Package com.webmethods.caf.wsserver

Class WSServer

java.lang.Object

com.webmethods.caf.wsserver.WSServer

public class WSServer
extends Object

WSServer is for service providers needing to use some of the infrastructure of WSClient.

Specifically, it provides a framework and default implementation for securing incoming webserivce invocations with an external security provider

Constructor Summary

Constructors

Constructor	Description
WSServer()

Method Summary

Modifier and Type	Method	Description
static IWSServerAuthInterceptor	attachDefaultAuthInterceptor(electric.util.Context context)	This allows you to attach a default implementation of IWSServerAuthInterceptor to the Service Context.
static IWSServerAuthInterceptor	attachDefaultAuthInterceptor(electric.util.Context context, electric.servlet.HTTPContext httpContext)	This allows you to attach a default implementation of IWSServerAuthInterceptor to the Service Context.
static void	attachToContext(IWSServerAuthInterceptor interceptor, electric.util.Context context, electric.servlet.HTTPContext httpContext)	Conventience static method to register the interceptor with a context.
static void	setAllowBasic(electric.util.Context context, boolean flag)	Modify whether or not the IWSServerAuthInterceptor allows basic auth

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

WSServer

public WSServer()

Method Details

attachDefaultAuthInterceptor

public static IWSServerAuthInterceptor attachDefaultAuthInterceptor(electric.util.Context context)

This allows you to attach a default implementation of IWSServerAuthInterceptor to the Service Context. You can then use the IWSServerAuthInterceptor.getAuthenticatedUserDN() to obtain the dn of the authenticated user who is invoking your service This will use the WSClient to manage the security provider endpoint. If the httpContext is not null, it will also incorporate Basic Auth

See Also:

• WSClientConfig.getSamlSecurityEndpoint()
• WSClient.getClientConfig()

attachDefaultAuthInterceptor

public static IWSServerAuthInterceptor attachDefaultAuthInterceptor(electric.util.Context context,
 electric.servlet.HTTPContext httpContext)

This allows you to attach a default implementation of IWSServerAuthInterceptor to the Service Context. You can then use the IWSServerAuthInterceptor.getAuthenticatedUserDN() to obtain the dn of the authenticated user who is invoking your service This will use the WSClient to manage the security provider endpoint. If the httpContext is not null, it will also incorporate Basic Auth

See Also:

• WSClientConfig.getSamlSecurityEndpoint()
• WSClient.getClientConfig()
• WSClientConfig.getBasicAuthValidatorClassName()

attachToContext

public static void attachToContext(IWSServerAuthInterceptor interceptor,
 electric.util.Context context,
 electric.servlet.HTTPContext httpContext)

Conventience static method to register the interceptor with a context.

Parameters:

context - ServiceContext object. If null, the ApplicationContext is used.

setAllowBasic

public static void setAllowBasic(electric.util.Context context,
 boolean flag)

Modify whether or not the IWSServerAuthInterceptor allows basic auth

Only works if the ISOAPInterceptor is an instance of

Parameters:

context - ServiceContext object. Could be null. If null, the ApplicationContext is used.

flag - boolean set to true if SAML artifact verification is enforced always, false otherwise.