Sep 2nd, 2011, 08:36 AM
Web Services Security - Pre Authentication
I've been working through the holiday service tutorial and reading about adding security to web service.
On our network we have a loadbalancer that handles the ssl handshake so what I want to do is hook the authentication of the web service request into our existing custom implementation of AbstractPreAuthenticatedProcessingFilter that is used in our spring mvc web applications.
Would I be right in saying the approach I would need would be to write my own org.springframework.ws.soap.security.callback.Abst ractCallbackHandler?
Just wondering if anyone has done something similar?
Thanks in advance
Sep 6th, 2011, 04:38 AM
Basically what i want is to intercept the endpoint and get the user id from the request header then authenticate that user id using the standard spring security.
Just trying to get some advice on how to achieve this? Would subclassing org.springframework.ws.soap.security.AbstractWsSec urityInterceptor be a better option?
Last edited by dbutler; Sep 6th, 2011 at 04:48 AM.
Tags for this Thread