Win a copy of Five Lines of Code this week in the OO, Patterns, UML and Refactoring forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Bear Bibeault
  • Ron McLeod
  • Jeanne Boyarsky
  • Paul Clapham
Sheriffs:
  • Tim Cooke
  • Liutauras Vilda
  • Junilu Lacar
Saloon Keepers:
  • Tim Moores
  • Stephan van Hulst
  • Tim Holloway
  • fred rosenberger
  • salvin francis
Bartenders:
  • Piet Souris
  • Frits Walraven
  • Carey Brown

Authentication in WS

 
Greenhorn
Posts: 2
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi all,

I'm working with WS using an environment composed by Netbeans 5.5 and JAX-WS.
Now, I'm trying to add security to some services, so that people who try to get access need to authenticate by username/password. I've been testing with some code provided at: http://java.sun.com/javase/6/docs/technotes/guides/security/jaas/tutorials/GeneralAcnOnly.html

but I got no success. Anybody could help me? Any help will be welcome.

Thanks in advance.

Best regards.

Tony.
 
Rancher
Posts: 43016
76
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
JAAS is the be-all and end-all of authentication and authorization APIs. I find it to be overkill for most applications. What's more, it doesn't have anything specific for web services.

The WS-Security standard defines how authentication works for web services. Some time ago I wrote an article in the JavaRanch Journal on how to use it with Axis 2. (There's also an earlier article about Axis 1 which would make good companion reading.)

If you use some other WS toolkit than Axis you'll need to consult its documentation on how to incorporate WS-Security. E.g., the Metro stack has a component called WSIT that does this.
 
Can you really tell me that we aren't dealing with suspicious baked goods? And then there is this tiny ad:
Thread Boost feature
https://coderanch.com/t/674455/Thread-Boost-feature
    Bookmark Topic Watch Topic
  • New Topic