Thank you Freeman and Glen I think spring security is much easier for me to do this job.
I am wondering why there don't have a straight way solution of NTLM in java. Regards, Hua JIe On Wed, Aug 22, 2012 at 2:35 AM, Glen Mazza <[email protected]> wrote: > Links #11 and #12 here may also be of help: http://www.jroller.com/gmazza/ > **entry/blog_article_index<http://www.jroller.com/gmazza/entry/blog_article_index> > > Glen > > > On 08/21/2012 08:47 AM, Freeman Fang wrote: > >> Hi, >> >> Take a look at samples/ws_security/ut shipped with CXF kit, it's use >> ws-security UsernameToken which should map your user case. >> >> Or you can consider to use http basic auth, we have a test case[1] to >> demonstrate how to enable jetty basic auth >> [1]https://svn.apache.org/**repos/asf/cxf/trunk/systests/** >> transports/src/test/java/org/**apache/cxf/systest/http_jetty/** >> JettyBasicAuthServer.java<https://svn.apache.org/repos/asf/cxf/trunk/systests/transports/src/test/java/org/apache/cxf/systest/http_jetty/JettyBasicAuthServer.java> >> >> Freeman >> ------------- >> Freeman Fang >> >> FuseSource >> Email:[email protected] >> Web: fusesource.com >> Twitter: freemanfang >> Blog: http://freemanfang.blogspot.**com <http://freemanfang.blogspot.com> >> http://blog.sina.com.cn/u/**1473905042<http://blog.sina.com.cn/u/1473905042> >> weibo: http://weibo.com/u/1473905042 >> >> On 2012-8-21, at 下午4:40, 杨华杰 wrote: >> >> Thanks. Where can I find some basic solution to secure my web service. >>> Something like username and password, but very easy to configure. >>> >>> On Tue, Aug 21, 2012 at 4:25 PM, Freeman Fang <[email protected] >>> >wrote: >>> >>> Hi, >>>> >>>> I believe this link would help if you deploy CXF into tomcat. >>>> >>>> [1] >>>> http://stackoverflow.com/**questions/439120/how-to-** >>>> configure-tomcat-to-use-**windows-ntlm-authentication<http://stackoverflow.com/questions/439120/how-to-configure-tomcat-to-use-windows-ntlm-authentication> >>>> Freeman >>>> ------------- >>>> Freeman Fang >>>> >>>> FuseSource >>>> Email:[email protected] >>>> Web: fusesource.com >>>> Twitter: freemanfang >>>> Blog: http://freemanfang.blogspot.**com<http://freemanfang.blogspot.com> >>>> http://blog.sina.com.cn/u/**1473905042<http://blog.sina.com.cn/u/1473905042> >>>> weibo: http://weibo.com/u/1473905042 >>>> >>>> On 2012-8-21, at 下午4:07, 杨华杰 wrote: >>>> >>>> Hi Freeman >>>>> >>>>> [1] >>>>> >>>>> http://cxf.apache.org/docs/**client-http-transport-** >>>> including-ssl-support.html<http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html> >>>> >>>>> This >>>>> is used for ws-client, what I want to achieve is to secure my web >>>>> service >>>>> which created by CXF. >>>>> >>>>> >>>>> Regards, >>>>> Hua Jie >>>>> >>>>> >>>>> On Tue, Aug 21, 2012 at 3:35 PM, Freeman Fang <[email protected] >>>>> wrote: >>>>> >>>>> Hi, >>>>>> >>>>>> To secure your web service, you have several options. For an instance, >>>>>> from message level you can use ws-security, from transport level you >>>>>> can >>>>>> use SSL/TLS. >>>>>> And yes, you can use NTLM, take a look at [1], the "NTLM >>>>>> Authentication" >>>>>> part. >>>>>> [1] >>>>>> >>>>>> http://cxf.apache.org/docs/**client-http-transport-** >>>> including-ssl-support.html<http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html> >>>> >>>>> Freeman >>>>>> ------------- >>>>>> Freeman Fang >>>>>> >>>>>> FuseSource >>>>>> Email:[email protected] >>>>>> Web: fusesource.com >>>>>> Twitter: freemanfang >>>>>> Blog: http://freemanfang.blogspot.**com<http://freemanfang.blogspot.com> >>>>>> http://blog.sina.com.cn/u/**1473905042<http://blog.sina.com.cn/u/1473905042> >>>>>> weibo: http://weibo.com/u/1473905042 >>>>>> >>>>>> On 2012-8-21, at 下午3:26, 杨华杰 wrote: >>>>>> >>>>>> Hi >>>>>>> How do I secure my web service? Can I use NTLM? >>>>>>> >>>>>>> >>>>>>> Regards, >>>>>>> Hua JIe >>>>>>> >>>>>> >>>>>> >>>> >> >
