Thanks for your response. I think you're right about the redirect because the 302 error refers to login.jsp. I'm using AppFuse 2.0. I'm trying to test the webservice using SOAPUI-1.7.6 with WSS security enabled - won't this work as a Client? I thought the Acegi security AppFuse used was WSS compliant? I'll give your solution a try anyway.
Brett Knights-2 wrote: > > You're probably getting a redirect to the login page. > Assuming you can tell your web service clients to use Basic > Authentication (easy with PHP) your solution can be as simple as adding > a basicProcessingFilter to your acegi filter chain. > For AppFuse 1.9.x > > in security.xml > > filterChainProxy bean > > ...authenticationProcessingFilter,basicProcessingFilter,securityContextHolderAwareRequestFilter,... > > and supporting bean defs > > <bean id="basicProcessingFilter" > class="org.acegisecurity.ui.basicauth.BasicProcessingFilter"> > <property name="authenticationManager"><ref > local="authenticationManager"/></property> > <property name="authenticationEntryPoint"><ref > local="basicProcessingFilterEntryPoint"/></property> > </bean> > > <bean id="basicProcessingFilterEntryPoint" > class="org.acegisecurity.ui.basicauth.BasicProcessingFilterEntryPoint"> > <property name="realmName"><value>Web Services</value></property> > </bean> > > HTH > > Brett Knights > > George.Francis wrote: >> This is now urgent! I've been trying for days to get secure web-services >> going. I added /services/**=ROLE_ADMIN,ROLE_USER >> to security.xml as advised and using WSS with SoapUI-1.7.6 I am only >> getting >> an HTTP 302 response. >> Please help! >> >> >> George.Francis wrote: >> >>> Once I've secured my Webservice by editing WEB-INF/security.xml, how do >>> I >>> test it? >>> I've been using SoapUI up until now but since the services are now >>> secure >>> this fails (using WSS). >>> >>> >> >> > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > -- View this message in context: http://www.nabble.com/secured-web-services-tf4673549s2369.html#a13369474 Sent from the AppFuse - User mailing list archive at Nabble.com. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
