Issue Details (XML | Word | Printable)

Key: OPENEJB-1004
Type: Improvement Improvement
Status: Closed Closed
Resolution: Fixed
Priority: Major Major
Assignee: Jean-Louis MONTEIRO
Reporter: Jonathan Gallimore
Votes: 0
Watchers: 0
Operations

If you were logged in you would be able to see more operations.
OpenEJB

Web service endpoints securable

Created: 02/Mar/09 09:23 PM   Updated: 27/May/09 06:33 AM
Return to search
Component/s: webservices
Affects Version/s: 3.1
Fix Version/s: 3.1.1

Time Tracking:
Not Specified

File Attachments:
  File Name Date Attached Attached By Size
Text File Licensed for inclusion in ASF works patch-openejb-1004.txt 2009-04-22 02:28 PM Jean-Louis MONTEIRO 71 kB

Resolution Date: 27/May/09 06:33 AM


 Description  « Hide
It does not appear to be possible to secure webservice endpoints at the moment, therefore EJB session beans exposed as webservices will not work if they use the @RolesAllowed annotation.

It would be nice to pass the values specified in the <web-service-security> tag in openejb-jar.xml were passed through to Tomcat/OpenEJB HTTP container, and to potentially support WS-Security schemes as well.

 All   Comments   Work Log   Change History   Subversion Commits      Sort Order: Ascending order - Click to sort in descending order
[ Permlink | « Hide ]
Jean-Louis MONTEIRO added a comment - 22/Apr/09 02:28 PM
WS-Security integration proposal

[ Permlink | « Hide ]
David Blevins added a comment - 27/May/09 05:56 AM
Marked as completed by Jean-Louis as it appears the patch came from him.

[ Permlink | « Hide ]
David Blevins added a comment - 27/May/09 06:33 AM
Looks like this one was committed in this revision:

http://svn.apache.org/viewvc?rev=768087&view=rev



Powered by a free Atlassian JIRA open source license for Apache Software Foundation. Try JIRA - bug tracking software for your team.
Atlassian JIRA the Professional Issue Tracker. (Enterprise Edition, Version: 3.13.2-#335) - Bug/feature request - Atlassian news - Contact Administrators