It turns out that that Dans change didn't actually downgrade the
attempted connection to http which was my primary outstanding concern.
So I'm happy with the new behaviour:-)
Cheers,
Donal
-----Original Message-----
From: Arundel, Donal [mailto:[EMAIL PROTECTED]
Sent: 05 March 2008 12:11
To: [email protected]
Subject: RE: HTTPs and CXF
However for clients that DO have specific security requirements one
would also want to be able to enforce the use of SSL in some fashion.
For these types of secure apps though : basing the decision purely on
the URL which might even have been retrieved dynamically over an
insecure connection would be inappropriate.
In general this (fairly typical) type of secure application would like
to be able to specify this type of strictly secure behaviour at a high
level
(not per conduit/endpoint).
Cheers,
Donal
----------------------------
IONA Technologies PLC (registered in Ireland)
Registered Number: 171387
Registered Address: The IONA Building, Shelbourne Road, Dublin 4, Ireland
