0 Replies Latest reply on Jan 7, 2005 5:41 AM by baptiste

    encrypted EJB call: enabling mutual authentication

    baptiste

      Hi,

      I have SSL-encrypted calls to a SLSB as described by JBoss admin guide.
      I created client and server keystores and imported the server certificate into the client keystore. The SSL debug info tells me the handshaking works OK.

      Now I'd like the server to authenticate its clients. I know it's permitted by SSL and possible in Tomcat. However, I couldn't find the info in the case of an EJB call: is it possible to enable mutual authentication for EJBs ?

      Here's a piece of my jboss.xml file.

      <session>
       <ejb-name>
       SatelliteServiceSBean
       </ejb-name>
       <jndi-name>
       ejb/SatelliteServiceHome
       </jndi-name>
      
       <invoker-bindings>
       <invoker>
       <invoker-proxy-binding-name>
       stateless-ssl-invoker
       </invoker-proxy-binding-name>
       </invoker>
       </invoker-bindings>
       </session>
      
       <invoker-proxy-bindings>
       <invoker-proxy-binding>
       <name>stateless-ssl-invoker</name>
       <invoker-mbean>
       jboss:service=invoker,type=jrmp,socketType=SSL
       </invoker-mbean>
       <proxy-factory>org.jboss.proxy.ejb.ProxyFactory</proxy-factory>
       <proxy-factory-config>
       <client-interceptors>
       <home>
       <interceptor>
       org.jboss.proxy.ejb.HomeInterceptor
       </interceptor>
       <interceptor>
       org.jboss.proxy.SecurityInterceptor
       </interceptor>
       <interceptor>
       org.jboss.proxy.TransactionInterceptor
       </interceptor>
       <interceptor>
       org.jboss.invocation.InvokerInterceptor
       </interceptor>
       </home>
       <bean>
       <interceptor>
       org.jboss.proxy.ejb.StatelessSessionInterceptor
       </interceptor>
       <interceptor>
       org.jboss.proxy.SecurityInterceptor
       </interceptor>
       <interceptor>
       org.jboss.proxy.TransactionInterceptor
       </interceptor>
       <interceptor>
       org.jboss.invocation.InvokerInterceptor
       </interceptor>
       </bean>
       </client-interceptors>
       </proxy-factory-config>
       </invoker-proxy-binding>
      </invoker-proxy-bindings>
      


      JBoss version: 4.0.1
      Thanks for your answers.

      Baptiste