plork123
asked on
java / web services
I need to write some server-side java files. The java will generate a successful token which can be stored in a db until a user logs out
Once the security java classes have been written I need to create a web service where 3rd parties can log in, this talks to my server-side java files generates the token and allows any 3rd party in to access information on our db.
The java and web service have to be secure, so i'm thinking of Apaxhe Axis, http, SSL, XML and creating a WSDL file.
Because I'm new to all this I really have no idea where to start
Has anyone written a logon web service and can give me some advice?
Am I right in writing the java files first to get the security under wraps and then write the web service to gain access to our db so 3rd parties can get their info. The data the 3rd party can have access to will come down in a XML formatted file (the WSDL file) for the 3rd party to do with what they please
Thanks in advance
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for the advice
Like yourself I'm not a fan of Wrox, but after laods of good reivews I ordered this book from Amazon, but unfortunately it's a 4 - 6 week wait :-(
I've not tried the tutorial, although I've tried others, so i'll give the sun one a go.
Have you done anything like this before?
Cheers
Yes, but only to a point. I had some slow time in October and one of the things I did to keep me amused was some Web Services. I only did the basic security version over http and all the rubbish bits (like UDDI) aside it was pretty simple.
4-6 weeks! Where are you based, Halley Research Station?!
4-6 weeks! Where are you based, Halley Research Station?!
ASKER
No, UK (but might as well be the research station). Should have got it from th US but it's too late now, might as well keep waiting
Would it be possible to post some stuff / email some samples of what you did ??????
Not sure I still have it but I'll hunt around. Since Wrox went bust it's been a bit of an issue getting their books...
is pretty good.
I'm not normally a fan of Wrox but this one's not bad and very applicable for you as it has a whole chapter on Securing Web Services (Chapter 9) which deals with what I've discusssed above and other things such as WS-Security, WS-Policy, WS-Authorization and the rest of the WS security standards (and yes, there are loads!).