[Architecture] Authentication mechanism use for SQS services

Srinath Perera srinath at wso2.com
Tue Feb 15 22:50:18 EST 2011 

Hi Amila,

yes, but we can put out initial versions  without WS-Security I guess.

--Srinath

On Tue, Feb 15, 2011 at 1:37 PM, Amila Suriarachchi <amila at wso2.com> wrote:
>
>
> On Tue, Feb 15, 2011 at 11:46 AM, Danushka Menikkumbura <danushka at wso2.com>
> wrote:
>>
>> Should not be WS-Security optional here?.
>>
>> I think AWS-style auth over HTTPS would do. In fact that is the common
>> case I think.
>
> Well SQS is a web service. So the proper way of handling security with a web
> service is to use WS-Security.
>
> I think non ws-security authentication has introduced to support clients
> which can not support ws-security.
>
> thanks,
> Amila.
>>
>> Danushka
>>
>> On Tue, Feb 15, 2011 at 11:31 AM, Amila Suriarachchi <amila at wso2.com>
>> wrote:
>>>
>>> hi,
>>>
>>> The sqs specification describes two possible authentication mechanisms as
>>> follows.
>>>
>>> Amazon SQS accepts SOAP requests sent over an HTTPS connection only.You
>>> can authenticate the
>>> requests with WS-Security version 1.0 or without WS-Security. WS-Security
>>> is the more secure method.
>>> The main factor affecting whether you choose to use WS-Security is
>>> whether your current SOAP toolkit
>>> supports WS-Security
>>>
>>> I think this means it support two authentication mechanisms with with
>>> same service end point. (Which use two different SOAP headers)
>>> Can we do this with carbon?
>>>
>>> if not what is the authentication mechanism we going to use?
>>> As given in the spec WS-Security is the more preferred way and it may
>>> require a simple change.
>>>
>>> thanks,
>>> Amila.
>>>
>>> _______________________________________________
>>> Architecture mailing list
>>> Architecture at wso2.org
>>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
>>>
>>
>>
>> _______________________________________________
>> Architecture mailing list
>> Architecture at wso2.org
>> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
>>
>
>
> _______________________________________________
> Architecture mailing list
> Architecture at wso2.org
> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
>
>



-- 
============================
Srinath Perera, Ph.D.
  Senior Software Architect, WSO2 Inc.
  Visiting Lecturer, University of Moratuwa
  Member, Apache Software Foundation
  Research Scientist, Lanka Software Foundation
  Blog: http://srinathsview.blogspot.com/

More information about the Architecture mailing list