[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [xmlblaster] SSL Access to XMLBlaster

Hi David,
if what you want is to focus on the SOCKET protocol, then I would do the following:
take a copy of the socket protocol and modify it for
encryption/decryption. There are many ways/places where to do it. Personally I would to it in the org.xmlBlaster.protocol.socket.Parser class (places are already marked for a future compression).

If you don't have control on the firewall of the clientside (for example if the only way out is a proxy), then I would use https: a modification of the current http protocol would be necessary to allow proxies (I understand we could use apache's HttpClient classes which support proxies).


David R Robison wrote:
We are developing an application built on XMLBlaster where we want all communications between the client and the blaster to be encrypted. We would like to use some form of SSL with a service side certificate similar to web sites supporting https. I noticed in the documentation that ssh could be used for SSL tunneling, but we would like a solution that does not require the client to perform an extra step (e.g. setting up the tunnel) when connecting to the blaster. Because the blaster is behind a firewall, we have been shying away from the CORBA protocol and have been considering the SOCKET and XMLRPC protocols. Can anyone give me some direction on how to proceed? Any tips on how to get this working?

Any help would be appreciated, Thanks
David Robison

Michele Laghi
mailto:laghi at swissinfo.org
tel. +46 8 7492952 / mob. +46 70 4103964