2 Replies Latest reply on May 22, 2008 1:15 PM by Alessio Soldano

    Getting username and password without performing authenticat

    Borja Ruiz Newbie

      Hi,

      I'm developing a jbossws server application that must get Username and Password tokens in header in order to invoke another application with those credentials. A sample request made to my application seems like this.

      <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:mod="http://myapp.com/ws/model">
      <soapenv:Header>
      <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
      <wsse:UsernameToken>
      <wsse:Username>name</wsse:Username>
      <wsse:Password>pass</wsse:Password>
      </wsse:UsernameToken>
      </wsse:Security>
      </soapenv:Header>
      <soapenv:Body>
      <mod:request>
      a
      </mod:request>
      </soapenv:Body>
      </soapenv:Envelope>

      I have read thread

      http://www.jboss.com/index.html?module=bb&op=viewtopic&t=131719

      but it does not explain exactly what I need. I can not use login-config.xml to store allowed users, because it could be any, that is, my application does not perform authentication at all. I only need to get username and password values to propagate them.

      Maybe with additional information I could provide to you we could find a suitable solution.

      Thank you very much!