On Tuesday 23 March 2010 9:48:22 pm fachhoch wrote: > we developed our service, tested with http. Now we reliased that our > production environment is https and not http. I am wondering do I have to > change anything to make it work in https ? or is it the same with http > and https ?
It depends. :-) If running in a container such as tomcat or a J2EE container, on the server side, you really don't have to do anything. Since the container provides the same HTTPServletRequest/Response things to us, it should "jsut work" providing your security restraints and such are properly defined for your container. If running standalone, you'll need to configure the jetty-engine with the certs and such you want to use. For the client side, if you need client certs and such, you will need to configure them in. See: http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html -- Daniel Kulp [email protected] http://dankulp.com/blog
