You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "willem Jiang (JIRA)" <ji...@apache.org> on 2007/03/19 10:33:32 UTC

[jira] Assigned: (CXF-466) Check WebServicePermission

     [ https://issues.apache.org/jira/browse/CXF-466?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

willem Jiang reassigned CXF-466:
--------------------------------

    Assignee: willem Jiang

> Check WebServicePermission
> --------------------------
>
>                 Key: CXF-466
>                 URL: https://issues.apache.org/jira/browse/CXF-466
>             Project: CXF
>          Issue Type: New Feature
>          Components: JAX-WS Runtime
>            Reporter: Jarek Gawor
>         Assigned To: willem Jiang
>         Attachments: CXF-466.patch
>
>
> As according to JAX-WS 2.0 spec, the WebServicePermission should be checked when publishing an endpoint. The attached patch adds that feature. 
> The JAX-WS 2.0 spec only calls for checking that permission only when a SecurityManager is installed. However, JSR 109 always says that this permission must not be granted (even when SecurityManager is not installed). Therefore, the patch contains a bit of code that can also perform the WebServicePermission check when a SecurityManager is not installed. That code is only enabled when 'org.apache.cxf.jaxws.checkPublishEndpointPermission' system property is set (we will set this property in Geronimo).

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.