Hi all,

we need to develop quickly a minimal Web service authentication policy for our Web services running on JBoss AS 6 + spring + Apache CXF.

As we just need a bare bones authentication (user & password) is it a good choice to do it via an Interceptor which scans the SOAP message and authenticates ? thanks a lot

Max