users@glassfish.java.net

RE: RE: Problem with Glassfish Transport SSL

From: Alex Sherwin <alex.sherwin_at_acadiasoft.com>
Date: Tue, 2 Dec 2008 17:09:57 -0500

As far as I can tell, that security-constraint looks right.

You're securing the url pattern "/NewWebServiceService/*", but your web.xml is not defining a servlet or servlet-mapping anywhere. I'm not sure that this is your problem, as I don't know how you are implementing your service.

Is it a custom written Servlet class? If so, I would imagine you need to have it defined in web.xml



Alex Sherwin
alex.sherwin_at_acadiasoft.com


-----Original Message-----
From: glassfish_at_javadesktop.org [mailto:glassfish_at_javadesktop.org]
Sent: Tuesday, December 02, 2008 4:42 PM
To: users_at_glassfish.dev.java.net
Subject: Re: RE: Problem with Glassfish Transport SSL

I gave that a try but now I am getting a new error:

Security Requirements not met - No Security header in message


I am pretty new to Netbeans and GF so I imagine I am doing something wrong on that end of things. Here is my web.xml if you wouldn't mind taking a quick look at it.

<?xml version="1.0" encoding="UTF-8"?>
<web-app version="2.5" xmlns="http://java.sun.com/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd">
    <session-config>
        <session-timeout>
            30
        </session-timeout>
    </session-config>
    <welcome-file-list>
    <welcome-file>index.jsp</welcome-file>
      </welcome-file-list>
       <security-constraint>
        <display-name>SSL transport for NewWebServiceService </display-name>
        <web-resource-collection>
            <web-resource-name>Secure Area</web-resource-name>
            <url-pattern>/NewWebServiceService/*</url-pattern>
            <http-method>POST</http-method>
        </web-resource-collection>
      <!-- <auth-constraint>
            <role-name>EMPLOYEE</role-name>
        </auth-constraint> -->
        <user-data-constraint>
            <transport-guarantee>CONFIDENTIAL</transport-guarantee>
        </user-data-constraint>
    </security-constraint>
    </web-app>


Thanks for the quick reply,
Ben
[Message sent by forum member 'rem2500' (rem2500)]

http://forums.java.net/jive/thread.jspa?messageID=319651

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe_at_glassfish.dev.java.net
For additional commands, e-mail: users-help_at_glassfish.dev.java.net