http « security « Java Enterprise Q&A





1. JEE Web - Switching from HTTPS to HTTP depending on resource    stackoverflow.com

Using only standard JEE API (JAAS, Servlet API, JSF) How can I switch back from a CONFIDENTIAL channel to a Unsecured one? In my example I already managed to switch from an ...

2. as3 sandbox security violation with http://schemas.xmlsoap.org/soap/encoding/    stackoverflow.com

I implemented a gSoap c++ webservice-server to be accessed by Flash (as3) Everything runs smooth as long as i test the .swf locally, the .wsdl is loaded fine, and the communication ...

3. Java - Authenticate user using web application's security framework without Http requests    stackoverflow.com

So I have a Tomcat server within a Java web application, authentication is done using Tomcat's usernames and passwords specified in the tomcat-users.xml file, and form based authentication (posting to *j_security_check*). ...

4. java.lang.UnsatisfiedLinkError: sun.net.www.protocol.http.NTLMAuthSequence.initFirst()V    stackoverflow.com

package sun.net.www.protocol.http;

import java.io.IOException;

public class Test
{
   public static void main(String[] args) throws IOException
   {
      System.out.println(new NTLMAuthSequence(null, null, null));
   }
}
Any idea on ...

5. J2EE: Unathenticated POST and j_security_check    stackoverflow.com

I tried to do some research on this and came across the following question on another site: http://www.theserverside.com/discussions/thread.tss?thread_id=36561 Unfortunately, the answer there was to switch to GET requests, which I'm hoping ...

6. Java Web App Security using Cookies    stackoverflow.com

I'm finishing a Cattle Drive assignment where a small Java web application manages a movie library for the client. The assignment is to put some security on the application using cookies, ...

7. Problem while using MessageContract attribute : Exception -> End element 'Body' from namespace 'http://schemas.xmlsoap.org/soap/envelope/' expected    stackoverflow.com

I am moving my WSE3 web services to the WCF. But the client is WSE3 client. All the Operation Contracts return an instance of the MessageContract classes. This works for 2 operations ...

8. Using HTTP Request.login with JBoss/JAAS    stackoverflow.com

I have successfully setup a JBoss security domain, and can authenticate using BASIC authentication (as defined in web.xml). This all works well. I cannot however figure out how to use the ...

9. Security using HTTP 1.1 basic challenge response    coderanch.com

Thanks DV. I am not using axis. There is a framework for webservices developed in house. It is using javax.xml.soap calles. The call is made using the soapConnection object and I dont see the methods that can accept username and password. Do you if there is a work around? I can modify the existing functionality but has to with java-api. I ...