Re: XML RPC security

2007-05-05 Thread Rahul Thakur
- Original Message - From: "Jesse McConnell" <[EMAIL PROTECTED]> To: Sent: Tuesday, May 01, 2007 2:10 AM Subject: Re: XML RPC security I am hoping to get a couple of authn and authz web services running in redback this week, once I finish up the role profile refac

Re: XML RPC security

2007-05-01 Thread Trygve Laugstøl
m: "Trygve Laugstøl" <[EMAIL PROTECTED]> To: Sent: Saturday, April 28, 2007 12:14 AM Subject: Re: XML RPC security Rahul Thakur wrote: Hey guys, Some quick notes on the security for XML RPC interface. This is what I am thinking... Have an AuthenticatedXmlRpcService compo

Re: XML RPC security

2007-04-30 Thread Jesse McConnell
Redback? > > > > > > Rahul > > > > > > ----- Original Message - From: "Emmanuel Venisse" > > > <[EMAIL PROTECTED]> > > > To: > > > Sent: Saturday, April 28, 2007 12:37 AM > > > Subject: Re: XML RPC securi

Re: XML RPC security

2007-04-30 Thread Carlos Sanchez
ck? > > > > Rahul > > > > - Original Message - From: "Emmanuel Venisse" > > <[EMAIL PROTECTED]> > > To: > > Sent: Saturday, April 28, 2007 12:37 AM > > Subject: Re: XML RPC security > > > > > >> I think it'

Re: XML RPC security

2007-04-30 Thread Emmanuel Venisse
Maybe, but I can't find it. Emmanuel Rahul Thakur a écrit : I thought there was something similar to this that exists in Redback? Rahul - Original Message - From: "Emmanuel Venisse" <[EMAIL PROTECTED]> To: Sent: Saturday, April 28, 2007 12:37 AM Subject: Re:

Re: XML RPC security

2007-04-29 Thread Rahul Thakur
Sounds good! Pointers would be great, if you have it handy :-) TIA, Rahul - Original Message - From: "Trygve Laugstøl" <[EMAIL PROTECTED]> To: Sent: Saturday, April 28, 2007 12:14 AM Subject: Re: XML RPC security Rahul Thakur wrote: Hey guys, Some quick notes

Re: XML RPC security

2007-04-29 Thread Rahul Thakur
I thought there was something similar to this that exists in Redback? Rahul - Original Message - From: "Emmanuel Venisse" <[EMAIL PROTECTED]> To: Sent: Saturday, April 28, 2007 12:37 AM Subject: Re: XML RPC security I think it's best solution. With a token

Re: XML RPC security

2007-04-27 Thread Emmanuel Venisse
Instead of use the actaul embedded xmlrpc server that run on a different port, we can use The xmlrpc servlet (http://ws.apache.org/xmlrpc/server.html) Emmanuel Trygve Laugstøl a écrit : Rahul Thakur wrote: Hey guys, Some quick notes on the security for XML RPC interface. This is what I am t

Re: XML RPC security

2007-04-27 Thread Emmanuel Venisse
I think it's best solution. With a token, we don't have login/password over the network for each request. XmlRpcService String login( username, password ) //return a token { tokenManager.login( username, password ); } Object method1( token, params ) //null token for guest user or

Re: XML RPC security

2007-04-27 Thread Trygve Laugstøl
Rahul Thakur wrote: Hey guys, Some quick notes on the security for XML RPC interface. This is what I am thinking... Have an AuthenticatedXmlRpcService component that services the xml rpc requests. The first request from a client to the service is a request for authentication. A successful a