Asankha C. Perera schrieb:
Hi Jens
My ideas are to inject some user values in the soap-message (username
and password) and encrypt the soap-message. The esb will take these
values and proofs it by using the wso2 usermanager.
Sure, this is possible with a custom mediator or a simple Java POJO
class that calls into the usermanager library. You could also use
WS-Security without coding using a WS-Security policy. I am copying
Dimuthu from the usermanager/Rampart team so she could point you in
the correct direction. We have some samples that shows how WS-Sec can
be used with policies
(http://wso2.org/project/esb/java/1.6/docs/ESB_Samples.html)
Ok, this sounds great. I will have a look at it...
After a successfull authentification I have to indicate that they
other esbs and services itself don´t need to proof it again. I don´t
want to make a new authentification at all intermediate stations, so
in my eyes a flag in the soap message to say "Already authenticated"
is enough, or?
If this is totally within your intranet, I guess this should be
enough. You could also use https to secure the messages over the wire
No, it will be used in the internet, too.
I have to write an own mediation than, right? Or is there a solution
out of the box?
Well you could use the Header
<http://wso2.org/project/esb/java/1.6/docs/administratorguide.html>
mediator to add a custom SOAP header to a message
(http://wso2.org/project/esb/java/1.6/docs/ESB_Configuration_Language.html)
You could also use a custom extension mediator if you like, but this
doesn't seem necessary
What´s about the identity solution? Does it fit to my requirements?
Any other ideas in general for doing that?
If you want to call into the user manager library and add the custom
header both at once etc. writing a custom mediator may be ok
Ok, thanks.
Jens
asankha
------------------------------------------------------------------------
_______________________________________________
Esb-java-user mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/esb-java-user
_______________________________________________
Esb-java-user mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/esb-java-user
