Granny's Programming Pearls
"inside of every large program is a small program struggling to get out"
A friendly place for programming greenhorns!
Big Moose Saloon
Register / Login
Win a copy of
Java SE 8 for the Really Impatient
this week in the
Web Service Access
Nuno Miguel Santos
Joined: Nov 01, 2011
May 24, 2012 07:39:29
I've built an application that interacts with a web service, which in turns contacts a CMS Platform that is integrated with an AD server.
In turn, the web service uses the CMS api to upload/download files and various functionalities.
That's where I want to make sure only the right users (the one that are stored in the AD) use the web service.
If I fetch both the windows user with his domain in my code, and then send it to the web service, will that be enough?
for example: mydomain\nuno
I can't rely on certificates to identify the person because if the application will reside on hundreds of computers, hundreds of certificates would have to be created.
I agree. Here's the link:
subject: Web Service Access
Integrate Single-Sign On on Java
Convert Object to Certificate
Spring Web services
Select a certificate from a keystore for client authentication
All times are in JavaRanch time: GMT-6 in summer, GMT-7 in winter
| Powered by
Copyright © 1998-2014