Re: How do I secure my web service?

Tue, 21 Aug 2012 11:35:43 -0700

Links #11 and #12 here may also be of help: http://www.jroller.com/gmazza/entry/blog_article_index 

Glen

On 08/21/2012 08:47 AM, Freeman Fang wrote:

Hi,

Take a look at samples/ws_security/ut shipped with CXF kit, it's use 
ws-security UsernameToken which should map your user case.

Or you can consider to use http basic auth, we have a test case[1] to 
demonstrate how to enable jetty basic auth
[1]https://svn.apache.org/repos/asf/cxf/trunk/systests/transports/src/test/java/org/apache/cxf/systest/http_jetty/JettyBasicAuthServer.java

Freeman
-------------
Freeman Fang

FuseSource
Email:[email protected]
Web: fusesource.com
Twitter: freemanfang
Blog: http://freemanfang.blogspot.com
http://blog.sina.com.cn/u/1473905042
weibo: http://weibo.com/u/1473905042

On 2012-8-21, at 下午4:40, 杨华杰 wrote:


Thanks. Where can I find some basic solution to secure my web service.
Something like username and password, but very easy to configure.

On Tue, Aug 21, 2012 at 4:25 PM, Freeman Fang <[email protected]>wrote:


Hi,

I believe this link would help if you deploy CXF into tomcat.

[1]
http://stackoverflow.com/questions/439120/how-to-configure-tomcat-to-use-windows-ntlm-authentication
Freeman
-------------
Freeman Fang

FuseSource
Email:[email protected]
Web: fusesource.com
Twitter: freemanfang
Blog: http://freemanfang.blogspot.com
http://blog.sina.com.cn/u/1473905042
weibo: http://weibo.com/u/1473905042

On 2012-8-21, at 下午4:07, 杨华杰 wrote:


Hi Freeman

[1]


http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html

This
is used for ws-client, what I want to achieve is to secure my web service
which created by CXF.


Regards,
Hua Jie


On Tue, Aug 21, 2012 at 3:35 PM, Freeman Fang <[email protected]
wrote:


Hi,

To secure your web service, you have several options. For an instance,
from message level you can use ws-security, from transport level you can
use SSL/TLS.
And yes, you can use NTLM, take a look at [1], the "NTLM Authentication"
part.
[1]


http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html

Freeman
-------------
Freeman Fang

FuseSource
Email:[email protected]
Web: fusesource.com
Twitter: freemanfang
Blog: http://freemanfang.blogspot.com
http://blog.sina.com.cn/u/1473905042
weibo: http://weibo.com/u/1473905042

On 2012-8-21, at 下午3:26, 杨华杰 wrote:


Hi
How do I secure my web service?   Can I use NTLM?


Regards,
Hua JIe

Reply via email to