[
https://issues.apache.org/jira/browse/OPENEJB-981?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Jarek Gawor updated OPENEJB-981:
--------------------------------
Attachment: OPENEJB-981.patch
A patch for openejb-jee module that updates the DD types to add an optional
http-method element which can be used to specify a list of HTTP methods that
must be secured.
The assumption is that if there are no http-method elements in the DD all HTTP
methods are automatically secured.
> Specify a list of protected HTTP methods for secure web services
> ----------------------------------------------------------------
>
> Key: OPENEJB-981
> URL: https://issues.apache.org/jira/browse/OPENEJB-981
> Project: OpenEJB
> Issue Type: Improvement
> Components: configuration, deployment, integration, webservices
> Affects Versions: 3.1.1
> Reporter: Jarek Gawor
> Attachments: OPENEJB-981.patch
>
>
> For secure web services we would like to specify a list of HTTP methods that
> should be secured. For example, we would like to secure POST requests but
> leave GET requests unsecured (for WSDL access). See GERONIMO-4015 for a bit
> more info.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
