I have secured my Web Service endpoint (JSR-109 EJB) with basic authentication, but that requires me to enter the authentication information to access the WSDL which is unacceptable. Is there a way to secure the endpoint without securing the WSDL?
Here is my jboss.xml: <!DOCTYPE jboss PUBLIC "-//JBoss//DTD JBOSS 4.0//EN" "http://www.jboss.org/j2ee/dtd/jboss_4_0.dtd";> | <jboss> | <security-domain>java:/jaas/JBossWS</security-domain> <!-- This links to conf/login-config.xml in jboss point to a security domain --> | <enterprise-beans> | <session> | <ejb-name>JBossTest2</ejb-name> | <jndi-name>JBossTest2</jndi-name> | <resource-ref> | <description>Database Reference to DataSource</description> | <res-ref-name>jdbc/jbossTest2DB</res-ref-name> | <jndi-name>java:/jbossTest2DB</jndi-name> | </resource-ref> | <port-component> | <port-component-name>JBossTest2Endpoint</port-component-name> | <auth-method>BASIC</auth-method> | <port-component-uri>/jbosstest2/1.0</port-component-uri> | </port-component> | </session> | </enterprise-beans> | </jboss> View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3948122#3948122 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3948122 ------------------------------------------------------- All the advantages of Linux Managed Hosting--Without the Cost and Risk! Fully trained technicians. The highest number of Red Hat certifications in the hosting industry. Fanatical Support. Click to learn more http://sel.as-us.falkag.net/sel?cmd=lnk&kid=107521&bid=248729&dat=121642 _______________________________________________ JBoss-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-user
