Thanks Matt. Btw there is hint to a blog on http://www.appfuse.org/display/APF/Web+Services regarding authentication :-)
-----Ursprüngliche Nachricht----- Von: Matt Raible [mailto:[EMAIL PROTECTED] Gesendet: Mittwoch, 28. November 2007 20:26 An: users@appfuse.dev.java.net Betreff: Re: [appfuse-user] Wheres the security.xml? On Nov 28, 2007, at 12:20 PM, René Günther wrote: > In > http://www.appfuse.org/display/APF/Web+Services > it says: > > Web Services in AppFuse are unsecure by default. To secure them, > the easiest > thing to do is add /services/**=ROLE_NAME to your WEB-INF/ > security.xml file. > > But I cant find security.xml. Its only available in the target folder. To override the default one in AppFuse, copy target/yourapp-version/ WEB-INF/security.xml to your src/main/webapp/WEB-INF directory. NOTE: You may have to configure basic authentication if you want to authenticate from other web services. I believe this is described in this mailing list's archives. Matt > > What should I do to secure my WebService? > > > Rene > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
