You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cxf.apache.org by bu...@apache.org on 2013/02/05 23:48:12 UTC
svn commit: r849524 - in /websites/production/cxf/content:
cache/docs.pageCache docs/security.html
Author: buildbot
Date: Tue Feb 5 22:48:12 2013
New Revision: 849524
Log:
Production update by buildbot for cxf
Modified:
websites/production/cxf/content/cache/docs.pageCache
websites/production/cxf/content/docs/security.html
Modified: websites/production/cxf/content/cache/docs.pageCache
==============================================================================
Binary files - no diff available.
Modified: websites/production/cxf/content/docs/security.html
==============================================================================
--- websites/production/cxf/content/docs/security.html (original)
+++ websites/production/cxf/content/docs/security.html Tue Feb 5 22:48:12 2013
@@ -159,7 +159,8 @@ Apache CXF -- Security
<p>Example :</p>
<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
-<pre class="code-xml"><span class="code-tag"><jaxws:endpoint address=<span class="code-quote">"/soapService"</span>></span>
+<pre class="code-xml">
+<span class="code-tag"><jaxws:endpoint address=<span class="code-quote">"/soapService"</span>></span>
<span class="code-tag"><jaxws:inInterceptors></span>
<span class="code-tag"><ref bean=<span class="code-quote">"authenticationInterceptor"</span>/></span>
<span class="code-tag"></jaxws:inInterceptors></span>
@@ -182,7 +183,8 @@ Apache CXF -- Security
<p>In some cases objects representing a user principal and roles are implementing the same marker interface such as Principal. That can be handled like this:</p>
<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
-<pre class="code-xml"><span class="code-tag"><bean id=<span class="code-quote">"authenticationInterceptor"</span> class=<span class="code-quote">"org.apache.cxf.interceptor.security.JAASLoginInterceptor"</span>></span>
+<pre class="code-xml">
+<span class="code-tag"><bean id=<span class="code-quote">"authenticationInterceptor"</span> class=<span class="code-quote">"org.apache.cxf.interceptor.security.JAASLoginInterceptor"</span>></span>
<span class="code-tag"><property name=<span class="code-quote">"contextName"</span> value=<span class="code-quote">"jaasContext"</span>/></span>
<span class="code-tag"><property name=<span class="code-quote">"roleClassifier"</span> value=<span class="code-quote">"RolePrincipal"</span>/></span>
<span class="code-tag"><property name=<span class="code-quote">"roleClassifierType"</span> value=<span class="code-quote">"classname"</span>/></span>
@@ -214,7 +216,8 @@ Apache CXF -- Security
<p>Example :</p>
<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
-<pre class="code-xml"><span class="code-tag"><jaxws:endpoint id=<span class="code-quote">"endpoint1"</span> address=<span class="code-quote">"/soapService1"</span>></span>
+<pre class="code-xml">
+<span class="code-tag"><jaxws:endpoint id=<span class="code-quote">"endpoint1"</span> address=<span class="code-quote">"/soapService1"</span>></span>
<span class="code-tag"><jaxws:inInterceptors></span>
<span class="code-tag"><ref bean=<span class="code-quote">"authorizationInterceptor"</span>/></span>
<span class="code-tag"></jaxws:inInterceptors></span>
@@ -253,7 +256,8 @@ Apache CXF -- Security
<p>The complete number of XML elements, the number of immediate children of a given XML element may contain and the stack depth of the payload can be restricted, for example:</p>
<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
-<pre class="code-xml"><span class="code-tag"><bean id=<span class="code-quote">"depthInterceptor"</span> class=<span class="code-quote">"org.apache.cxf.interceptor.security.DepthRestrictingStreamInterceptor"</span>></span>
+<pre class="code-xml">
+<span class="code-tag"><bean id=<span class="code-quote">"depthInterceptor"</span> class=<span class="code-quote">"org.apache.cxf.interceptor.security.DepthRestrictingStreamInterceptor"</span>></span>
<span class="code-tag"><span class="code-comment"><!-- Total number of elements in the XML payload --></span></span>
<span class="code-tag"><property name=<span class="code-quote">"elementCountThreshold"</span> value=<span class="code-quote">"5000"</span>/></span>
@@ -294,16 +298,16 @@ Apache CXF -- Security
<p>A large stream based message or data will be cached in a temporary file. In default, this caching occurs at data size larger than 64K bytes and a temporary file is written in the system's temporary directory. You can change this behavior and other properties of the caching feature by explicitly setting the following properties.</p>
-<p>To change the behavior for the entire system, you can set the following system properties.</p>
+<p>To change the default behavior for the entire system, you can set the following system properties.</p>
<div class="table-wrap">
-<table class="confluenceTable"><tbody><tr><th colspan="1" rowspan="1" class="confluenceTh"> Property Name </th><th colspan="1" rowspan="1" class="confluenceTh"> Value </th></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> org.apache.cxf.io.CachedOutputStream.Threshold </td><td colspan="1" rowspan="1" class="confluenceTd"> The threshold value in bytes to switch to file caching </td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> org.apache.cxf.io.CachedOutputStream.MaxSize </td><td colspan="1" rowspan="1" class="confluenceTd"> The maximum data size to be cached </td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> org.apache.cxf.io.CachedOutputStream.OutputDirectory </td><td colspan="1" rowspan="1" class="confluenceTd"> The file directory for the temporary files </td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> org.apache.cxf.io.CachedOutputStream.CipherTransformation </td><td colspan="1" rowspan="1" class="confluenceTd"> The cipher
transformation name to encrypt the cached content </td></tr></tbody></table>
+<table class="confluenceTable"><tbody><tr><th colspan="1" rowspan="1" class="confluenceTh"> Property Name </th><th colspan="1" rowspan="1" class="confluenceTh"> Value </th></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> org.apache.cxf.io.CachedOutputStream.Threshold </td><td colspan="1" rowspan="1" class="confluenceTd"> The threshold value in bytes to switch from memory to file caching </td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> org.apache.cxf.io.CachedOutputStream.MaxSize </td><td colspan="1" rowspan="1" class="confluenceTd"> The data size in bytes to limit the maximum data size to be cached </td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> org.apache.cxf.io.CachedOutputStream.OutputDirectory </td><td colspan="1" rowspan="1" class="confluenceTd"> The directory name for storing the temporary files </td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> org.apache.cxf.io.CachedOutputStream.CipherTransformation </td><td cols
pan="1" rowspan="1" class="confluenceTd"> The cipher transformation name for encryptiing the cached content </td></tr></tbody></table>
</div>
-<p>To change the behavior for a specific bus, you can set the corresponding bus.io.CachedOutputStream properties (e.g., bus.io.CachedOutputStream.Threshold for org.apache.cxf.io.CachedOutputStream.Threshold).</p>
+<p>To change the default behavior for a specific bus, you can set the corresponding bus.io.CachedOutputStream properties (e.g., bus.io.CachedOutputStream.Threshold for org.apache.cxf.io.CachedOutputStream.Threshold).</p>
-<p>The encryption option uses a symmetric encryption using a generated key and it can be used to protect the cached content from unauthorized access. To enable encryption, the CipherTransformation property can be set to some stream or 8-bit block cipher transformation names (e.g., RC4, AES/CTR/NoPadding, etc) that are supported by the environment. However, it is noted that enabling the encryption will result in an increased processing time and it is therefore recommended only in specific use cases where other means to protect the cached content is unavailable.</p></div>
+<p>The encryption option, which is available from CXF 2.6.4 and 2.7.1, uses a symmetric encryption using a generated key and it can be used to protect the cached content from unauthorized access. To enable encryption, the CipherTransformation property can be set to the name of an appropriate stream or 8-bit block cipher transformation (e.g., RC4, AES/CTR/NoPadding, etc) that is supported by the environment. However, it is noted that enabling the encryption will result in an increased processing time and it is therefore recommended only in specific use cases where other means to protect the cached content is unavailable.</p></div>
</div>
<!-- Content -->
</td>