Glen,
Those are setting the HTTP headers. (or JMS properties)That doesn't
set anything into the soap headers. With JAX-WS, there are only
two "portable" ways of adding headers to the soap message:
1) Soap message handler - you need to deal with the saaj object yourself
to get the parts
Comment below...
Am Dienstag, den 11.12.2007, 17:24 -0500 schrieb Daniel Kulp:
> Matt,
>
> Somehow I missed this thread.
>
> With CXF, you don't need to write a handler to add/get soap headers. We
> actually allow setting them via the clients request context (and
> retrieve via respons
Matt,
Somehow I missed this thread.
With CXF, you don't need to write a handler to add/get soap headers. We
actually allow setting them via the clients request context (and
retrieve via response context). Some samplish code:
bp = (BindingProvider)proxy;
Map requestContext = bp.getR
Hi David,
Thanks for the reply. Yes you are correct. Thats the Java way. I found a
posting for a Flex client as well. Please look at this great blog - (It was
a great post on lot good stuff - but rather incomplete).
http://www.jroller.com/wookets/
I wish this guy makes the examples more complete
Hi,
I do not think so, I think you have to create a message handler, that adds
token you want to the soap header and put iit in a handler chain if you're
working in java.
Anyway this info have to go in a SOAP header.
Theoretically you could construct the XML soap request programmatically
(also in
-|
> |10/07/2007 08:54 AM
>
> |
>
> >--|
> |>
> | Subject: |
> |-------->
>
> >---
Hello again,
Sorry to re-visit this thread again, but I am still not clear if we reached
any conclusion! Do we just use Acegi or use it with WSSJ?
Can some one please post a complete example - With all the configurations
etc? It will be awesome!
Thanks
Matt
Juan José Vázquez Delgado wrote:
>
-|
|10/07/2007 08:54 AM
|
>--|
|>
| Subject: |
|>
>-------------
Oops! - this should be: "your class that implements CallbackHandler"
Anne Racel
Senior Software Engineer
Cormine Intelligent Data
I will be very interested too, especially for some very good example
implementation.
Regards,
Aurelije
From: Kaleb Walton [mailto:[EMAIL PROTECTED]
Sent: Friday, October 05, 2007 12:41 PM
To: cxf-user@incubator.apache.org
Subject: Re: CXF+ACEGI
I'm yet another person very inter
09/21/2007 04:51 PM
Subj
Yeah, that looks great. If you want to do authentication at the
ws-security layer I'd do it in the fashion described there and by
dkulp a few posts back...
On 9/21/07, mattmadhavan <[EMAIL PROTECTED]> wrote:
>
> Sorry everybody! I was out for couple of days and I had forgotten to add the
> link!
>
Sorry everybody! I was out for couple of days and I had forgotten to add the
link!
http://www.vorburger.ch/blog1/2006/10/propagating-acegis-security-context-in.html
Thanks
Matt
Willem2 wrote:
>
> Hi Matt
>
> I did not see any url in your mail below :(.
> Could you send them again ?
>
> Wil
Hi all,
I love CXF, but IMHO the ws-security module is not good enough solved. I
suspect the responsible is wss4j wich is not too much powerful.
I´m thinking in using the glassfish XWSS (https://xwss.dev.java.net/) in a
similar way to Spring Web Services (
http://static.springframework.org/spring
We started some discussion the other day about CXF+Acegi out there the
other day, but hadn't seen anything since. Any discussion after I sent
the source code or my findings with integrating the two?
On Tue, 2007-09-18 at 11:18 -0400, Eric Miles wrote:
> Actually, here is the code. Attached is th
Hi Matt
I did not see any url in your mail below :(.
Could you send them again ?
Willem.
mattmadhavan wrote:
Hello All,
Please refer to this blog. Seems to be one of the most popular blog. Please
look at the client code! (Test case).
Any ideas? If some one has a complete ACEGI security solutio
Actually, here is the code. Attached is the WSS4J callback class and
the CXF interceptor that uses the Acegi authentication manager for
authentication.
Pretty simple and straight forward. If you look at the callback
handler, you can see my comment regarding the WSS4J engine. I do have
one conce
It was a bit of extra coding, as there is some dis join between what
WS-Security wants to do and what Acegi wants to do (at least for
UsernameToken authentication). We also have a business requirement due
to some legacy data setup that proved to be problematic with WSS4J.
WSS4J wants you to retur
Eric,
Do you mind posting a complete example. May be we can have a very
constructive discussions based on that.
Thanks
Matt
BigEHokie wrote:
>
> Dan,
>
> What sort of solution are you looking for? We are using an
> Acegi/Spring/CXF implementation at our company where we are using
> WS-Sec
Hello All,
Please refer to this blog. Seems to be one of the most popular blog. Please
look at the client code! (Test case).
Any ideas? If some one has a complete ACEGI security solution and posts it
it will be Awesome! Ray do you mind posting a complete sample. It will be
greatly beneficial to e
I guess I'm interesting in seeing any code that could be shared between
users come into CXF. Specifically, if I remember correctly from the
solutions that I've seen, the WS-Security integration in particular
takes an extra bit of coding. Would be very happy to include your
contributions.
Chee
Ray,
On Monday 17 September 2007, Ray Krueger wrote:
> The authorization and authentication concerns are addressed at the
> protocol layer first, and can then be extended into lower levels of
> the application via AOP and such. So, if you're interested in securing
> your application at that level,
Dan,
What sort of solution are you looking for? We are using an
Acegi/Spring/CXF implementation at our company where we are using
WS-Security and Acegi for authentication and AOP/Acegi for
authorization. We could be interested in contributing.
Thanks,
Eric
On Tue, 2007-09-18 at 00:15 +0200, D
And I want somebody to contribute a cleaner solution :-D
I know there is a lot of stuff we could do with Spring Security/Acegi
that would be super cool. It'd be a real low barrier way to contribute
some stuff if anyone is interested.
Cheers,
- Dan
mattmadhavan wrote:
Hi Ray,
No I do not w
Another factor in the discussion has to do with what you want to
secure. Acegi is built to secure web applications. It does this by
providing various ways to secure the HTTP communication.
The authorization and authentication concerns are addressed at the
protocol layer first, and can then be exte
Interesting you should ask this.I first heard about ACEGI last
week in a different conversation and have just started to look into it a
bit. I'd LOVE to have your input into this as to what you think is
needed or what you would consider good integration.
Here are my thoughts so far:
Acegi can be used on the secure the application the server-side.
WS-Security stuff can be used as well.
Your client side application need only present the credentials to the
server to say who it wants to log in as. That's not a an Acegi thing,
it's really not even a java thing at that point.
If y
Am Freitag, den 14.09.2007, 08:16 -0700 schrieb Zarar Siddiqi:
> UsernamePasswordAuthenticationToken token = new
> UsernamePasswordAuthenticationToken(
>user.getUsername(), user.getPassword(), user.getAuthorities());
> // Populate Acegi Security Context
> SecurityContextHolder.getContext().setA
Hi Ray,
No I do not want the client side to tell the server! Thats my point. Some
good blogs I have seen, do that! Where the client 'tells' which handler to
use!
I want a cleaner ACEGI+ XFIRE solution!
Thanks
Matt
Ray Krueger wrote:
>
> You want the client to tell the server how to do securi
You want the client to tell the server how to do security? That sounds crazy :)
Your client side should either be doing http based security or
ws-security. That doesn't have anything to do with Acegi at that
point.
On 9/14/07, Zarar Siddiqi <[EMAIL PROTECTED]> wrote:
>
> I'm trying to understand
I'm trying to understand what you're saying but am having difficulty. But
here goes:
> Can some one point me to some docs on the CXF and ACEGI integration
> or CXF and security like authentication and authorization.
I use Acegi for authorization purposes only. IMHO it doesn't really make
sense
Any Help will be appreciated!
mattmadhavan wrote:
>
> Hello,
> Can some one point me to some docs on the CXF and ACEGI integration or CXF
> and security like authentication and authorization. Some sample app will
> even be great.
>
> I found some blogs on the CXF+ACEGI, but it is Java centric
32 matches
Mail list logo