2 Replies Latest reply on Aug 26, 2009 1:27 PM by tfennelly

How to configure webservice security for a Service exposed t

ismailseyfi Aug 26, 2009 11:41 AM

I have a simple service that is exposed as a web service. I have a remote web application that submits a simple soap message to this end point. My service exposed through contract definition. I specified my actions mep to be RequestResponse. I then provided in/out xml schemas. The client is able to submit a sop request to this and get a response back.

What I want to do is integrate security into set up. I want to do the simplest possible scenario a the moment. I modified my soap message to contain a UsernameToken header. I modified my service definition to contain the security module. When I deploy this setting, I get an exception about AuthenticationRequest not being set in the SEcurityContext in the Message. I guess this is happening because I do not have a gateway set up and I am not using ServiceInvoker directly within my actions.

With the set up I have is it possible for me to integrate Security? If so how? If not do i need to have a gateway? jbr http?

thanks in advance.

1. Re: How to configure webservice security for a Service expos

ismailseyfi Aug 26, 2009 12:20 PM (in response to ismailseyfi)

I think this explains what I am faced with.

https://jira.jboss.org/jira/browse/JBESB-2552

Are there any concerns using jbr from the remote web application? I am very new to all of this. I appreciate any suggestion anyone can provide.

thank again.
Actions
2. Re: How to configure webservice security for a Service expos

tfennelly Aug 26, 2009 1:27 PM (in response to ismailseyfi)

Hi there.

Right... EBWS doesn't support the internal ESB Security model yet.

You should be able to use the JBT Http Gateway and the SOAPProxy for this.
Actions

Go to original post