Uploaded image for project: 'JBoss Enterprise Application Platform 4 and 5'
  1. JBoss Enterprise Application Platform 4 and 5
  2. JBPAPP-1248

JBossWS - Incorrection Detection of CONFIDENTIAL Endpoints

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Done
    • Icon: Major Major
    • 4.3.0.GA_CP04
    • 4.3.0.GA_CP02
    • Web Services
    • None

      The detection of endpoints with a transport-guarantee of CONFIDENTIAL tries to exactly map the url-pattern in the WSDL so if the servlet is defined with: -

      <url-pattern>/PhoneBook</url-pattern>

      And the security constraint is defined with: -

      <url-pattern>/*</url-pattern>

      The patterns do not patch and JBossWS assumes it is not CONFIDENTIAL when generating the address, this causes the WSDL to be generated with a http address.

      The transport-guarantee is still enforced by JBossWeb as it is defined in the web.xml but the WSDL has the wrong address which causes problems for the clients trying to connect.

        1. PhoneBook.war
          6 kB

            darran.lofthouse@redhat.com Darran Lofthouse
            darran.lofthouse@redhat.com Darran Lofthouse
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: