axis-java-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Dies Koper <>
Subject Re: [Axis v1.3] conf option to enable HTTP Basic auth
Date Wed, 22 Mar 2006 13:13:30 GMT
Hello Artur,

I thought on the server side you just do what you do any other servlet 
that you want to use Basic Authentication with.
Look at your servlet container's docs and the tags in web.xml 
(login-config?, security-role?, security-constraint?)

Hope that points you in the right direction.

Artur Kraft wrote:
> Hello Dies,
> thanks for your answer, but I need to enable HTTP Basic Authentication 
> on the server side. Axis should restrict user access according to the 
> user.lst file. Along with SSL encryption the security level is hopefully 
> sufficient.
> Maybe you can help me with it, too?
> kind regards
> Artur
> Dies Koper wrote:
>> Hello Artur,
>> On the client side you do: (from JAX-RPC1.1 spec)
>> StockQuoteProvider_Stub sqp = // ... get to the stub;
>> sqp._setProperty(Stub.USERNAME_PROPERTY, "<username>");
>> sqp._setProperty(Stub.PASSWORD_PROPERTY, "<password>");
>> float quote = sqp.getLastTradePrice("ACME");
>> Regards,
>> Dies
>> Artur Kraft wrote:
>>> Hello,
>>> searching the whole day for a guide/doc how to enable HTTP Basic 
>>> authentication, I stumbled over the axis security doc 
>>> ( with the following 
>>> notice:
>>> "Clients can authenticate themselves with client certificates, or 
>>> HTTP basic authentication. The latter is too weak to be trustable on 
>>> a non-encrypted channel, but works over HTTPS. The MessageContext 
>>> class will be configured with the username and password of the sender 
>>> when SOAP messages are posted to the endpoint;"
>>> But I can't find any document how to enable the basic authentication. 
>>> Can please someone point me to the altered configuration I have to 
>>> provide to get it working?
>>> Thanks a lot!
>>> Kind regards
>>> Artur Kraft

View raw message