[jboss-user] [JBossWS] - problem with web service through SSL

peiguo do-not-reply at jboss.com
Sun Sep 10 16:08:47 EDT 2006

I have SSL connector (port 8443) defined for my jboss application server. In server\default\deploy\jbossweb-tomcat55.sar\server.xml, I added:
      <Connector port="8443" address="${jboss.bind.address}"
  |            maxThreads="100" strategy="ms" maxHttpHeaderSize="8192"
  |            emptySessionPath="true"
  |            scheme="https" secure="true" clientAuth="false" 
  |            keystoreFile="conf/server.keystore"
  |            keystorePass="12345678" sslProtocol = "TLS" />

But when I deploy a web service, it does not seem to work with https (when I try to view its wsdl through https://blah:8443/blah?wsdl, it fails). I checked the WSDL file that was generated (through http://blah:8080/blah?wsdl), it has this portion at the end:

<service name="SampleService">
  |     <port binding="tns:TrivialServiceBinding" name="TrivialServicePort">
  |           <soap:address location="http://it-peip:8080/jbossws-samples-rpcstyle" /> 
  |     </port>
  | </service>

Should it also have one more section (almost a duplicate) for 8443? Tomcat does have. I didn't make any change to the code, but did add the security-constriant to the web-inf\web.xml file:
  |   <auth-method>BASIC</auth-method> 
  |   <realm-name>default</realm-name> 
  | </login-config>
  | <security-constraint>
  |  <web-resource-collection>
  |   <web-resource-name>SSLSecurityProvider</web-resource-name> 
  |   <description>Security constraint for Security Provider</description> 
  |   <url-pattern>/jbossws-samples-rpcstyle?wsdl</url-pattern> 
  |   <http-method>POST</http-method> 
  |   <http-method>GET</http-method> 
  |   </web-resource-collection>
  |  <auth-constraint>
  |   <role-name>*</role-name> 
  |   </auth-constraint>
  |  <user-data-constraint>
  |   <description>SSL required</description> 
  |   <transport-guarantee>CONFIDENTIAL</transport-guarantee> 
  |   </user-data-constraint>
  |   </security-constraint>
What is wrong?

View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3970630#3970630

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3970630

More information about the jboss-user mailing list