Hi. I'm planning a project where webservices (JAX-WS) will be used. As security mechanismen Basic-Authentication over SSL and WS-Security (WSIT) should be supported. Since I use Spring and used acegi before in a JSF webapp successfully, I would like to go-on using acegi also for this new project.
Now my question is, has acegi WS support in any way? I think Basic-Authentication over SSL should be no problem using standard url pattern filtering, but what about WS-Security? Is there something that can take authentication information from the soap requests and put it automatically into the SecurityContext so it is available to the whole application (Thread), not only in the webtier? Would be fine if acegi could be the single-point-of-security in my app. Regards, Veit ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
