Release 10.1A: OpenEdge Application Server:
Administration

Controlling access to Web services, WSDL, and WSA administration using one JSE security-constraint

The WSA provides three different JSE security-constraints (residing in the WSA’s web.xml file) to control access to:

Controlling access to all three with a single constraint is not supported.

To control access, in the WSA instance’s web.xml file, uncomment or create a security-constraint for accessing each function in your desired combination, as shown in Table 7–3.

Table 7–3: Controlling Web service, WSDL, and administration access using JSE security constraints
For accessing ...
The security-constraint might look like this ...
Web services 
<security-constraint> 
  <web-resource-collection> 
    <url-pattern>/wsa1/</url-pattern> 
  </web-resource-collection> 
</security-constraint>
WSDL 
<security-constraint> 
  <web-resource-collection> 
    <url-pattern>/wsa1/wsdl/*</url-pattern> 
  </web-resource-collection> 
</security-constraint>
WSA administration 
<security-constraint> 
  <web-resource-collection> 
    <url-pattern>/wsa1/admin/*</url-pattern/*> 
  </web-resource-collection> 
</security-constraint>

Copyright © 2005 Progress Software Corporation
 www.progress.com
Voice: (781) 280-4000
Fax: (781) 280-4095