You can add the LoggingInInterceptor for your service, this will print out the incoming message, compare the authenticating and non-authenticating incoming message might reveal something. Btw, how you add your LDAP authentication interceptor? What's the PHASE of that interceptor?
------------- Freeman(Yue) Fang Red Hat, Inc. FuseSource is now part of Red Hat Web: http://fusesource.com | http://www.redhat.com/ Twitter: freemanfang Blog: http://freemanfang.blogspot.com http://blog.sina.com.cn/u/1473905042 weibo: @Freeman小屋 On 2013-1-7, at 下午4:25, jbright wrote: > Yes, it works perfectly while hitting URL-1 directly. > > > It also works while hitting URL-2, but the interception is not happening, > which means without authenticating the service is responding for the request > with a proper response.. > > > > -- > View this message in context: > http://cxf.547215.n5.nabble.com/Interceptor-Issue-Https-to-Http-tp5721102p5721114.html > Sent from the cxf-user mailing list archive at Nabble.com.
