You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@cxf.apache.org by 杨华杰 <yh...@gmail.com> on 2012/08/21 09:26:53 UTC

How do I secure my web service?

Hi
How do I secure my web service?   Can I use NTLM?


Regards,
Hua JIe

Re: How do I secure my web service?

Posted by 杨华杰 <yh...@gmail.com>.

Thank you Freeman and Glen

I think spring security is much easier for me to do this job.

I am wondering why there don't have a straight way solution of NTLM in java.

Regards,
Hua JIe

On Wed, Aug 22, 2012 at 2:35 AM, Glen Mazza <gm...@talend.com> wrote:

> Links #11 and #12 here may also be of help: http://www.jroller.com/gmazza/
> **entry/blog_article_index<http://www.jroller.com/gmazza/entry/blog_article_index>
>
> Glen
>
>
> On 08/21/2012 08:47 AM, Freeman Fang wrote:
>
>> Hi,
>>
>> Take a look at samples/ws_security/ut shipped with CXF kit, it's use
>> ws-security UsernameToken which should map your user case.
>>
>> Or you can consider to use http basic auth, we have a test case[1] to
>> demonstrate how to enable jetty basic auth
>> [1]https://svn.apache.org/**repos/asf/cxf/trunk/systests/**
>> transports/src/test/java/org/**apache/cxf/systest/http_jetty/**
>> JettyBasicAuthServer.java<https://svn.apache.org/repos/asf/cxf/trunk/systests/transports/src/test/java/org/apache/cxf/systest/http_jetty/JettyBasicAuthServer.java>
>>
>> Freeman
>> －－－－－－－－－－－－－
>> Freeman Fang
>>
>> FuseSource
>> Email:ffang@fusesource.com
>> Web: fusesource.com
>> Twitter: freemanfang
>> Blog: http://freemanfang.blogspot.**com <http://freemanfang.blogspot.com>
>> http://blog.sina.com.cn/u/**1473905042<http://blog.sina.com.cn/u/1473905042>
>> weibo: http://weibo.com/u/1473905042
>>
>> On 2012-8-21, at 下午4:40, 杨华杰 wrote:
>>
>>  Thanks. Where can I find some basic solution to secure my web service.
>>> Something like username and password, but very easy to configure.
>>>
>>> On Tue, Aug 21, 2012 at 4:25 PM, Freeman Fang <freeman.fang@gmail.com
>>> >wrote:
>>>
>>>  Hi,
>>>>
>>>> I believe this link would help if you deploy CXF into tomcat.
>>>>
>>>> [1]
>>>> http://stackoverflow.com/**questions/439120/how-to-**
>>>> configure-tomcat-to-use-**windows-ntlm-authentication<http://stackoverflow.com/questions/439120/how-to-configure-tomcat-to-use-windows-ntlm-authentication>
>>>> Freeman
>>>> －－－－－－－－－－－－－
>>>> Freeman Fang
>>>>
>>>> FuseSource
>>>> Email:ffang@fusesource.com
>>>> Web: fusesource.com
>>>> Twitter: freemanfang
>>>> Blog: http://freemanfang.blogspot.**com<http://freemanfang.blogspot.com>
>>>> http://blog.sina.com.cn/u/**1473905042<http://blog.sina.com.cn/u/1473905042>
>>>> weibo: http://weibo.com/u/1473905042
>>>>
>>>> On 2012-8-21, at 下午4:07, 杨华杰 wrote:
>>>>
>>>>  Hi Freeman
>>>>>
>>>>> [1]
>>>>>
>>>>>  http://cxf.apache.org/docs/**client-http-transport-**
>>>> including-ssl-support.html<http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html>
>>>>
>>>>> This
>>>>> is used for ws-client, what I want to achieve is to secure my web
>>>>> service
>>>>> which created by CXF.
>>>>>
>>>>>
>>>>> Regards,
>>>>> Hua Jie
>>>>>
>>>>>
>>>>> On Tue, Aug 21, 2012 at 3:35 PM, Freeman Fang <freeman.fang@gmail.com
>>>>> wrote:
>>>>>
>>>>>  Hi,
>>>>>>
>>>>>> To secure your web service, you have several options. For an instance,
>>>>>> from message level you can use ws-security, from transport level you
>>>>>> can
>>>>>> use SSL/TLS.
>>>>>> And yes, you can use NTLM, take a look at [1], the "NTLM
>>>>>> Authentication"
>>>>>> part.
>>>>>> [1]
>>>>>>
>>>>>>  http://cxf.apache.org/docs/**client-http-transport-**
>>>> including-ssl-support.html<http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html>
>>>>
>>>>> Freeman
>>>>>> －－－－－－－－－－－－－
>>>>>> Freeman Fang
>>>>>>
>>>>>> FuseSource
>>>>>> Email:ffang@fusesource.com
>>>>>> Web: fusesource.com
>>>>>> Twitter: freemanfang
>>>>>> Blog: http://freemanfang.blogspot.**com<http://freemanfang.blogspot.com>
>>>>>> http://blog.sina.com.cn/u/**1473905042<http://blog.sina.com.cn/u/1473905042>
>>>>>> weibo: http://weibo.com/u/1473905042
>>>>>>
>>>>>> On 2012-8-21, at 下午3:26, 杨华杰 wrote:
>>>>>>
>>>>>>  Hi
>>>>>>> How do I secure my web service?   Can I use NTLM?
>>>>>>>
>>>>>>>
>>>>>>> Regards,
>>>>>>> Hua JIe
>>>>>>>
>>>>>>
>>>>>>
>>>>
>>
>

Re: How do I secure my web service?

Posted by Glen Mazza <gm...@talend.com>.

Links #11 and #12 here may also be of help: 
http://www.jroller.com/gmazza/entry/blog_article_index

Glen

On 08/21/2012 08:47 AM, Freeman Fang wrote:
> Hi,
>
> Take a look at samples/ws_security/ut shipped with CXF kit, it's use ws-security UsernameToken which should map your user case.
>
> Or you can consider to use http basic auth, we have a test case[1] to demonstrate how to enable jetty basic auth
> [1]https://svn.apache.org/repos/asf/cxf/trunk/systests/transports/src/test/java/org/apache/cxf/systest/http_jetty/JettyBasicAuthServer.java
>
> Freeman
> －－－－－－－－－－－－－
> Freeman Fang
>
> FuseSource
> Email:ffang@fusesource.com
> Web: fusesource.com
> Twitter: freemanfang
> Blog: http://freemanfang.blogspot.com
> http://blog.sina.com.cn/u/1473905042
> weibo: http://weibo.com/u/1473905042
>
> On 2012-8-21, at 下午4:40, 杨华杰 wrote:
>
>> Thanks. Where can I find some basic solution to secure my web service.
>> Something like username and password, but very easy to configure.
>>
>> On Tue, Aug 21, 2012 at 4:25 PM, Freeman Fang <fr...@gmail.com>wrote:
>>
>>> Hi,
>>>
>>> I believe this link would help if you deploy CXF into tomcat.
>>>
>>> [1]
>>> http://stackoverflow.com/questions/439120/how-to-configure-tomcat-to-use-windows-ntlm-authentication
>>> Freeman
>>> －－－－－－－－－－－－－
>>> Freeman Fang
>>>
>>> FuseSource
>>> Email:ffang@fusesource.com
>>> Web: fusesource.com
>>> Twitter: freemanfang
>>> Blog: http://freemanfang.blogspot.com
>>> http://blog.sina.com.cn/u/1473905042
>>> weibo: http://weibo.com/u/1473905042
>>>
>>> On 2012-8-21, at 下午4:07, 杨华杰 wrote:
>>>
>>>> Hi Freeman
>>>>
>>>> [1]
>>>>
>>> http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html
>>>> This
>>>> is used for ws-client, what I want to achieve is to secure my web service
>>>> which created by CXF.
>>>>
>>>>
>>>> Regards,
>>>> Hua Jie
>>>>
>>>>
>>>> On Tue, Aug 21, 2012 at 3:35 PM, Freeman Fang <freeman.fang@gmail.com
>>>> wrote:
>>>>
>>>>> Hi,
>>>>>
>>>>> To secure your web service, you have several options. For an instance,
>>>>> from message level you can use ws-security, from transport level you can
>>>>> use SSL/TLS.
>>>>> And yes, you can use NTLM, take a look at [1], the "NTLM Authentication"
>>>>> part.
>>>>> [1]
>>>>>
>>> http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html
>>>>> Freeman
>>>>> －－－－－－－－－－－－－
>>>>> Freeman Fang
>>>>>
>>>>> FuseSource
>>>>> Email:ffang@fusesource.com
>>>>> Web: fusesource.com
>>>>> Twitter: freemanfang
>>>>> Blog: http://freemanfang.blogspot.com
>>>>> http://blog.sina.com.cn/u/1473905042
>>>>> weibo: http://weibo.com/u/1473905042
>>>>>
>>>>> On 2012-8-21, at 下午3:26, 杨华杰 wrote:
>>>>>
>>>>>> Hi
>>>>>> How do I secure my web service?   Can I use NTLM?
>>>>>>
>>>>>>
>>>>>> Regards,
>>>>>> Hua JIe
>>>>>
>>>
>

Re: How do I secure my web service?

Posted by Freeman Fang <fr...@gmail.com>.

Hi,

Take a look at samples/ws_security/ut shipped with CXF kit, it's use ws-security UsernameToken which should map your user case.

Or you can consider to use http basic auth, we have a test case[1] to demonstrate how to enable jetty basic auth
[1]https://svn.apache.org/repos/asf/cxf/trunk/systests/transports/src/test/java/org/apache/cxf/systest/http_jetty/JettyBasicAuthServer.java

Freeman
－－－－－－－－－－－－－
Freeman Fang

FuseSource
Email:ffang@fusesource.com
Web: fusesource.com
Twitter: freemanfang
Blog: http://freemanfang.blogspot.com
http://blog.sina.com.cn/u/1473905042
weibo: http://weibo.com/u/1473905042

On 2012-8-21, at 下午4:40, 杨华杰 wrote:

> Thanks. Where can I find some basic solution to secure my web service.
> Something like username and password, but very easy to configure.
> 
> On Tue, Aug 21, 2012 at 4:25 PM, Freeman Fang <fr...@gmail.com>wrote:
> 
>> Hi,
>> 
>> I believe this link would help if you deploy CXF into tomcat.
>> 
>> [1]
>> http://stackoverflow.com/questions/439120/how-to-configure-tomcat-to-use-windows-ntlm-authentication
>> Freeman
>> －－－－－－－－－－－－－
>> Freeman Fang
>> 
>> FuseSource
>> Email:ffang@fusesource.com
>> Web: fusesource.com
>> Twitter: freemanfang
>> Blog: http://freemanfang.blogspot.com
>> http://blog.sina.com.cn/u/1473905042
>> weibo: http://weibo.com/u/1473905042
>> 
>> On 2012-8-21, at 下午4:07, 杨华杰 wrote:
>> 
>>> Hi Freeman
>>> 
>>> [1]
>>> 
>> http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html
>>> This
>>> is used for ws-client, what I want to achieve is to secure my web service
>>> which created by CXF.
>>> 
>>> 
>>> Regards,
>>> Hua Jie
>>> 
>>> 
>>> On Tue, Aug 21, 2012 at 3:35 PM, Freeman Fang <freeman.fang@gmail.com
>>> wrote:
>>> 
>>>> Hi,
>>>> 
>>>> To secure your web service, you have several options. For an instance,
>>>> from message level you can use ws-security, from transport level you can
>>>> use SSL/TLS.
>>>> And yes, you can use NTLM, take a look at [1], the "NTLM Authentication"
>>>> part.
>>>> [1]
>>>> 
>> http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html
>>>> 
>>>> Freeman
>>>> －－－－－－－－－－－－－
>>>> Freeman Fang
>>>> 
>>>> FuseSource
>>>> Email:ffang@fusesource.com
>>>> Web: fusesource.com
>>>> Twitter: freemanfang
>>>> Blog: http://freemanfang.blogspot.com
>>>> http://blog.sina.com.cn/u/1473905042
>>>> weibo: http://weibo.com/u/1473905042
>>>> 
>>>> On 2012-8-21, at 下午3:26, 杨华杰 wrote:
>>>> 
>>>>> Hi
>>>>> How do I secure my web service?   Can I use NTLM?
>>>>> 
>>>>> 
>>>>> Regards,
>>>>> Hua JIe
>>>> 
>>>> 
>> 
>>

Re: How do I secure my web service?

Posted by 杨华杰 <yh...@gmail.com>.

Thanks. Where can I find some basic solution to secure my web service.
Something like username and password, but very easy to configure.

On Tue, Aug 21, 2012 at 4:25 PM, Freeman Fang <fr...@gmail.com>wrote:

> Hi,
>
> I believe this link would help if you deploy CXF into tomcat.
>
> [1]
> http://stackoverflow.com/questions/439120/how-to-configure-tomcat-to-use-windows-ntlm-authentication
> Freeman
> －－－－－－－－－－－－－
> Freeman Fang
>
> FuseSource
> Email:ffang@fusesource.com
> Web: fusesource.com
> Twitter: freemanfang
> Blog: http://freemanfang.blogspot.com
> http://blog.sina.com.cn/u/1473905042
> weibo: http://weibo.com/u/1473905042
>
> On 2012-8-21, at 下午4:07, 杨华杰 wrote:
>
> > Hi Freeman
> >
> > [1]
> >
> http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html
> > This
> > is used for ws-client, what I want to achieve is to secure my web service
> > which created by CXF.
> >
> >
> > Regards,
> > Hua Jie
> >
> >
> > On Tue, Aug 21, 2012 at 3:35 PM, Freeman Fang <freeman.fang@gmail.com
> >wrote:
> >
> >> Hi,
> >>
> >> To secure your web service, you have several options. For an instance,
> >> from message level you can use ws-security, from transport level you can
> >> use SSL/TLS.
> >> And yes, you can use NTLM, take a look at [1], the "NTLM Authentication"
> >> part.
> >> [1]
> >>
> http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html
> >>
> >> Freeman
> >> －－－－－－－－－－－－－
> >> Freeman Fang
> >>
> >> FuseSource
> >> Email:ffang@fusesource.com
> >> Web: fusesource.com
> >> Twitter: freemanfang
> >> Blog: http://freemanfang.blogspot.com
> >> http://blog.sina.com.cn/u/1473905042
> >> weibo: http://weibo.com/u/1473905042
> >>
> >> On 2012-8-21, at 下午3:26, 杨华杰 wrote:
> >>
> >>> Hi
> >>> How do I secure my web service?   Can I use NTLM?
> >>>
> >>>
> >>> Regards,
> >>> Hua JIe
> >>
> >>
>
>

Re: How do I secure my web service?

Posted by Freeman Fang <fr...@gmail.com>.

Hi,

I believe this link would help if you deploy CXF into tomcat.

[1]http://stackoverflow.com/questions/439120/how-to-configure-tomcat-to-use-windows-ntlm-authentication
Freeman
－－－－－－－－－－－－－
Freeman Fang

FuseSource
Email:ffang@fusesource.com
Web: fusesource.com
Twitter: freemanfang
Blog: http://freemanfang.blogspot.com
http://blog.sina.com.cn/u/1473905042
weibo: http://weibo.com/u/1473905042

On 2012-8-21, at 下午4:07, 杨华杰 wrote:

> Hi Freeman
> 
> [1]
> http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html
> This
> is used for ws-client, what I want to achieve is to secure my web service
> which created by CXF.
> 
> 
> Regards,
> Hua Jie
> 
> 
> On Tue, Aug 21, 2012 at 3:35 PM, Freeman Fang <fr...@gmail.com>wrote:
> 
>> Hi,
>> 
>> To secure your web service, you have several options. For an instance,
>> from message level you can use ws-security, from transport level you can
>> use SSL/TLS.
>> And yes, you can use NTLM, take a look at [1], the "NTLM Authentication"
>> part.
>> [1]
>> http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html
>> 
>> Freeman
>> －－－－－－－－－－－－－
>> Freeman Fang
>> 
>> FuseSource
>> Email:ffang@fusesource.com
>> Web: fusesource.com
>> Twitter: freemanfang
>> Blog: http://freemanfang.blogspot.com
>> http://blog.sina.com.cn/u/1473905042
>> weibo: http://weibo.com/u/1473905042
>> 
>> On 2012-8-21, at 下午3:26, 杨华杰 wrote:
>> 
>>> Hi
>>> How do I secure my web service?   Can I use NTLM?
>>> 
>>> 
>>> Regards,
>>> Hua JIe
>> 
>>

Re: How do I secure my web service?

Posted by 杨华杰 <yh...@gmail.com>.

Hi Freeman

[1]
http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html
This
is used for ws-client, what I want to achieve is to secure my web service
which created by CXF.


Regards,
Hua Jie


On Tue, Aug 21, 2012 at 3:35 PM, Freeman Fang <fr...@gmail.com>wrote:

> Hi,
>
> To secure your web service, you have several options. For an instance,
> from message level you can use ws-security, from transport level you can
> use SSL/TLS.
> And yes, you can use NTLM, take a look at [1], the "NTLM Authentication"
> part.
> [1]
> http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html
>
> Freeman
> －－－－－－－－－－－－－
> Freeman Fang
>
> FuseSource
> Email:ffang@fusesource.com
> Web: fusesource.com
> Twitter: freemanfang
> Blog: http://freemanfang.blogspot.com
> http://blog.sina.com.cn/u/1473905042
> weibo: http://weibo.com/u/1473905042
>
> On 2012-8-21, at 下午3:26, 杨华杰 wrote:
>
> > Hi
> > How do I secure my web service?   Can I use NTLM?
> >
> >
> > Regards,
> > Hua JIe
>
>

Re: How do I secure my web service?

Posted by Freeman Fang <fr...@gmail.com>.

Hi,

To secure your web service, you have several options. For an instance, from message level you can use ws-security, from transport level you can use SSL/TLS.
And yes, you can use NTLM, take a look at [1], the "NTLM Authentication" part.
[1]http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html

Freeman
－－－－－－－－－－－－－
Freeman Fang

FuseSource
Email:ffang@fusesource.com
Web: fusesource.com
Twitter: freemanfang
Blog: http://freemanfang.blogspot.com
http://blog.sina.com.cn/u/1473905042
weibo: http://weibo.com/u/1473905042

On 2012-8-21, at 下午3:26, 杨华杰 wrote:

> Hi
> How do I secure my web service?   Can I use NTLM?
> 
> 
> Regards,
> Hua JIe