-
1. Re: Web Services with aspect
bill.burke Sep 11, 2004 3:33 PM (in response to cadospbr)In JBoss 4.0 and J2EE 1.4. Stateless Session EJBs can be exposed as web services. You can propagate principal and credentials using basic auth, but the spec really doesn't specify security semantics.
Security isn't difficult to write as an aspect, but what is difficult is plugging in how the client propagates the message. You could specify JAX-RPC handlers on the client and server side to add to the SOAP envelope and propagate security.
Bill -
2. Re: Web Services with aspect
cadospbr Sep 11, 2004 6:13 PM (in response to cadospbr)Bill, first of all, thanks for your attention!
Well, I really noted that there is a possibility to do what I want! This is a big goal to me! Where I can find some documentations ou tutorials about the development of "Aspect Web Services" in Jboss? Docs about EJB was going exposed as Web Service? And "first steps" in EJB +AOP!
Thanks Bill
There are many people here in my job that wait for your replies. :] -
3. Re: Web Services with aspect
bill.burke Sep 11, 2004 10:48 PM (in response to cadospbr)http://java.sun.com/xml/jaxrpc/
http://www.jcp.org/en/jsr/detail?id=109
http://jcp.org/aboutJava/communityprocess/final/jsr153/index.html
You will have to write a Handler to propagate principal and credential information.
If you want role-based security at the POJO level, check out these aspects:
http://www.jboss.org/wiki/Wiki.jsp?page=JBossAOP
Bill