users@glassfish.java.net

Re: Glassfish - Webservice security

From: Kumar Jayanti <v.b.kumar.jayanti_at_oracle.com>
Date: Fri, 6 May 2011 13:02:26 +0530

http://weblogs.java.net/blog/kumarjayanti/archive/2008/11/plain_text_user.html

The zip file i am referring to in my blog is missing after the java.net migration to kenai. I will need to restore it.


On 06-May-2011, at 12:54 PM, forums_at_java.net wrote:

> Hi Martin,
>
> thanks for the reply. But what you sent me seems way to complicated
> towards what i'd like to do :)
>
> I'd like just to add a security header to my SOAP messages like this :
>
> /* <soapenv:Header>*/ /* <wsse:Security
> xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"> */
> /* <wsse:UsernameToken> */
> /* <wsse:Username>mvincent</wsse:Username>
> */ /* <wsse:Password
> Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-
> 1.0#PasswordText">mvincent</wsse:Password> */ /*
> </wsse:UsernameToken> */ /* </wsse:Security>*/ /*
> </soapenv:Header>*/ I know it's probably not the most secured way, but
> as it is used for communication between applications in the same system, it's
> not a big deal... (and it's the policy chosen by my client) I've tried
> many different configuration on my GF server and in my
> web.xml/sun-web.xml/sun-jaxws.xml files with no success... Any idea to
> make this work ? Thanks a lot Mat
>
>
>
> --
>
> [Message sent by forum member 'yodamad']
>
> View Post: http://forums.java.net/node/798878
>
>