O'Reilly logo

Java Web Services: Up and Running by Martin Kalin

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

WS-Security Under GlassFish

The Echo service example in Chapter 5 shows that WS-Security can be used with Endpoint by using the Metro packages. WS-Security is easier under GlassFish precisely because the current Metro release is part of the GlassFish distribution. This section illustrates the point.

The first example focuses on peer authentication using digital certificates.

Mutual Challenge with Digital Certificates

In a typical browser-based web application, the browser challenges the web server to authenticate itself when the browser tries to establish an HTTPS connection with the server. As discussed earlier in Chapter 5, the web server typically does not challenge the client. For instance, the default behavior of Tomcat is not to challenge a client. GlassFish ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required