Announcement Announcement Module
No announcement yet.
Channel Security or https for only few endpoints Page Title Module
Move Remove Collapse
Conversation Detail Module
  • Filter
  • Time
  • Show
Clear All
new posts

  • Channel Security or https for only few endpoints

    I am implementing webservices and would like to enforce https on some of the endpoints (but for not all endpoints). For example i have a login endpoint, so it makes sense to use https. and i have getProduct, which just shows product details so it will use http.

    I know we can do in Spring web (
    I have already configured SSL in tomcat. and i am successfully using channel-security.

    Now how to do this in webservices? I am not writing any client side but only server side implementation. Any help would be greatly appreciated


  • #2
    Seems nobody is helping sniff...
    Anyway i found something
    i check request.isSecure() and if false return a saop exception.
    I am checking using AOP.

    Now, i don't know if this is the right solution or if there is a better way to do this. If anyone can help it would be great.