Annotations does seem to be the answer gvien a URL based approach works well for REST but not Webservices, and I'd like to expose the same bean through both.
John Baker -- Web SSO IT Infrastructure Deutsche Bank London URL: http://websso.cto.gt.intranet.db.com "Arundel, Donal" <[EMAIL PROTECTED]> 30/06/2008 16:57 Please respond to [email protected] To <[email protected]> cc Subject RE: CXF and Acegisecurity Maybe have a look at the ACEGI docs on ACL annotations if you want method level access control, to allow distinguishing between REST CRUD operations. (Ideally from a pure engineering viewpoint one would extend ACEGIs ACL syntax to support REST directly, but this is obviously more effort :-) ). If you don't care about CRUD specific ACL (write Vs read ops) then standard ACEGI ACL will allow you to protect HTTP URL patterns as per any typical ACEGI demo. You wouldn't need any annotations in this case. Additionally you optionally could also have an interceptor to query the acegi Authenticated credentials, for any fancy ACL, but most likely the annotation support is what you are looking for. Cheers, Donal -----Original Message----- From: John-M Baker [mailto:[EMAIL PROTECTED] Sent: 27 June 2008 16:25 To: [email protected] Subject: CXF and Acegisecurity Are there any docs specifically on implementing CXF REST With Acegisecurity? Google didnt return anything obvious.. A simple example showing how to secure a couple methods would be handy. Thanks, John Baker -- Web SSO IT Infrastructure Deutsche Bank London URL: http://websso.cto.gt.intranet.db.com --- This e-mail may contain confidential and/or privileged information. If you are not the intended recipient (or have received this e-mail in error) please notify the sender immediately and delete this e-mail. Any unauthorized copying, disclosure or distribution of the material in this e-mail is strictly forbidden. Please refer to http://www.db.com/en/content/eu_disclosures.htm for additional EU corporate and regulatory disclosures. ---------------------------- IONA Technologies PLC (registered in Ireland) Registered Number: 171387 Registered Address: The IONA Building, Shelbourne Road, Dublin 4, Ireland --- This e-mail may contain confidential and/or privileged information. If you are not the intended recipient (or have received this e-mail in error) please notify the sender immediately and delete this e-mail. Any unauthorized copying, disclosure or distribution of the material in this e-mail is strictly forbidden. Please refer to http://www.db.com/en/content/eu_disclosures.htm for additional EU corporate and regulatory disclosures.
