One Star

Protect SOAP web services with HTTP Basic Authentication

Hi,
I want to expose SOAP web services protecting them by HTTP Basic Authentication.
I thing I should configure the container (Apache Karaf) to use Basic Authentication.
Am I right ?
Where can I find any guide, tutorial or document to help me to do that ?
Thanks
2 REPLIES
Employee

Re: Protect SOAP web services with HTTP Basic Authentication

Hi,
You can find security authentication from CXF docs.
http://cxf.apache.org/docs/security.html#Security-Authentication
and if you want to use karaf jaas, try to configue the contextName as karaf

<property name="contextName" value="karaf" />

HTH
One Star

Re: Protect SOAP web services with HTTP Basic Authentication

Not sure that's a good way, but you can also extract authentication header inside your job
Just get the "Authorization" header and compare the result with a known string (or you can decode the string in order to test login/password on a remote system, like ldap bind ...)
Basic authentication is just a base64 encoded string
Basic bG9naW46cGFzc3dvcmQ=

=>
Basic login:password

This is how I test authentication with rest queries