-
Bug
-
Resolution: Done
-
Major
-
jbossws-1.0.1
-
None
I have an WebService defined using JAXWS 2.0 annotations:
@WebService(name = "TestAccessPoint", serviceName="TestAccessPointService", targetNamespace = "http://accesspoint.jc/server")
@SOAPBinding(style = SOAPBinding.Style.DOCUMENT)
@BindingType(value = javax.xml.ws.soap.SOAPBinding.SOAP12HTTP_BINDING)
@Stateless
@Remote(ServerInterface.class)
public class Server implements ServerInterface {
....
I create and jar file and deploy it. Till now it works correctly.
Now I want to apply an WS-Security. After checking on WIKI I did following:
Added jboss-wsse-server.xml to the META-INF folder of jar file:
--------
<jboss-ws-security xmlns="http://www.jboss.com/ws-security/config" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.jboss.com/ws-security/config http://www.jboss.com/ws-security/schema/jboss-ws-security_1_0.xsd">
<key-store-file>META-INF/wsse.keystore</key-store-file>
<key-store-password>jbossws</key-store-password>
<trust-store-file>META-INF/wsse.truststore</trust-store-file>
<trust-store-password>jbossws</trust-store-password>
<config>
<sign type="x509v3" alias="wsse"/>
<requires>
<signature/>
</requires>
</config>
</jboss-ws-security>
----------
added keystore files to the META-INF directory. And added jboss.xml to the META-INF:
<?xml version="1.0" encoding="UTF-8"?>
<jboss>
<webservices>
<webservice-description>
<webservice-description-name>TestAccessPointService</webservice-description-name>
<config-name>Standard Secure Endpoint</config-name>
</webservice-description>
</webservices>
</jboss>
And deployed new jar file to jboss.
But webservice client is still be able to access webservices server part without WS-Security despite the fact that signature is required.
- is duplicated by
-
-
- Closed
-
-
JBWS-1203 Process the jboss.xml file
-
- Closed
-
- relates to
-
EJBTHREE-750 support xml overrides/augmentations for WS annotations
-
- Resolved
-
-
-
- Closed
-
