Spring WS Username Password Authentication Wss4j

You may also like...

9
Leave a Reply

avatar
7 Comment threads
2 Thread replies
0 Followers
 
Most reacted comment
Hottest comment thread
8 Comment authors
TasosManuel SilvaAbhisekhHomerMemorynotfound.com Recent comment authors
  Subscribe  
newest oldest
Notify of
Alexey
Guest
Alexey

How I can work with https?

Memorynotfound.com
Guest
Memorynotfound.com

You need to configure your application server (Tomcat or JBoss, or … ) to support secured socket layer (SSL/HTTPS) transportation.

iSyed
Guest
iSyed

Hello,

When i access the above sample service from SoapUI the request that is generated with out security header.

?

What changes are required to make the security header available as sample for user?

Thanks,

Memorynotfound.com
Guest
Memorynotfound.com

Unfortunately, spring-ws does not support WS-Policy (yet). So the information needed, cannot be specified in the WSDL by default. You could however, enhance the WSDL with your own WS-Policy implementation by extending the DefaultWsdl11Definition.

You can manually add a ws-security-header using SoapUI. Please read the following documentation: https://www.soapui.org/soapui-projects/ws-security.html

Lime
Guest
Lime

Hello guys,

thank you for the great article! :) I have one question though: Why do you need that “wss4j” dependency in pom.xml? It should be a compile time dependency of “spring-ws-security”, right? Also, it would be great to write a follow-up article with credentials provided using the UserDetailService… ;-)

With kind regards,

Petr Dvorak, Lime

Homer
Guest
Homer

Hi,
Thanks for your articles.

GetBeerRequest and GetBeerResponse files are missing.

Could you add them please?

Thanks

Abhisekh
Guest
Abhisekh

How did you generate your sample request from Java code. I need to create client something similar to mention in the example. I can generate my request however i am not sure how can i see the request with header details.

Manuel Silva
Guest
Manuel Silva

love it

Tasos
Guest
Tasos

It looks like the example request won’t get generated with the given security interceptor.
I had added these to get the nonce and created:
wss4jSecurityInterceptor.setSecurementUsernameTokenCreated(true);
wss4jSecurityInterceptor.setSecurementUsernameTokenNonce(true);