8:31 a.m.
spyhunter99 [https://community.jboss.org/people/spyhunter99] created the discussion
"Re: JAXWSProperties.SSL_SOCKET_FACTORY alternative in JBoss"
To view the discussion, visit: https://community.jboss.org/message/737958#737958
--------------------------------------------------------------
The BindingProvider properties you've referred to only apply to message level
certificate usage (XML signing and encryption). For per client transport layer settings
(there's a JIRA on this), the easiest thing to do is to download the jbossws source,
modify it and rebuild it. I posted the revised code not too long ago on one of my open
JIRA tickets. Perhaps you can find it.
--------------------------------------------------------------
Reply to this message by going to Community
[https://community.jboss.org/message/737958#737958]
Start a new discussion in JBoss Web Services at Community
[https://community.jboss.org/choose-container!input.jspa?contentType=1&...]
3:05 a.m.
Markus Kilås [https://community.jboss.org/people/ne1mackan] created the discussion
"Re: JAXWSProperties.SSL_SOCKET_FACTORY alternative in JBoss"
To view the discussion, visit: https://community.jboss.org/message/738214#738214
--------------------------------------------------------------
Thank you spyhunter99 for your reply.
I am not sure I fully understood what you mean. Are you saying that
JAXWSProperties.SSL_SOCKET_FACTORY is used by JBossWS-native but not for the transport
layer as it is JAX-WS RI/metro?
Rebuilding JBossWS-native isn't really something I would like to do trying to build an
portable JEE application. However, I have done some more searching on the issue and found
out that it is possible to achieve the same functionality as in JAX-WS RI by switching to
JBossWS-cxf and use some custom code to set the TlsSettings. Not optimal as it would
require the Apache CXF at compile-time and I would have to check if it is available at
runtime as it will not be when running on GlassFish but anyway.
--------------------------------------------------------------
Reply to this message by going to Community
[https://community.jboss.org/message/738214#738214]
Start a new discussion in JBoss Web Services at Community
[https://community.jboss.org/choose-container!input.jspa?contentType=1&...]
11:32 a.m.
spyhunter99 [https://community.jboss.org/people/spyhunter99] created the discussion
"Re: JAXWSProperties.SSL_SOCKET_FACTORY alternative in JBoss"
To view the discussion, visit: https://community.jboss.org/message/739094#739094
--------------------------------------------------------------
No, I'm stating that out of the box, the request message context parameters that you
pass it, such as javax.net.ssl.truststore and keystore are not picked up from there or
from system.properties. It will however pickup key stores for message level encryption and
signing, not transport. I haven't explicitly looked for the SSL_SOCKET_FACTORY's
usage, but I've haven't stumbled upon it.
If you want per web service client SSL sessions with their own key/trust stores, you
either have to rebuild jboss-native from source (which is easy) and patch it (also easy),
or switch to jbossws-cxf and use the httpconduit class to setup the trust stores.
--------------------------------------------------------------
Reply to this message by going to Community
[https://community.jboss.org/message/739094#739094]
Start a new discussion in JBoss Web Services at Community
[https://community.jboss.org/choose-container!input.jspa?contentType=1&...]
8:15 a.m.
Markus Kilås [https://community.jboss.org/people/ne1mackan] created the discussion
"Re: JAXWSProperties.SSL_SOCKET_FACTORY alternative in JBoss"
To view the discussion, visit: https://community.jboss.org/message/739679#739679
--------------------------------------------------------------
Ok thank you, then I will probably go with the switching to jbossws-cxf as I can not
require my users to patch the application server manually. Also making changes to the web
services stack implementation doesn't sound like something you can do in the supported
JBoss EAP version.
Regards,
Markus
--------------------------------------------------------------
Reply to this message by going to Community
[https://community.jboss.org/message/739679#739679]
Start a new discussion in JBoss Web Services at Community
[https://community.jboss.org/choose-container!input.jspa?contentType=1&...]
3:31 a.m.
Bojan Dolinar [https://community.jboss.org/people/bodzolca] created the discussion
"Re: JAXWSProperties.SSL_SOCKET_FACTORY alternative in JBoss"
To view the discussion, visit: https://community.jboss.org/message/816944#816944
--------------------------------------------------------------
I'm confused here. Isn't your answer in direct contradiction with the fact that it
works by setting the system properties? It doesn't matter whether this
'solution' is unsatisfactory, it just works. I'm probably missing something
obvious.
Markus, another question for you. Were you successful in switching to jbossws-cxf? Did you
run into problems discussed
http://lea-ka.blogspot.com/2012/09/assorted-facts-about-jboss-fact-6-jbos... here?
Thanks to both!
--------------------------------------------------------------
Reply to this message by going to Community
[https://community.jboss.org/message/816944#816944]
Start a new discussion in JBoss Web Services at Community
[https://community.jboss.org/choose-container!input.jspa?contentType=1&...]
4245
days inactive
4594
days old
4 comments
3 participants
participants (3)
-
Bojan Dolinar -
Markus Kilås
-
spyhunter99