tags:

views:

523

answers:

3
Q: 

AXIS2 and JAX-WS how can I change the SSL handshaking ?

I need to customize the SSL handshaking when calling a JAX-WS API on top of Axis2.

I find no reference at all on how to do this. With Metro I can set a custom SSLSocketFactory, but that uses a non standard API.

How do I get access to the Axis engine so that I can reconfigure it before sending a soap request ?

A: 

Axis2 is configured using axis.xml. Here is the section on http transport.

You may also want to look at the rampart module and how to configure it.

I hope that helps. There's not a lot of information out there on this topic.

Michael Sharek  2009-08-20 15:32:32
And where would I put this axis.xml ? And how can I have one per invocation ? I need programmatic access to setting the parameters.
David Nouls  2009-08-21 18:21:11
+1  A: 

You probably have a stub class that extends org.apache.axis2.client.Stub. You can set its transport properties:

YourStubClass stub = new YourStubClass();
stub.initStub(endpointUrl);
stub._getServiceClient().getOptions().setProperty(HTTPConstants.CACHED_HTTP_CLIENT, soapHttpClient);

Where endpointUrl is a String containing the endpoint URL and soapHttpClient is an instance of the Apaches's HTTP Client (org.apache.commons.httpclient.HttpClient).

When you create your HttpClient object, you can customize your SSL handshaking.

Alceu Costa  2009-08-21 17:05:00
I will try this flag. After much searching I finally found a way to get the ServiceClient and I set a Protocol handler on the options... but somehow it is not used. Maybe the CACHED_HTTP_CLIENT could be a solution ? The problem I have is that this is Axis as available in WebSphere and they seem to have wired in their own transport classes . I'm negotiating with IBM to get a solution, but they don't seem to understand their own tools. They only allow me to set a keystore as a file, which is not fine grained enough for my case.
David Nouls  2009-08-21 18:24:02
I'm testing this on tuesday!
David Nouls  2009-08-21 18:24:32
Hope it works! We had to cutomize transport for Axis to enable basic HTTP authentication and I believe that it will probably work for your SSL customization also. BTW, you mentioned the keystore file, I don't know if that is what you want, but it is possible to add, programmatically a new SSL certificate to it...
Alceu Costa  2009-08-21 18:54:50
No, it did not work. Too bad. On a normal Axis2 it works fine, but not on WebSphere's version.Adding SSL certificates to the SSLtrust is not something that I want to do. We only want one cert in the keystore when we connect. We do not want to accept a cert signed by another ca cert because those CA's are different banking institutes.Changes that that could happen is indeed small, but not small enough for paranoid banking people.
David Nouls  2009-08-24 11:46:16
A: 

I gave up on Axis2 and WebSphere SOAP. It took less time to just implement my own JAX-WS that support everything I need. Too bad.

David Nouls  2009-09-30 08:52:20

related questions

Displaying Version Information in a Web Service
Example Web Service
SoapException: Root element is missing occurs when .NET web service called from Flex
Best practice for webservices
What is your preferred method of sending complex data over a web service?
.Net - Returning DataTables in WCF
Is it possible to return objects from a WebService?
How much extra overhead is generated when sending a file over a web service as a byte array?
Returning Large Results Via a Webservice
File Uploads via Web Services
best way to persist data in .NET Web Service
What is the difference between an endpoint, a service, and a port when working with webservices?
Calling REST web services from a classic asp page
Best way to write a RESTful service "client" in .Net?
Where can I find some good WS-Security introductions and tutorials?
ASP.NET Web Service Results, Proxy Classes and Type Conversion
Web Services -- WCF vs. Standard
C# WCF Service - Backward compatibility issue
Document or RPC based web services
How to easily consume a web service from PHP
Timer-based event triggers
How to pass enumerated values to a web service
Homegrown consumption of web services
How do I print an HTML document from a web service?
How do I fill a DataSet or a DataTable from a LINQ query resultset ?