. |
| UsePlatformHTTPClient | Whether or not to use the platform HTTP client. |
| UserAgent | Information about the user agent (browser). |
| ConnectionTimeout | Sets a separate timeout value for establishing a connection. |
| FirewallAutoDetect | Tells the class whether or not to automatically detect and use firewall system settings, if available. |
| FirewallHost | Name or IP address of firewall (optional). |
| FirewallPassword | Password to be used if authentication is to be used when connecting through the firewall. |
| FirewallPort | The TCP port for the FirewallHost;. |
| FirewallType | Determines the type of firewall to connect through. |
| FirewallUser | A user name if authentication is to be used connecting through a firewall. |
| KeepAliveInterval | The retry interval, in milliseconds, to be used when a TCP keep-alive packet is sent and no response is received. |
| KeepAliveTime | The inactivity time in milliseconds before a TCP keep-alive packet is sent. |
| Linger | When set to True, connections are terminated gracefully. |
| LingerTime | Time in seconds to have the connection linger. |
| LocalHost | The name of the local host through which connections are initiated or accepted. |
| LocalPort | The port in the local host where the class binds. |
| MaxLineLength | The maximum amount of data to accumulate when no EOL is found. |
| MaxTransferRate | The transfer rate limit in bytes per second. |
| ProxyExceptionsList | A semicolon separated list of hosts and IPs to bypass when using a proxy. |
| TCPKeepAlive | Determines whether or not the keep alive socket option is enabled. |
| TcpNoDelay | Whether or not to delay when sending packets. |
| UseIPv6 | Whether to use IPv6. |
| LogSSLPackets | Controls whether SSL packets are logged when using the internal security API. |
| OpenSSLCADir | The path to a directory containing CA certificates. |
| OpenSSLCAFile | Name of the file containing the list of CA's trusted by your application. |
| OpenSSLCipherList | A string that controls the ciphers to be used by SSL. |
| OpenSSLPrngSeedData | The data to seed the pseudo random number generator (PRNG). |
| ReuseSSLSession | Determines if the SSL session is reused. |
| SSLCACertFilePaths | The paths to CA certificate files on Unix/Linux. |
| SSLCACerts | A newline separated list of CA certificate to use during SSL client authentication. |
| SSLCheckCRL | Whether to check the Certificate Revocation List for the server certificate. |
| SSLCipherStrength | The minimum cipher strength used for bulk encryption. |
| SSLEnabledCipherSuites | The cipher suite to be used in an SSL negotiation. |
| SSLEnabledProtocols | Used to enable/disable the supported security protocols. |
| SSLEnableRenegotiation | Whether the renegotiation_info SSL extension is supported. |
| SSLIncludeCertChain | Whether the entire certificate chain is included in the SSLServerAuthentication event. |
| SSLNegotiatedCipher | Returns the negotiated ciphersuite. |
| SSLNegotiatedCipherStrength | Returns the negotiated ciphersuite strength. |
| SSLNegotiatedCipherSuite | Returns the negotiated ciphersuite. |
| SSLNegotiatedKeyExchange | Returns the negotiated key exchange algorithm. |
| SSLNegotiatedKeyExchangeStrength | Returns the negotiated key exchange algorithm strength. |
| SSLNegotiatedVersion | Returns the negotiated protocol version. |
| SSLProvider | The name of the security provider to use. |
| SSLSecurityFlags | Flags that control certificate verification. |
| SSLServerCACerts | A newline separated list of CA certificate to use during SSL server certificate validation. |
| TLS12SignatureAlgorithms | Defines the allowed TLS 1.2 signature algorithms when UseInternalSecurityAPI is True. |
| TLS12SupportedGroups | The supported groups for ECC. |
| TLS13KeyShareGroups | The groups for which to pregenerate key shares. |
| TLS13SignatureAlgorithms | The allowed certificate signature algorithms. |
| TLS13SupportedGroups | The supported groups for (EC)DHE key exchange. |
| AbsoluteTimeout | Determines whether timeouts are inactivity timeouts or absolute timeouts. |
| FirewallData | Used to send extra data to the firewall. |
| InBufferSize | The size in bytes of the incoming queue of the socket. |
| OutBufferSize | The size in bytes of the outgoing queue of the socket. |
| BuildInfo | Information about the product's build. |
| CodePage | The system code page used for Unicode to Multibyte translations. |
| LicenseInfo | Information about the current license. |
| ProcessIdleEvents | Whether the class uses its internal event loop to process events when the main thread is idle. |
| SelectWaitMillis | The length of time in milliseconds the class will wait when DoEvents is called if there are no events to process. |
| UseInternalSecurityAPI | Tells the class whether or not to use the system security libraries or an internal implementation. |