![]() I did encounter a bug in GlassFish which required a patch.GlassFish Server Open Source Edition 4.1.GlassFish Server Open Source Edition 3.1.2.2.Text file detailing the required modules for this test.Įxample configuration files contain references to three servers:.The ApacheSiteConfig folder contains two files: I have created a project on my GitHub account containing sample code covering the first two web service implementation options as well as a plain servlet.Īny configuration in this test is just as an example, obviously assess any options for security before applying to a production environment. At the bottom of this article there is a conclusion detailing which implementation and container combinations work. Spoiler: Only the AJP connector behaves the same in the two containers, so it is the only option to allow proxied client certificate authentication in the EJB container. Each of these containers have their own security systems which appear to not inconsistent in my tests, although I could not find documentation detailing this. In addition to these there are also just plain Servlets deployed in a War file.Īs you can see, there are two containers in use for these methods: Web and EJB. The source of this is section 5.3.2 of JSR-000109 Implementing Enterprise Web Services 1.4 Maintenance Release 3 for Evaluation. Singleton Session EJB as a JAX-WS web service.Stateless Session EJB as a JAX-RPC or JAX-WS web service. ![]() A JAX-RPC or JAX-WS service endpoint running in a web container.The implementation of the server side component also matters, as Java EE defines three methods of implementing a Web service: There are two approaches which appear to be available between Apache and GlassFish, both using Apache as the SSL terminator: Our test client -> Apache HTTPD Proxy (SSL, with Client Cert) -> GlassFish (Retaining Client Cert authentication) What options are available? It seems like it should be a relatively simple thing to set up, but scattershot documentation, strange failure behaviours and undocumented inconsistencies have made this a major headache to figure out. This is largely just my notes on this problem.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |