| authenticating tokens and all that jazz [message #91529] |
Tue, 12 April 2005 06:19  |
Eclipse User |
|
|
|
Hi All
I hope someone can help
Being new to Web Services and WS security - i've read loads of stuff over
the past weeks, but what i wnat is an example of a secure web service,
generating authentication token, storing token on users browser, using Axis
SOAP for the message, using HTTP, generating a WDL file etc
All i can find is documentation of what security is around, but nothing with
examples of how to do it. Or sites where you access web services already
written.
Does anyone have any code or sites with examples of how to do this. I can't
be the only one wanting to write web services where a user logs on with
their username and password and receives an authentiication token, which is
encyped and secure
I'm using eclipsewith the wtp plugin
Thanks for any help
|
|
|
| Re: authenticating tokens and all that jazz [message #93511 is a reply to message #91529] |
Wed, 20 April 2005 15:36  |
| Eclipse User |
|
|
|
The OASIS WS-Security specs [1], [2], [3] have been standard for about a year
now, and the WS-I BSP [4] is progressing nicely. Many vendors have delivered
some form of support for WS-Security in their tools and runtimes. On the
open-source side of things, the Apache WSS4J project [5] may give you something
to play with.
Given the WTP charter, it's inevitable that tools for WS-Security and the WS-I
BSP will arrive in future releases of the WTP platform.
[1]
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap -message-security-1.0.pdf
[2]
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-user name-token-profile-1.0.pdf
[3]
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509 -token-profile-1.0.pdf
[4] http://www.ws-i.org/deliverables/workinggroup.aspx?wg=basics ecurity
[5] http://ws.apache.org/ws-fx/wss4j/
Cheers - CB.
plork123 wrote:
> Hi All
>
> I hope someone can help
>
> Being new to Web Services and WS security - i've read loads of stuff over
> the past weeks, but what i wnat is an example of a secure web service,
> generating authentication token, storing token on users browser, using Axis
> SOAP for the message, using HTTP, generating a WDL file etc
>
> All i can find is documentation of what security is around, but nothing with
> examples of how to do it. Or sites where you access web services already
> written.
>
> Does anyone have any code or sites with examples of how to do this. I can't
> be the only one wanting to write web services where a user logs on with
> their username and password and receives an authentiication token, which is
> encyped and secure
>
> I'm using eclipsewith the wtp plugin
>
> Thanks for any help
|
|
|
Powered by
FUDForum. Page generated in 1.07413 seconds
Home