As long as you create a spring SecurityContext in cxf interceptor and add it to the spring security holder not sure how that works with jaxrs but in jaxws I just add a interceptor after authenticating.
Then you can use the acl stuff as Samuel suggested On Apr 11, 2013 4:02 AM, "Samuel Quintana" <[email protected]> wrote: > I'm not sure but you can use Spring Security ACL, in this case you need > filter at classes level, or interfaces from wouy SW. > > This post< > http://stackoverflow.com/questions/7481869/spring-security-how-acl-grants-permissions > >can > help you. > > Regards. > > > 2013/4/10 Sergey Beryozkin <[email protected]> > > > Hi, I'm not sure you can link it without having a web application, but > > only an embedded Jetty server. > > I guess you may want to ask on Spring Security forums how to do, if you > > find out something new, let us know please :-) > > Sergey > > > > On 10/04/13 17:27, Julio Carlos Barrera Juez wrote: > > > >> I am able to attach a filter in a CXF Servlet in a Web Application using > >> configuration stored in /WEB-INF/web.xml: > >> > >> ... > >> > >> <filter> > >> <filter-name>**springSecurityFilterChain</**filter-name> > >> > >> <filter-class>org.**springframework.web.filter.** > >> DelegatingFilterProxy</filter-**class> > >> </filter> > >> > >> <filter-mapping> > >> <filter-name>**springSecurityFilterChain</**filter-name> > >> <url-pattern>/*</url-pattern> > >> </filter-mapping> > >> > >> ... > >> > >> It allows me to add Spring Security to CXF REST Web Services. > >> > >> I want to do exactly the same behaviour but in an standalone CXF server, > >> not in a Web Application (no web.xml at all!). I'm using Spring to > >> configure my CXF server: > >> > >> ... > >> > >> <jaxrs:server id="helloService" address="/hello"> > >> <jaxrs:serviceBeans> > >> <ref bean="serviceBean" /> > >> </jaxrs:serviceBeans> > >> </jaxrs:server> > >> <bean id="serviceBean" class="sec.Hello" /> > >> > >> ... > >> > >> I don't know how to hook Spring Security to my CXF server. I have not > >> found > >> any working example or documentation about linking Spring Security and > >> CXF. > >> > >> > > > > >
