Win a copy of Think Java: How to Think Like a Computer Scientist this week in the Java in General forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Web Service Authentication

 
Ephraim Paka
Ranch Hand
Posts: 37
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hello All,

How do we implement a security for web services? Since service components are either loosley coupled or have no client session tracking
like web based clients. What happens once a client is authorized and either
tries to invoke a service method or looses connection and reconnects?

Thanks
 
Ulf Dittmer
Rancher
Posts: 42967
73
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Since WS are generally stateless, you'd need to send the authentication details with every call. But since that's usually being done by a handler that's independent from the actual WS invocation code, it wouldn't complicate the client code.
 
Ephraim Paka
Ranch Hand
Posts: 37
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thanks Ulf
 
susha bhogs
Greenhorn
Posts: 6
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Following is a nice presentation from BEA WBELOGIC -

https://www120.livemeeting.com/cc/bea/viewFormatWMMticketID=z8mxkpjs497cp70m
 
Ulf Dittmer
Rancher
Posts: 42967
73
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Originally posted by susha bhogs:
Following is a nice presentation from BEA WBELOGIC -

https://www120.livemeeting.com/cc/bea/viewFormatWMMticketID=z8mxkpjs497cp70m


... which seems to be protected.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic