Re: [xmlblaster] SSL Access to XMLBlaster

[Michele Laghi <laghi at swissinfo.org>]

Hi David,
if what you want is to focus on the SOCKET protocol, then I would do the 
following:
take a copy of the socket protocol and modify it for
encryption/decryption. There are many ways/places where to do it. 
Personally I would to it in the org.xmlBlaster.protocol.socket.Parser 
class (places are already marked for a future compression).

If you don't have control on the firewall of the clientside (for example 
if the only way out is a proxy), then I would use https: a modification 
of the current http protocol would be necessary to allow proxies (I 
understand we could use apache's HttpClient classes which support proxies).

Saluti
Michele



David R Robison wrote:
> We are developing an application built on XMLBlaster where we want all 
> communications between the client and the blaster to be encrypted. We 
> would like to use some form of SSL with a service side certificate 
> similar to web sites supporting https. I noticed in the documentation 
> that ssh could be used for SSL tunneling, but we would like a solution 
> that does not require the client to perform an extra step (e.g. setting 
> up the tunnel) when connecting to the blaster. Because the blaster is 
> behind a firewall, we have been shying away from the CORBA protocol and 
> have been considering the SOCKET and XMLRPC protocols. Can anyone give 
> me some direction on how to proceed? Any tips on how to get this working?
>
> Any help would be appreciated, Thanks
> David Robison


--
Michele Laghi
mailto:laghi at swissinfo.org
tel. +46 8 7492952 / mob. +46 70 4103964
http://eclettic.tripod.com
http://www.xmlBlaster.org