Announcement Announcement Module
Collapse
No announcement yet.
Channel Security or https for only few endpoints Page Title Module
Move Remove Collapse
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • Channel Security or https for only few endpoints

    Hi
    I am implementing webservices and would like to enforce https on some of the endpoints (but for not all endpoints). For example i have a login endpoint, so it makes sense to use https. and i have getProduct, which just shows product details so it will use http.

    I know we can do in Spring web (http://www.acegisecurity.org/guide/s...annel-security)
    I have already configured SSL in tomcat. and i am successfully using channel-security.

    Now how to do this in webservices? I am not writing any client side but only server side implementation. Any help would be greatly appreciated

    Thanks

  • #2
    Seems nobody is helping sniff...
    Anyway i found something http://static.springframework.org/sp...nsport-context
    i check request.isSecure() and if false return a saop exception.
    I am checking using AOP.

    Now, i don't know if this is the right solution or if there is a better way to do this. If anyone can help it would be great.

    Thanks

    Comment

    Working...
    X