Technology Sharing

Interacting with TrinityCore using SOAP (pending)

2024-07-12

한어Русский языкEnglishFrançaisIndonesianSanskrit日本語DeutschPortuguêsΕλληνικάespañolItalianoSuomalainenLatina

original:SOAP with TrinityCore | TrinityCore MMo Project Wiki

 

How to use SOAP to interact with TC

SOAP stands for Simple Object Access Protocol and is an older form of standards-based web service access protocol similar to REST. As long as the necessary configuration is in place, you can use SOAP to send commands to the TrinityCore server.
A good way to understand SOAP is to compare it to its contemporary REST. The following article explains this very well - https://smartbear.com/blog/soap-vs-rest-whats-the-difference/.
The main difference between the two is that SOAP relies entirely on XML to provide responses and accept payloads. PHP provides some methods to make this process easier, but depending on your use case, you may need to become familiar with XML.

Configuration


worldserver.conf
Make sure the settings in the configuration file are set correctly.

  1. #    SOAP.Enable
  2. #        Description: Enable soap service.
  3. #        Default:     0 - (Disabled)
  4. #                     1 - (Enabled)
  5. SOAP.Enabled = 1
  6.  
  7. #    SOAP.IP
  8. #        Description: Bind SOAP service to IP/hostname.
  9. #        Default:     "127.0.0.1" - (Bind to localhost)
  10. SOAP.IP = "127.0.0.1"
  11.  
  12. #    SOAP.Port
  13. #        Description: TCP port to reach the SOAP service.
  14. #        Default:     7878
  15. SOAP.Port = 7878

Given your specific RBAC access configuration, you'll also need a user account that has permissions to use GM commands. It's probably a good idea to create a limited-access account specifically for this purpose, rather than one that one person uses.

NOTE: At the time of writing, TC 335a only supports HTTP, so be careful not to send secrets (passwords, etc.) this way. Assume that anything passed is in clear text and can be read by anyone.
If you plan on connecting remotely via SOAP, you should definitely take steps to ensure a secure connection. One potential approach is to go through a reverse SSL proxy via apache or nginx. However, this is outside the scope of this guide and will not be covered.

HTTP client for prototyping


There are a few clients that can quickly establish a connection and test console commands:
Postman: https://www.postman.com/ (network, desktop agent/client)
insomnia:https://insomnia.rest/
Nightingale: https://nightingale.rest/
They all provide various details but ultimately work in much the same way. Thanks to Jackpoz for the specific steps for Postman - https://www.postman.com/.
Postman comes in two flavors: a web interface (along with a proxy that can be installed to do localhost requests) and a fully client-side desktop application. The instructions are the same in both cases.
Under "My Workspace", find the "Import" button. You will use the Raw Text option.
Copy and paste the following JSON into the text box. Make sure to update the credentials under item.request.auth.basic to the GM user mentioned earlier.

  1. {
  2.   "info": {
  3.     "name": "TC SOAP",
  4.     "schema": "https://schema.getpostman.com/json/collection/v2.0.0/collection.json"
  5.   },
  6.   "item": [
  7.     {
  8.       "name": "server info",
  9.       "request": {
  10.         "auth": {
  11.           "type": "basic",
  12.           "basic": {
  13.             "username": "CHANGEME",
  14.             "password": "CHANGEME",
  15.             "showPassword": false
  16.           }
  17.         },
  18.         "method": "POST",
  19.         "header": [],
  20.         "body": {
  21.           "mode": "raw",
  22.           "raw": "<?xml version="1.0" encoding="utf-8"?>rn<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" xmlns:ns1="urn:TC">rn<SOAP-ENV:Body>rn<ns1:executeCommand>rn<command>server info</command>rn</ns1:executeCommand>rn</SOAP-ENV:Body>rn</SOAP-ENV:Envelope>",
  23.           "options": {
  24.             "raw": {
  25.               "language": "xml"
  26.             }
  27.           }
  28.         },
  29.         "url": "http://127.0.0.1:7878"
  30.       },
  31.       "response": []
  32.     }
  33.   ]
  34. }

You should see TC SOAP as a collection to import. Click Import.
This will populate a new collection with the correct HTTP method (POST) and the details under the Authorization and Body tabs.
Under the Body tab, notice the XML payload and the Server Information commands that are pre-populated for you.
Clicking the "Send" button will submit the request and provide an XML response.
On the right side of the Postman interface, a</> symbol will open a code snippet that can translate the request into the language of your choice.
¶ Using PHP
To interact with TrinityCore using PHP, you need to make sure you have the PHP-soap extension installed. Also make sure you are using a version of PHP that is still actively supported. The code samples were tested on PHP 7.4 to PHP 8.1.
In all of these examples, the urn:TC URI is a required parameter because we do not provide a WSDL document.
SoapClient-https://www.php.net/manual/en/class.soapclient.php

  1. $command  = 'server info';
  2.  
  3. $opts = [
  4.     'http' => [
  5.         'header' => "Authorization: Basic " . base64_encode("USERNAME:PASSWORD")
  6.     ]];
  7.  
  8. $client = new SoapClient($wsdl = null, [
  9.     'stream_context' => stream_context_create($opts),
  10.     'location' => 'http://127.0.0.1:7878',
  11.     'uri' => 'urn:TC',
  12. ]);
  13.  
  14. try {
  15.     $result = $client->executeCommand(new SoapParam($command, 'command'));
  16. } catch (Exception $e) {
  17.     die($e->getMessage());
  18. }
  19.  
  20. echo $result;

Note that we are passing a HTTP basic authorization header with base64 encoded username and password (separated by a colon). Alternatively, you could omit the stream_context parameter, and instead include a (login) username and password in your SoapClient configuration.

  1. $command  = 'server info';
  2.  
  3. $client = new SoapClient($wsdl = null, [
  4.     'location' => 'http://127.0.0.1:7878',
  5.     'uri' => 'urn:TC',
  6.     'login' => 'USERNAME',
  7.     'password' => 'PASSWORD',
  8. ]);
  9.  
  10. try {
  11.     $result = $client->executeCommand(new SoapParam($command, 'command'));
  12. } catch (Exception $e) {
  13.     die($e->getMessage());
  14. }
  15.  
  16. echo $result;

Either approach is fine - but don't be fooled! Base 64 encoding does not inherently make it more secure.

Remember that the SOAP client can only recognize failures to connect, or misconfigurations. It will not know if you've provided an invalid command. So it's up to you to parse the results and decide if the intended result was a success or not. Output will be just as if you performed the command on the console.

Lastly, if you'd rather not rely on the SOAP extension or client, you can form the XML payload and parse the resulting XML response yourself. You'll still need the cURL extension, but this is usually available if not enabled by default.

  1. <?xml version="1.0" encoding="utf-8"?>
  2. <SOAP-ENV:Envelope
  3.     xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"
  4.     xmlns:ns1="urn:TC">
  5.     <SOAP-ENV:Body>
  6.         <ns1:executeCommand>
  7.             <command>server info</command>
  8.         </ns1:executeCommand>
  9.     </SOAP-ENV:Body>
  10. </SOAP-ENV:Envelope>
  1. $curl = curl_init();
  2.  
  3. curl_setopt_array($curl, [
  4.     CURLOPT_POSTFIELDS => $payload, // $payload is the XML provided above
  5.     CURLOPT_URL => 'http://127.0.0.1:7878',
  6.     CURLOPT_TIMEOUT => 0,
  7.     CURLOPT_CUSTOMREQUEST => 'POST',
  8.     CURLOPT_HTTPHEADER => [
  9.         "Authorization: Basic " . base64_encode("{$user}:{$pass}"),
  10.         'Content-Type: application/xml',
  11.     ],
  12. ]);
  13.  
  14. $response = curl_exec($curl);
  15. curl_close($curl);
  16. echo $response;

 

 

Personal profile

I have devoted myself to the research of technology for more than 30 years. I am proficient in various languages ​​such as Java, Linux, JavaScript, PHP, CSS, etc. I have made many contributions in the field of open source. I have established a developer documentation site to share some problems in technology development for everyone to read.

my contact information

Mail