axis-java-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Nandana Mihindukulasooriya" <>
Subject Re: Rampart Security Whole
Date Sat, 10 Jan 2009 15:32:14 GMT
Hi Hamid,
      Not sure whether this is related to this issue [1]. Can you use policy
based configuration and try ? Rampart sample 01 (policy based) will provide
you the necessary configuration.


On Sat, Jan 10, 2009 at 4:40 PM, Hamidreza sahlolbey <>wrote:

> Hi;
> I ve configured my web service to authenticate the web service callers
> using rampart. Everything is ok when I use a java client to call the web
> service but when I use php for calling the service it passes my security
> without having to provide correct username and password. I 've wrote some
> log in my ServerPassword CallBack Handler and it seems the PHP code bypass
> my security as I don't see the logs when he service is called by php.
> I will be thankfull if somebody take the time to guide me.
> cheers,
> Hamid

[1] -[Axis2+1.1.1]+Security+policy+not+enforced

Nandana Mihindukulasooriya
WSO2 inc.

View raw message