Communication problems with the government-provided web service

Asked

Viewed 1,632 times

0

I’m having a problem communicating with eSocial webservice, my certificate is correct, but still can’t establish a secure connection, it presents the following message: "Error making HTTP request to https://webservices.producaorestrita.esocial.gov.br/servicos/empregador/enviarloteeventos/WsEnviarLoteEventos.svc?wsdl. This may be related to the fact that the server certificate is not properly configured with HTTP.SYS in the HTTPS case. This may also have been caused by an incompatibility of the security association between the client and the server."

Imagem da Exception no visual studio

c# .net webforms esocial

  • Are you guys authenticated? I don’t know what type of service the government uses, but most likely you will have to place an order earlier with a key provided by them.

1 answer

1


Gabriel, I believe you were unable to access the service because the URL you are using is incorrect. When you add the parameter ?wsdl at the end of the service URL, you are requesting the WSDL of the eSocial service, which is the contract service. That is, this URL you posted would be the one you would use to add the reference to the service within Visual Studio, and the same URL without the parameter ?wsdl would be the one you would use to access the actual service.

So, to access the service, the URL must be this:

https://webservices.producaorestrita.esocial.gov.br/servicos/empregador/enviarloteeventos/WsEnviarLoteEventos.svc

In addition, according to eSocial Developer Guidance Manual v1.6.3, page 83, item '7.9. Digital certification', it is also necessary to install on the machine that will access the service to Chain of Certificates issued on 02/06/2017 by Serpro, which are 3 certificates that can be obtained at this address:

https://certificados.serpro.gov.br/serproacf/certificate-chain

According to item 02.03 from the eSocial Portal FAQ page, the certificates must be installed in the order they are displayed on this Serpro page, and:
The Brazilian Root Certification Authority v5 must be installed in the root AC repository. The SERPRO v4 Certification Authority and SERPRO Final v5 Certification Authority shall be installed in the intermediate AC repository.

Remembering that it is also necessary to have installed on the computer that will access the web service a valid digital certificate (A1 or A3, e-CNPJ or e-CPF), which must be used to access the service. A tip: When I started tests with eSocial, I spent almost a week banging my head to get the first access, when I finally discovered that in my case (e-CNPJ A1), it was necessary to select the option Mark this key as exportable (Mark this key as Exportable) and install my certificate in the repository (store) Personal (Personal), of Current User (Current User).

Regarding the code used to access the service (I don’t know if you’re already doing so because you didn’t post any excerpt of the code), you should configure the Binding service (I used BasicHttpBinding or BasicHttpsBinding) to use Securitymode = Transport (for the HTTPS) and Clientcredentialtype = Certificate (to specify a certificate), more or less so:

 var urlServicoEnvio = @"https://webservices.producaorestrita.esocial.gov.br/servicos/empregador/enviarloteeventos/WsEnviarLoteEventos.svc";
 var address = new EndpointAddress(urlServicoEnvio);
 var binding = new BasicHttpsBinding();  //Disponível desde .NET Framework 4.5
 // ou:
 //var binding = new BasicHttpBinding(BasicHttpsSecurityMode.Transport);
 binding.Security.Transport.ClientCredentialType = HttpClientCredentialType.Certificate;

 var wsClient = new WsEnviar.ServicoEnviarLoteEventosClient(binding, address);
 wsClient.ClientCredentials.ClientCertificate.Certificate = x509Cert;

 var retornoEnvioXElement = wsClient.EnviarLoteEventos(loteEventosXDoc.Root);
 wsClient.Close();

As for class WsEnviar.ServicoEnviarLoteEventosClient used in the code, it was created by Visual Studio when adding a Service Reference, using a URL similar to the one you tried to use to access the service (with the difference that I used the parameter ?singleWsdl instead of ?wsdl):

https://webservices.producaorestrita.esocial.gov.br/servicos/empregador/enviarloteeventos/WsEnviarLoteEventos.svc?singleWsdl

In VS it is also possible to add a reference to the service directly using the file Wsenviar loteeventos-v1_1_0.wsdl made available on eSocial Communication Package (latest version 1.4.1), which can be found on the eSocial Portal technical documentation page.

That tool, Add Service Reference of VS, will create a client class to consume the web service, in the case of the example WsEnviar.ServicoEnviarLoteEventosClient, who inherits the class System.ServiceModel.Clientbase.

It is also possible to use the command line tool svcutil.exe, which, likewise, will create a client class inheriting the class System.ServiceModel.Clientbase. Alternatively it is also possible to use the command line tool wsdl.exe, older, for services from the time of . NET Framework 2, based on ASMX, which will also create a client class, but this time inheriting the class System.Web.Services.Protocols.Soaphttpclientprotocol. But in that case the code to consume the service would be a little different.

Following all these steps, accessing the eSocial web service should work.

  • 1

    Your answer lacks elements. This link may become unavailable in the future. It is interesting, besides the link, you post these tips that you quoted in your reply.

  • Andrei, the first part of my message answers the question, Gabriel was using the wrong URL to access the service. The link I posted is an extra, to help people who fall here in this post and have questions on how to connect to eSocial web service. I didn’t rewrite the link tips because the original question was already answered in my message, and I created the tips page precisely so I didn’t have to keep writing the same things over and over again (before creating the page I wrote the same tips several times on eSocial discussion forums).

  • Only those who gave the negatives could explain the reasons, but perhaps because you pass close to the problem and in the end the solution is in a link, it is a kind of generic answer and not specific to the question in question. In addition, this answer is identical to this other one: https://answall.com/a/277472/3117

  • Math, but the final solution is not no link... As I explained to Andrei, the solution is in the message. The URL used by Gabriel to access the service is wrong, the URL he used is to add a reference to the service and not to access the service, and I explained this in my reply, not in the link. The link was just an extra with more information on this subject, in case anyone needs it in the future. And my answer to Gabriel was identical to the answer to Glaucus because the questions were identical as well. In that case I should just post the link to the other similar question?

  • Indeed, the answer is in your text. On the duplicate questions, you can vote to close it by indicating your respective duplicate. On the negatives, it’s always helpful when the person who voted justifies but we have no way of knowing if this is really going to happen

Browser other questions tagged c# .net webforms esocial

You are not signed in. Login or sign up in order to post.