[
https://issues.apache.org/jira/browse/CXF-466?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Jarek Gawor updated CXF-466:
----------------------------
Attachment: CXF-466.patch
> Check WebServicePermission
> --------------------------
>
> Key: CXF-466
> URL: https://issues.apache.org/jira/browse/CXF-466
> Project: CXF
> Issue Type: New Feature
> Components: JAX-WS Runtime
> Reporter: Jarek Gawor
> Attachments: CXF-466.patch
>
>
> As according to JAX-WS 2.0 spec, the WebServicePermission should be checked
> when publishing an endpoint. The attached patch adds that feature.
> The JAX-WS 2.0 spec only calls for checking that permission only when a
> SecurityManager is installed. However, JSR 109 always says that this
> permission must not be granted (even when SecurityManager is not installed).
> Therefore, the patch contains a bit of code that can also perform the
> WebServicePermission check when a SecurityManager is not installed. That code
> is only enabled when 'org.apache.cxf.jaxws.checkPublishEndpointPermission'
> system property is set (we will set this property in Geronimo).
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
