Hey guys,
Some quick notes on the security for XML RPC interface. This is what I
am thinking...
Have an AuthenticatedXmlRpcService component that services the xml rpc
requests. The first request from a client to the service is a request
for authentication. A successful authentication
Rahul Thakur wrote:
Hey guys,
Some quick notes on the security for XML RPC interface. This is what I
am thinking...
Have an AuthenticatedXmlRpcService component that services the xml rpc
requests. The first request from a client to the service is a request
for authentication. A successful
I think it's best solution. With a token, we don't have login/password over the
network for each request.
XmlRpcService
String login( username, password ) //return a token
{
tokenManager.login( username, password );
}
Object method1( token, params ) //null token for guest user or
Instead of use the actaul embedded xmlrpc server that run on a different port,
we can use The xmlrpc servlet (http://ws.apache.org/xmlrpc/server.html)
Emmanuel
Trygve Laugstøl a écrit :
Rahul Thakur wrote:
Hey guys,
Some quick notes on the security for XML RPC interface. This is what I
am
Hi!
I have written a PoC to illustrate the concept we have discussed earlier
(search for thread with topic Does this feature already exist?).
The PoC works for add/remove projects, but don't support add/remove
depencies in the pom or in the list of derived dependencies.
I must work on my
