You're probably getting a redirect to the login page.
Assuming you can tell your web service clients to use Basic
Authentication (easy with PHP) your solution can be as simple as adding
a basicProcessingFilter to your acegi filter chain.
For AppFuse 1.9.x
in security.xml
filterChainProxy bean
...authenticationProcessingFilter,basicProcessingFilter,securityContextHolderAwareRequestFilter,...
and supporting bean defs
<bean id="basicProcessingFilter"
class="org.acegisecurity.ui.basicauth.BasicProcessingFilter">
<property name="authenticationManager"><ref
local="authenticationManager"/></property>
<property name="authenticationEntryPoint"><ref
local="basicProcessingFilterEntryPoint"/></property>
</bean>
<bean id="basicProcessingFilterEntryPoint"
class="org.acegisecurity.ui.basicauth.BasicProcessingFilterEntryPoint">
<property name="realmName"><value>Web Services</value></property>
</bean>
HTH
Brett Knights
George.Francis wrote:
This is now urgent! I've been trying for days to get secure web-services
going. I added /services/**=ROLE_ADMIN,ROLE_USER
to security.xml as advised and using WSS with SoapUI-1.7.6 I am only getting
an HTTP 302 response.
Please help!
George.Francis wrote:
Once I've secured my Webservice by editing WEB-INF/security.xml, how do I
test it?
I've been using SoapUI up until now but since the services are now secure
this fails (using WSS).
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
