File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
http://aspose.com/file-tools
Win a copy of Clojure in Action this week in the Clojure forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

JaxWsPortProxyFactoryBean HttpInvokerServiceExporter security enabled

 
gianluca gian
Ranch Hand
Posts: 31
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
hi everyone. In test environment we have a websphere application server with security enabled. On our web application we have some services: spring http services and jax-ws services. Another web application that is installed on the same application server of the first application, uses both kind of services, but while authentication is necessary only for jax-ws services (ws-security) for http services is not. Can you tell me why?

this is a http service:



and the following is the jax-ws:


Bye
 
Bill Gorder
Bartender
Posts: 1682
7
Android IntelliJ IDE Linux Mac OS X Spring
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Is your question how to secure it or why it does not work the same as JaxWs?
 
gianluca gian
Ranch Hand
Posts: 31
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
excuse me, I'm a little confused about the difference between http spring service and jax-ws service. I think I need to read more. As I said in test environment we had jax-ws services with authentication, so at the moment we removed the basic authentication configured on the web.xml and then authentication were not required anymore. But I'm curious about how to enable security on spring http service. Thanks
 
Bill Gorder
Bartender
Posts: 1682
7
Android IntelliJ IDE Linux Mac OS X Spring
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The type of security you mentioned is container level security. There are varying degrees of this offered by different vendors. You also add additional security like that offered by Spring Security. This would be used to secure something like your remoting endpoint. I did find an example demonstrating one way this could be done.

http://kalali.me/using-spring-security-to-enforce-authentication-and-authorization-on-spring-remoting-services-invoked-from-a-java-se-client/

Have a look at the Spring Security project for a more extensive list of all the things it has to offer.

http://www.springsource.org/spring-security
 
gianluca gian
Ranch Hand
Posts: 31
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
thanks a lot. Bye
 
I agree. Here's the link: http://aspose.com/file-tools
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic