Author: dkulp Date: Fri Sep 11 19:40:11 2009 New Revision: 813997 URL: http://svn.apache.org/viewvc?rev=813997&view=rev Log: Merged revisions 813955 via svnmerge from https://svn.apache.org/repos/asf/cxf/branches/2.2.x-fixes
................ r813955 | dkulp | 2009-09-11 13:52:15 -0400 (Fri, 11 Sep 2009) | 9 lines Merged revisions 813953 via svnmerge from https://svn.apache.org/repos/asf/cxf/trunk ........ r813953 | dkulp | 2009-09-11 13:50:25 -0400 (Fri, 11 Sep 2009) | 2 lines [CXF-2430] Patch from Eamonn Dwyer applied ........ ................ Added: cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/src/demo/hw_https/client/ClientNonSpring.java - copied unchanged from r813955, cxf/branches/2.2.x-fixes/distribution/src/main/release/samples/wsdl_first_https/src/demo/hw_https/client/ClientNonSpring.java Modified: cxf/branches/2.1.x-fixes/ (props changed) cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/README.txt cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/build.xml cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/pom.xml Propchange: cxf/branches/2.1.x-fixes/ ------------------------------------------------------------------------------ Binary property 'svnmerge-integrated' - no diff available. Modified: cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/README.txt URL: http://svn.apache.org/viewvc/cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/README.txt?rev=813997&r1=813996&r2=813997&view=diff ============================================================================== --- cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/README.txt (original) +++ cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/README.txt Fri Sep 11 19:40:11 2009 @@ -32,6 +32,8 @@ mvn -Pserver (starts the server) mvn -Psecure.client (runs the client in secure mode, Scenario 2) mvn -Pinsecure.client (runs the client in insecure mode, Scenario 1) + mvn -Pinsecure.client.non.secure (runs the client in secure mode, Scenario 3) + mvn -Psecure.client.non.secure (runs the client in secure mode, Scenario 4) mvn clean (removes all generated and compiled classes) @@ -51,8 +53,8 @@ The demo illustrates how authentication can be achieved through -configuration using 2 different scenarios. The non-defaulted security -policy values are be specified via configuration files. +configuration using 3 different scenarios. The non-defaulted security +policy values are be specified via configuration files or programmatically. Scenario 1: @@ -90,10 +92,10 @@ to both sides. This may be viewed by adding a -Djavax.net.debug=all argument to the JVM. -But please note that it is not adviseable to store sensitive data such +But please note that it is not advisable to store sensitive data such as passwords stored in a clear text configuration file, unless the file is sufficiently protected by OS level permissions. The KeyStores -may be configured programatically so using user interaction may be +may be configured programmatically so using user interaction may be employed to keep passwords from being stored in configuration files. The approach taken here is for demonstration reasons only. @@ -102,6 +104,33 @@ ant server ant secure.client + +Scenario 3: + +A HTTPS listener is started up. The client does NOT provide the appropriate +credentials programmatically and so the invocation on the server fails. + +To run: + + ant server + ant insecure.client.non.spring + +Scenario 4: +A HTTPS listener is started up. The client's security data +is in essence the same as for scenario 2, however this time it +is provided programmatically in the client code, ClientNonSpring.java. + +But please note that it is not advisable to store sensitive data such +as passwords stored directly in java code as the code could possibly be +disassembled. Typically the password would be obtained at runtime by +prompting for the password. +The approach taken here is for demonstration reasons only. + + +To run: + + ant server + ant secure.client.non.spring Certificates: If the certificates are expired for some reason, a shell script in Modified: cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/build.xml URL: http://svn.apache.org/viewvc/cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/build.xml?rev=813997&r1=813996&r2=813997&view=diff ============================================================================== --- cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/build.xml (original) +++ cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/build.xml Fri Sep 11 19:40:11 2009 @@ -28,11 +28,25 @@ param2="insecure"/> </target> + <target name="insecure.client.non.spring" description="run demo insecure client, without setting the TLS configuration programmatically" depends="build"> + <property name="param" value=""/> + <cxfrun classname="demo.hw_https.client.ClientNonSpring" + param1="${basedir}/wsdl/hello_world.wsdl" + param2="insecure"/> + </target> + <target name="secure.client" description="run demo secure client" depends="build"> <property name="param" value=""/> <cxfrun classname="demo.hw_https.client.Client" param1="${basedir}/wsdl/hello_world.wsdl" param2="secure"/> + </target> + + <target name="secure.client.non.spring" description="run demo secure client, setting the TLS configuration programmatically" depends="build"> + <property name="param" value=""/> + <cxfrun classname="demo.hw_https.client.ClientNonSpring" + param1="${basedir}/wsdl/hello_world.wsdl" + param2="secure"/> </target> <target name="server" description="run demo server" depends="build"> Modified: cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/pom.xml URL: http://svn.apache.org/viewvc/cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/pom.xml?rev=813997&r1=813996&r2=813997&view=diff ============================================================================== --- cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/pom.xml (original) +++ cxf/branches/2.1.x-fixes/distribution/src/main/release/samples/wsdl_first_https/pom.xml Fri Sep 11 19:40:11 2009 @@ -137,6 +137,33 @@ </build> </profile> <profile> + <id>insecure.client.non.spring</id> + <build> + <defaultGoal>test</defaultGoal> + <plugins> + <plugin> + <groupId>org.codehaus.mojo</groupId> + <artifactId>exec-maven-plugin</artifactId> + <executions> + <execution> + <phase>test</phase> + <goals> + <goal>java</goal> + </goals> + <configuration> + <mainClass>demo.hw_https.client.ClientNonSpring</mainClass> + <arguments> + <argument>${basedir}/wsdl/hello_world.wsdl</argument> + <argument>insecure</argument> + </arguments> + </configuration> + </execution> + </executions> + </plugin> + </plugins> + </build> + </profile> + <profile> <id>secure.client</id> <build> <defaultGoal>test</defaultGoal> @@ -163,6 +190,33 @@ </plugins> </build> </profile> + <profile> + <id>secure.client.non.spring</id> + <build> + <defaultGoal>test</defaultGoal> + <plugins> + <plugin> + <groupId>org.codehaus.mojo</groupId> + <artifactId>exec-maven-plugin</artifactId> + <executions> + <execution> + <phase>test</phase> + <goals> + <goal>java</goal> + </goals> + <configuration> + <mainClass>demo.hw_https.client.ClientNonSpring</mainClass> + <arguments> + <argument>${basedir}/wsdl/hello_world.wsdl</argument> + <argument>secure</argument> + </arguments> + </configuration> + </execution> + </executions> + </plugin> + </plugins> + </build> + </profile> </profiles> <repositories> <repository>
