欧美性猛交XXXX免费看蜜桃,成人网18免费韩国,亚洲国产成人精品区综合,欧美日韩一区二区三区高清不卡,亚洲综合一区二区精品久久

在WebService開(kāi)發(fā)筆記 1中我們創(chuàng )建了一個(gè)WebService簡(jiǎn)單實(shí)例,下面我們通過(guò)一個(gè)簡(jiǎn)單的用戶(hù)口令驗證機制來(lái)加強一下WebService的安全性:

1.修改WebService 服務(wù)端 spring 配置文件 ws-context.xml

<beans xmlns="http://www.springframework.org/schema/beans"	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"	xmlns:jaxws="http://cxf.apache.org/jaxws"	xsi:schemaLocation="http://cxf.apache.org/jaxws http://cxf.apache.org/schemas/jaxws.xsd http://www.springframework.org/schema/beans  http://www.springframework.org/schema/beans/spring-beans.xsd"	default-autowire="byName" default-lazy-init="true">		<jaxws:endpoint id="webServiceSample"		address="/WebServiceSample" implementor="cn.org.coral.biz.examples.webservice.WebServiceSampleImpl">		<jaxws:inInterceptors>			<bean class="org.apache.cxf.binding.soap.saaj.SAAJInInterceptor" />			<bean class="org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor">				<constructor-arg>					<map>						<entry key="action" value="UsernameToken" />						<entry key="passwordType" value="PasswordText" />						<entry key="passwordCallbackClass" value="cn.org.coral.biz.examples.webservice.handler.WsAuthHandler" />					</map>				</constructor-arg>			</bean>		</jaxws:inInterceptors>		</jaxws:endpoint>	</beans>

2.服務(wù)端添加passwordCallbackClass回調類(lèi),該類(lèi)進(jìn)行用戶(hù)口令驗證:

package cn.org.coral.biz.examples.webservice.handler;import java.io.IOException;import javax.security.auth.callback.Callback;import javax.security.auth.callback.CallbackHandler;import javax.security.auth.callback.UnsupportedCallbackException;import org.apache.ws.security.WSPasswordCallback;public class WsAuthHandler  implements CallbackHandler{	public void handle(Callback[] callbacks) throws IOException, UnsupportedCallbackException {		WSPasswordCallback pc = (WSPasswordCallback) callbacks[0];        if (pc.getIdentifer().equals("ws-client")){            if (!pc.getPassword().equals("admin")) {                throw new SecurityException("wrong password");           }        }else{        	throw new SecurityException("wrong username");        }	}}

3.客戶(hù)端修改spring 配置文件 wsclient-context.xml 如下:

<?xml version="1.0" encoding="UTF-8"?><beans xmlns="http://www.springframework.org/schema/beans"	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"	xmlns:jaxws="http://cxf.apache.org/jaxws"	xsi:schemaLocation="http://cxf.apache.org/jaxws http://cxf.apache.org/schemas/jaxws.xsd http://www.springframework.org/schema/beans  http://www.springframework.org/schema/beans/spring-beans.xsd"	default-autowire="byName" default-lazy-init="true">	<!-- ws clinet -->	<bean id="webServiceSampleClient" class="cn.org.coral.biz.examples.webservice.WebServiceSample"		factory-bean="webServiceSampleClientFactory" factory-method="create" />	<bean id="webServiceSampleClientFactory"		class="org.apache.cxf.jaxws.JaxWsProxyFactoryBean">		<property name="serviceClass"			value="cn.org.coral.biz.examples.webservice.WebServiceSample" />		<property name="address"			value="http://88.148.29.54:8080/aio/services/WebServiceSample" />		<property name="outInterceptors">			<list>				<bean					class="org.apache.cxf.binding.soap.saaj.SAAJOutInterceptor" />				<ref bean="wss4jOutConfiguration" />			</list>		</property>	</bean>	<bean id="wss4jOutConfiguration"		class="org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor">		<property name="properties">			<map>				<entry key="action" value="UsernameToken" />				<entry key="user" value="ws-client" />				<entry key="passwordType" value="PasswordText" />				<entry>					<key>						<value>passwordCallbackRef</value>					</key>					<ref bean="passwordCallback" />				</entry>			</map>		</property>	</bean>	<bean id="passwordCallback"		class="cn.org.coral.biz.examples.webservice.handler.WsClinetAuthHandler">	</bean></beans>

4.客戶(hù)端添加passwordCallback類(lèi),通過(guò)該類(lèi)設置訪(fǎng)問(wèn)口令

package cn.org.coral.biz.examples.webservice.handler;import java.io.IOException;import javax.security.auth.callback.Callback;import javax.security.auth.callback.CallbackHandler;import javax.security.auth.callback.UnsupportedCallbackException;import org.apache.ws.security.WSPasswordCallback;public class WsClinetAuthHandler  implements CallbackHandler{    public void handle(Callback[] callbacks) throws IOException,                     UnsupportedCallbackException {             for (int i = 0; i < callbacks.length; i++) {                     WSPasswordCallback pc = (WSPasswordCallback) callbacks[0];                     int usage = pc.getUsage();                     System.out.println("identifier: " + pc.getIdentifer());                     System.out.println("usage: " + pc.getUsage());                     if (usage == WSPasswordCallback.USERNAME_TOKEN) {                             // username token pwd...                             pc.setPassword("admin");                     } else if (usage == WSPasswordCallback.SIGNATURE) {                             // set the password for client's keystore.keyPassword                             pc.setPassword("keyPassword");                     }             }     } }

5.junit單元測試程序: