[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [xmlblaster] SSL Access to XMLBlaster

To: xmlblaster at server.xmlBlaster.org
Subject: Re: [xmlblaster] SSL Access to XMLBlaster
From: Marcel Ruff <mr at marcelruff.info>
Date: Wed, 28 Jul 2004 19:39:02 +0200
In-reply-to: <41069F45.60101 at openroadsconsulting.com>
References: <002101c41fdb$ba767200$5ded1d53 at ja1> <40799D30.3000408 at marcelruff.info> <41069F45.60101 at openroadsconsulting.com>
Reply-to: xmlblaster at server.xmlBlaster.org
Sender: owner-xmlblaster at server.xmlBlaster.org
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7a) Gecko/20040218

David R Robison wrote:

We are developing an application built on XMLBlaster where we want all communications between the client and the blaster to be encrypted. We would like to use some form of SSL with a service side certificate similar to web sites supporting https. I noticed in the documentation that ssh could be used for SSL tunneling, but we would like a solution that does not require the client to perform an extra step (e.g. setting up the tunnel) when connecting to the blaster. Because the blaster is behind a firewall, we have been shying away from the CORBA protocol and have been considering the SOCKET and XMLRPC protocols. Can anyone give me some direction on how to proceed? Any tips on how to get this working?
Any help would be appreciated, Thanks
David Robison

Hi David,

if you need SSL and you have firewall or even proxies inbetween
a https based approach (as Michele mentioned) is the safest
(but not the higest performing) way to go.

I could imagine a xmlBlaster http protocol plugin using Apaches http client
and have a hidden low level polling for callbacks.

Another solution for callbacks is a persistent http(s) connection
and pushing the callbacks back to the client. See our
browser based persistent http approach which does this already and
our applet approach as well:
  http://www.xmlblaster.org/xmlBlaster/doc/requirements/client.java.applet.html
  http://www.xmlblaster.org/xmlBlaster/doc/requirements/client.j2me.html
  http://www.xmlblaster.org/xmlBlaster/doc/requirements/client.browser.html
This is a bit critical as proxies can shutdown the http connection if they feel
to do so.

regards

Marcel


--
http://www.xmlBlaster.org

References:
- [xmlblaster] message ordering
  - From: "wojtek" <kacz0r at poczta.onet.pl>
- Re: [xmlblaster] message ordering
  - From: Marcel Ruff <mr at marcelruff.info>
- [xmlblaster] SSL Access to XMLBlaster
  - From: David R Robison <drrobison at openroadsconsulting.com>

Prev by Date: Re: [xmlblaster] Static library
Next by Date: Re: [xmlblaster] modify in ConnectionsHandler.cpp
Previous by thread: Re: [xmlblaster] SSL Access to XMLBlaster
Next by thread: [xmlblaster] administrative commands
Index(es):
- Date
- Thread