User Close

Search

THE DEVELOPER PORTAL FOR SOA

How to create a proxy for REST service using digest authentication?

xyintao.gmail.com's picture

Submitted by xyintao.gmail.com on July 27, 2010 - 18:36

Hello

Can you point me to an example on how I can proxy a call to a digest authentication secured service? The service is REST

Bookmark/Search this post with:

samba's picture

Hello, Just use this link is

Submitted by samba on July 28, 2010 - 00:30.

Hello,
Just use this link is helpful but my proxy is not a REST proxy. However you just have to create a sequence
that call this class before sending the request to the end point (Client --> ESB --> LDAP verification or store --> forward if authentication or 401 reponse else)):
http://wso2.org/library/knowledge-base/converting-http-basic-authentication-ws-security-username-token

Login or register to post comments

xyintao.gmail.com's picture

Thanks, but that link only

Submitted by xyintao.gmail.com on July 28, 2010 - 02:47.

Thanks, but that link only talks about basic authentication. What we are looking for is the more secure challenge/response digest authentication

Login or register to post comments

indika's picture

HI It is better if you could

Submitted by indika on July 29, 2010 - 01:30.

HI

It is better if you could ask this from 'Identity Server Forum'. Just asks that 'how to use the axis2 client to talk to a digest authentication secured service'. if it needs only a set of properties, HTTP headers, etc., they you can do that by using existing mediators(header or property mediators). Otherwise, you may need to write a custom mediator.

Thanks

Indika

Login or register to post comments

samba's picture

May be you need to add

Submitted by samba on July 29, 2010 - 06:50.

May be you need to add ws-security using username/password token on soap header but it depends on what you need to secure : Transport ? soap payload just authorization or access control.
In my use case I use basic authentication but the next step is to foward a token like saml in secure transport lecel https.
So what do you really need ?

Login or register to post comments

Popular Content

Developing Web Services Using Apache Axis2 Eclipse Plugins - Part 1 (315416 reads)
How to Embed an Axis2 based Web Service in your Webapp? (68350 reads)
Hello World with Apache Axis2 (67998 reads)
Downloading a Binary File from a Web Service using Axis2 and SOAP with Attachments (61073 reads)
Developing Web Services Using Apache Axis2 Eclipse Plugins - Part 2 (59877 reads)
Reference Guide to Apache Axis2 Client API Parameters (54704 reads)
Writing Your Own services.xml for Axis2 Web Services (54317 reads)
Web Services Security with Apache Rampart – Part 1 ( Transport Level Security ) (53770 reads)

Featured

Enterprises are inherently complex, comprising of hundreds of applications with completely different semantics. Some of these applications are custom built, where as some are acquired from third parties and some even can be a combination of both and they can be operating in different system environments.

WSO2 VMware Images helps you to try our products inside your virtualized environments without having to go through the trouble of installation and configuration. Download an image and get your hands on cutting edge, lightweight SOA middleware right away!

WSO2 Governance Registry is a product from WSO2 that facilitates you to govern the SOA platform of your organization by helping you store and manage SOA meta data. The product is free and open source with Apache licence and you can download it from http://wso2.org/projects/governance-registry

Hot Topic

Hot

Topic

Google Gadgets are a nice way to develop user interfaces for distributed services. The fact that they can be hosted anywhere over a network, not necessarily in the very portal server they eventually run in makes them re-usable and allows users to quickly...

Latest Webinar

In this webinar we'll share the range of concerns we've heard from the industry, and survey some of the new and sometimes subtle types of lock-in associated with cloud technologies.

Wednesday, 8 September, 10.00 AM (PDT)

Tags

transformation transports WS-Security WS-* WS-ReliableMessaging WS-Policy Web services WS-Trust WS-Policy WS-Eventing