[Dev] [DevStudio][ESB] Acceptable transports for a secure proxy

2015-09-21 Thread Rajeevan Vimalanathan 
Hi,

The default transports for a secure proxy created through Developer Studio
are HTTP and HTTPS. And there is a public JIRA [1] mentioning that only
HTTPS transport should be allowed for a secure proxy. But when we create a
secure proxy through ESB management console, the default transport values
are HTTP and HTTPS same as Developer Studio. So should it be fixed at
Developer Studio to use only HTTPS as the transport?

Appreciate your inputs.

Sample ESB proxy config,

http://ws.apache.org/ns/synapse;
   name="testsecure"
   *transports="http,https"*
   statistics="disable"
   trace="disable"
   startOnLoad="true">
   
  
 http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd
"
 name="wsse:Security"
 action="remove"/>
  
  
 
  
  
 https://test.com"/>
  
   
   
   
   


Sample Developer Studio proxy config,


http://ws.apache.org/ns/synapse;>
  

  https://test.com"/>


  http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd
"/>


  


  
  
  
  


[1] https://wso2.org/jira/browse/TOOLS-1636

Thanks,
Rajeevan

-- 
Vimalanathan Rajeevan
Software Engineer,
WSO2, Inc. *http://wso2.com* 
Lean.Enterprise.Middleware

Mobile:
*+94 773090875*
LinkedIn:
*https://www.linkedin.com/in/RajeevanVimalanathan
*
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] [DevStudio][ESB] Acceptable transports for a secure proxy

2015-09-21 Thread Isuru Udana 
Hi Rajeevan,

Proxy can contain both http and https transports depending on the security
scenario. For an example UTOverTransport case only https is allowed and for
scenarios like SignOnly etc, both http and https should be there.





On Mon, Sep 21, 2015 at 2:24 PM, Rajeevan Vimalanathan 
wrote:

> Hi,
>
> The default transports for a secure proxy created through Developer Studio
> are HTTP and HTTPS. And there is a public JIRA [1] mentioning that only
> HTTPS transport should be allowed for a secure proxy. But when we create a
> secure proxy through ESB management console, the default transport values
> are HTTP and HTTPS same as Developer Studio. So should it be fixed at
> Developer Studio to use only HTTPS as the transport?
>
> Appreciate your inputs.
>
> Sample ESB proxy config,
>
> http://ws.apache.org/ns/synapse;
>name="testsecure"
>*transports="http,https"*
>statistics="disable"
>trace="disable"
>startOnLoad="true">
>
>   
>  http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd
> "
>  name="wsse:Security"
>  action="remove"/>
>   
>   
>  
>   
>   
>  https://test.com"/>
>   
>
>
> key="conf:/repository/components/org.wso2.carbon.security.mgt/policy/scenario1"/>
>
> 
>
> Sample Developer Studio proxy config,
>
> 
>*transports="https http"* xmlns="http://ws.apache.org/ns/synapse;>
>   
>  name="endpoint_urn_uuid_8c25b551-87a9-40b8-80f6-e1f0bd74483b">
>   https://test.com"/>
> 
> 
>xmlns:wsse="
> http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd
> "/>
> 
> 
>   
> 
> 
>   
>   
>   
>   
> 
>
> [1] https://wso2.org/jira/browse/TOOLS-1636
>
> Thanks,
> Rajeevan
>
> --
> Vimalanathan Rajeevan
> Software Engineer,
> WSO2, Inc. *http://wso2.com* 
> Lean.Enterprise.Middleware
>
> Mobile:
> *+94 773090875 <%2B94%20773090875>*
> LinkedIn:
> *https://www.linkedin.com/in/RajeevanVimalanathan
> *
>



-- 
*Isuru Udana*
Associate Technical Lead
WSO2 Inc.; http://wso2.com
email: isu...@wso2.com cell: +94 77 3791887
blog: http://mytecheye.blogspot.com/
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] [DevStudio][ESB] Acceptable transports for a secure proxy

2015-09-21 Thread Rajeevan Vimalanathan 
Thanks Isuru for the explanation! It's clear now.

Thanks,
Rajeevan

On Mon, Sep 21, 2015 at 2:42 PM, Isuru Udana  wrote:

> Hi Rajeevan,
>
> Proxy can contain both http and https transports depending on the security
> scenario. For an example UTOverTransport case only https is allowed and for
> scenarios like SignOnly etc, both http and https should be there.
>
>
>
>
>
> On Mon, Sep 21, 2015 at 2:24 PM, Rajeevan Vimalanathan  > wrote:
>
>> Hi,
>>
>> The default transports for a secure proxy created through Developer
>> Studio are HTTP and HTTPS. And there is a public JIRA [1] mentioning that
>> only HTTPS transport should be allowed for a secure proxy. But when we
>> create a secure proxy through ESB management console, the default transport
>> values are HTTP and HTTPS same as Developer Studio. So should it be fixed
>> at Developer Studio to use only HTTPS as the transport?
>>
>> Appreciate your inputs.
>>
>> Sample ESB proxy config,
>>
>> http://ws.apache.org/ns/synapse;
>>name="testsecure"
>>*transports="http,https"*
>>statistics="disable"
>>trace="disable"
>>startOnLoad="true">
>>
>>   
>>  http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd
>> "
>>  name="wsse:Security"
>>  action="remove"/>
>>   
>>   
>>  
>>   
>>   
>>  https://test.com"/>
>>   
>>
>>
>>> key="conf:/repository/components/org.wso2.carbon.security.mgt/policy/scenario1"/>
>>
>> 
>>
>> Sample Developer Studio proxy config,
>>
>> 
>> >   *transports="https http"* xmlns="http://ws.apache.org/ns/synapse;>
>>   
>> > name="endpoint_urn_uuid_8c25b551-87a9-40b8-80f6-e1f0bd74483b">
>>   https://test.com"/>
>> 
>> 
>>   > xmlns:wsse="
>> http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd
>> "/>
>> 
>> 
>>   
>> 
>> 
>>   
>>   
>>   
>>   
>> 
>>
>> [1] https://wso2.org/jira/browse/TOOLS-1636
>>
>> Thanks,
>> Rajeevan
>>
>> --
>> Vimalanathan Rajeevan
>> Software Engineer,
>> WSO2, Inc. *http://wso2.com* 
>> Lean.Enterprise.Middleware
>>
>> Mobile:
>> *+94 773090875 <%2B94%20773090875>*
>> LinkedIn:
>> *https://www.linkedin.com/in/RajeevanVimalanathan
>> *
>>
>
>
>
> --
> *Isuru Udana*
> Associate Technical Lead
> WSO2 Inc.; http://wso2.com
> email: isu...@wso2.com cell: +94 77 3791887
> blog: http://mytecheye.blogspot.com/
>



-- 
Vimalanathan Rajeevan
Software Engineer,
WSO2, Inc. *http://wso2.com* 
Lean.Enterprise.Middleware

Mobile:
*+94 773090875*
LinkedIn:
*https://www.linkedin.com/in/RajeevanVimalanathan
*
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev