2 Replies Latest reply on Feb 19, 2013 1:26 PM by Carvel Baus

    Per http-provider security for EBWS - possible?

    Carvel Baus Newbie

      I am attempting to use an HTTPGateway together with a SOAPProxy action to proxy a webservice. I need to be able to provide multiple endpoints, each with a different security contract, for the proxied web service (the point of the multiple endpoints is to have different security configurations.) After reading this post, where a discussion took place about adding the war-security tag to the ESB, it seems that being able to specify different security configurations for each endpoint (configured here using separate http-bus tags) is not possible: https://community.jboss.org/message/349913


      What would be nice, is to be able to configure separate security configurations for each http-bus reference.


      So my question is: Is what I want to do actually possible (JBoss ESB 4.11) and I am just missing it? If not, should it be a feature? It would make what I am trying to do a whole lot easier. If not, it seems I have to deploy multiple war files to handle each end point with differing security contracts and then get the requests to the ESB to be passed onto the proxied web service. Being able to specify it all here in a single ESB deployment file would be great - makes managing it a whole lot easier.


      Here is what my jboss-esb.xml looks like thus far:



      <?xml version = "1.0" encoding = "UTF-8"?>







          <!-- Security setting for all http-providers and all EBWSs in this jboss-esb.xml file.-->

              <war-security method="BASIC" domain="JBossWS" />





             <http-provider name="http">

                 <http-bus busid="noaSecurity"/>

                 <http-bus busid="pkiSecurity"/>

                 <http-bus busid="wcfSecurity"/>





              <service category="Stock" name="Quote" description="Stock Quote" invmScope="GLOBAL">


                      <http-gateway name="GW-NOA" busidref="noaSecurity" urlPattern="noa/*" />

                      <http-gateway name="GW-PKI" busidref="pkiSecurity" urlPattern="pki/*"/>

                      <http-gateway name="GW-WCF" busidref="wcfSecurity" urlPattern="wcf/*"/>


                  <actions mep="RequestResponse">

                      <action name="proxy" class="org.jboss.soa.esb.actions.soap.proxy.SOAPProxy">

                          <property name="wsdl" value="http://www.webservicex.net/stockquote.asmx?WSDL"/>