[JBoss-dev] jboss.net email transport

[Jason Essington]

Hi all

I have managed to get a fairly crude email transport working in jboss.net (It is lurking in head). I would appreciate any comments / design ideas from folks who are interested.

Check the javadocs in org.jboss.net.axis.mail.MailTransportService to see how to set it up.

It will currently process emails with simple soap messages (no attachments). It requires the content type to be application/soap+xml with the action attribute set to the desired service.

i.e. content-type: application/soap+xml; action=SomeService

The response message is returned to the sender via email.

Since email doesn't really have any type of authentication framework the transport will only work with ejb's / ejb methods's that have unchecked permissions.

I have been able to sign (DSA) a soap message using apache's xml-security library and have jboss.net verify the signature (I haven't submitted this handler yet, as it depends on the apache xml-security library that would have to be added to the thirdparty libs).

I think this is the first step to some sort of authentication via email (and cryptographic authentication by other transports as well). but . . .
I haven't figured out how to go about trusting a given signature and mapping it to a Subject. This is where I could use the help of someone with a better knowledge of jaas and JBossSX than myself.

Thanks for any feedback

-jason



-------------------------------------------------------
This sf.net email is sponsored by: Are you worried about your web server security? Click here for a FREE Thawte Apache SSL Guide and answer your Apache SSL security needs: http://www.gothawte.com/rd523.html
_______________________________________________
Jboss-development mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-development