Uploaded image for project: 'JBoss Web Services'
  1. JBoss Web Services
  2. JBWS-978

Secure access to WSDL

XMLWordPrintable

    • Icon: Feature Request Feature Request
    • Resolution: Duplicate
    • Icon: Major Major
    • None
    • None
    • jbossws-native
    • None

      I have secured my Web Service endpoint (JSR-109 EJB) with basic authentication, but that requires me to enter the authentication information to access the WSDL which is unacceptable. Is there a way to secure the endpoint without securing the WSDL?

      Here is my jboss.xml:
      Code:

      <!DOCTYPE jboss PUBLIC "-//JBoss//DTD JBOSS 4.0//EN" "http://www.jboss.org/j2ee/dtd/jboss_4_0.dtd">
      <jboss>
      <security-domain>java:/jaas/JBossWS</security-domain> <!-- This links to conf/login-config.xml in jboss point to a security domain -->
      <enterprise-beans>
      <session>
      <ejb-name>JBossTest2</ejb-name>
      <jndi-name>JBossTest2</jndi-name>
      <resource-ref>
      <description>Database Reference to DataSource</description>
      <res-ref-name>jdbc/jbossTest2DB</res-ref-name>
      <jndi-name>java:/jbossTest2DB</jndi-name>
      </resource-ref>
      <port-component>
      <port-component-name>JBossTest2Endpoint</port-component-name>
      <auth-method>BASIC</auth-method>
      <port-component-uri>/jbosstest2/1.0</port-component-uri>
      </port-component>
      </session>
      </enterprise-beans>
      </jboss>

              Unassigned Unassigned
              tdiesler@redhat.com Thomas Diesler
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

                Created:
                Updated:
                Resolved: