Hi Jim,
I still need to try everything, but my plan is to enable at least all
the ws-security policy based configuration. If you take a look at either
our wssePolicy tests in cxf-spring-testsuite or to the Apache CXF doc at
http://cxf.apache.org/docs/ws-securitypolicy.html, you see that the
required spring configuration for setting up a ws-security policy
enabled endpoint is something like:
<beans
xmlns="http://www.springframework.org/schema/beans"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:jaxws="http://cxf.apache.org/jaxws"
xsi:schemaLocation="http://www.springframework.org/schema/beans
http://www.springframework.org/schema/beans/spring-beans-2.0.xsd
http://cxf.apache.org/jaxws
http://cxf.apache.org/schemas/jaxws.xsd">
<jaxws:endpoint
id="MyService"
address="https://localhost:9001/MyService"
serviceName="interop:MyService"
endpointName="interop:MyServiceEndpoint"
implementor="com.foo.MyService">
<jaxws:properties>
<entry key="ws-security.callback-handler"
value="interop.client.UTPasswordCallback"/>
<entry key="ws-security.signature.properties"
value="etc/keystore.properties"/>
<entry key="ws-security.encryption.properties"
value="etc/truststore.properties"/>
<entry key="ws-security.encryption.username"
value="useReqSigCert"/>
</jaxws:properties>
</jaxws:endpoint>
</beans>
so it's basically a matter of passing those jaxws string properties only.
Cheers
Alessio
On 04/29/2011 11:48 AM, Jim Ma wrote:
Hi Alessio,
Just one question , are you going to make @EndpointConfig to cover all
kinds of ws security configuration ? For example
keystore, password , saml token etc. User does not need any extra cxf
configuration file to enable ws security ?
Thanks
Jim
Alessio Soldano wrote:
> With this solution we'd clean a inconsistency in the api
> (@EndpointConfig for native only till now), add a mean for having
> global handlers configured by administrators [4] and allow providing
> security keystore/trustore/etc. info and use WS-Security(policy) with
> jbossws-cxf without any need for Spring.
>
> Any comments?
--
Alessio Soldano
Web Service Lead, JBoss