[jboss-user] [JBoss Web Services] - How to secure WSDL file access

Sudhir Kumar Jha do-not-reply at jboss.com
Mon Mar 5 05:48:13 EST 2012 

Sudhir Kumar Jha [https://community.jboss.org/people/sudhirjha] created the discussion

"How to secure WSDL file access"

To view the discussion, visit: https://community.jboss.org/message/721517#721517

--------------------------------------------------------------
Hello Everybody,

I don't know how to secure access of my published WSDL file from other than intended recipient.

I tried some thing like this in web.xml file:


    <security-constraint>
        <display-name>Sudhir Access</display-name>
        <web-resource-collection>
            <web-resource-name><Java file which had web method></web-resource-name>
            <description>path of wsdl</description>
            <url-pattern>/*</url-pattern> <!--- do i need to give physically complete path(through which we access the WSDL)-->
            <http-method>POST</http-method>
            <http-method>TRACE</http-method>
            <http-method>DELETE</http-method>
        </web-resource-collection>
        <auth-constraint>
            <description/>
            <role-name>sudhir</role-name>
        </auth-constraint>
        <user-data-constraint>
            <description/>
            <transport-guarantee>CONFIDENTIAL</transport-guarantee>
        </user-data-constraint>
    </security-constraint>
    <login-config>
        <auth-method>BASIC</auth-method>
        <realm-name>sudhi</realm-name>
    </login-config>
    <security-role>
        <description>Admin</description>
        <role-name>sudhir</role-name>
    </security-role>
</web-app>

I had developed web service using Jboss developer studio and jboss server
Please share your ideas to do the same.


Thanks & Regards,
Sudhir Jha
--------------------------------------------------------------

Reply to this message by going to Community
[https://community.jboss.org/message/721517#721517]

Start a new discussion in JBoss Web Services at Community
[https://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2044]

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-user/attachments/20120305/6f20d936/attachment-0001.html

More information about the jboss-user mailing list