There seems to be a lot of misunderstanding about Web Service security. Using password authentication doesn’t prevent unauthorized users to access your data, while SSL / HTTPS doesn’t give you any information about who is trying to access your services.
Feeling secure with Web Services – Part 1 – The UsernameToken
Recently, I’ve been helping a customer with some Web Service issues. One of the problems was their limited knowledge of security in that area. He asked me to explain, in Jip and Janneke language [1] how SSL works and what
Feeling secure with Web Services – Introduction
Recently, I’ve been helping a customer with some Web Service issues. One of the problems was their limited knowledge of security in that area. He asked me to explain, in Jip and Janneke language [1] how SSL works and what
Spring application context loading tricks
The Spring classpath:-notation As most of you probably know, the Spring Framework can load all sorts of resources into its application context from all sorts of sources. Especially it can do this from the classpath and the people over at
Why it’s difficult to be a software engineer at parties….
Picture yourself at a social gettogether of some general nature (i.e. not after work drinks with colleagues). For instance a friend’s birthday party. Now picture yourself in a conversation with some people you don’t know (other friends of your friend,
Mac osx killer apps (part 2)
Some months ago I wrote an article with my favorite mac osx tools. I am using my mac more and more, with my current employer I can use it for almost everything I want. I do not have ms office,
Integrating flex 3 with spring security (formerly known as Acegi)
This blog item show a way of doing security, after some additional experience I consider this method as being non optimal. The server side does not change a lot (spring security configuration), but the client does. I explain my current
Java 6 for Mac OSX leopard
A month a so a go I wrote this item about java 6 on the mac. It was a beta release an I had some issues with it, but it was workable. Now the real deal is ready to be