Im using JAX-WS RI and Glassfish, and I have two distributed web services.
I need the client to be authenticated with each web service and then use the first services and then the second, combine the result and show it.
I need both web services to be secured.
I submitted this same post about a week ago and I received useful answers advising me that that's what WS-Security is all about
Thank you guys.
The problem is that my PM still wants me to do the authentication without implementing WS-Security first.
I just want to know if there is a way to do that without WS-Security.