Hi , I am very new with Java , and especially CXF.
Trying to implement server side of a web service with WS-SecurityPolicy (username and password) but without defining security elements in the WSDL. from reading some articles like: http://www.jroller.com/gmazza/entry/cxf_usernametoken_profile <http://www.jroller.com/gmazza/entry/cxf_usernametoken_profile> I understand that, to support WS security, the steps are: 1. implementing the CallbackHandler 2. adding a property to servlet.xml is it correct ? am I missing something ? Now, for #2, I don't use the cxf servlet, so I added the property through the code : ... Map<String, Object> properties = new java.util.HashMap<String, Object>(); properties.put("ws-security.callback-handler", "ServerCallback");//my CallbackHandler Endpoint a = Endpoint.create(address,implementor); a.setProperties(properties); a.publish(address, implementor); but it doesn't get to my CallbackHandler when debugging. Is it totally wrong ? please help in short, no definition in WSDL, no servlet.xml, what are the steps to support WS security ? Thanks in advance Sara -- View this message in context: http://cxf.547215.n5.nabble.com/WS-Security-how-to-implement-without-defining-any-element-in-the-WSDL-tp5736101.html Sent from the cxf-user mailing list archive at Nabble.com.
