Provide security authentication per wsrp producer in the consumer ----------------------------------------------------------------- Key: GTNWSRP-132 URL: https://issues.jboss.org/browse/GTNWSRP-132 Project: GateIn WSRP Issue Type: Feature Request Reporter: Julien Viet Assignee: Matt Wringe Fix For: 2.1.0 Security based on SOAP/HTTP security which allow basic/digest authentication. Usually the stub can be configured using smth like : Stub stub = // ... get the Stub; stub._setProperty ("javax.xml.rpc.security.auth.username", "juliet"); stub._setProperty ("javax.xml.rpc.security.auth.password", "mypassword"); We need to support several kind of username/password style, so we should have 1/ a global username/password for the whole producer, smth like <wsrp-producer> <producer-id>blah</producer-id> ... <auth-config> <username>blah username</username> <password>blah password</password> </auth-config> </wsrp-producer> 2/ a generic mechanism that would allow more fine grained username/password that can allow to make identity propagation (for sso) <wsrp-producer> <producer-id>blah</producer-id> ... <auth-config> <credential-factory>org.client.BlahCredentialFactory</credential-factory> </auth-config> </wsrp-producer> with an interface which allows to retrieve credentials. Usually the factory implementations leverage thread local mechanisms to integrate the user identity with a username/password storage like : String userId = UserId.getCurrentUserId(); String password = passwordStore.getPassword(userId); return new WSRPCredential(userId, password);