[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [xmlblaster] SSL Access to XMLBlaster
David R Robison wrote:
We are developing an application built on XMLBlaster where we want all
communications between the client and the blaster to be encrypted. We
would like to use some form of SSL with a service side certificate
similar to web sites supporting https. I noticed in the documentation
that ssh could be used for SSL tunneling, but we would like a solution
that does not require the client to perform an extra step (e.g. setting
up the tunnel) when connecting to the blaster. Because the blaster is
behind a firewall, we have been shying away from the CORBA protocol and
have been considering the SOCKET and XMLRPC protocols. Can anyone give
me some direction on how to proceed? Any tips on how to get this working?
Any help would be appreciated, Thanks
David Robison
Hi David,
if you need SSL and you have firewall or even proxies inbetween
a https based approach (as Michele mentioned) is the safest
(but not the higest performing) way to go.
I could imagine a xmlBlaster http protocol plugin using Apaches http client
and have a hidden low level polling for callbacks.
Another solution for callbacks is a persistent http(s) connection
and pushing the callbacks back to the client. See our
browser based persistent http approach which does this already and
our applet approach as well:
http://www.xmlblaster.org/xmlBlaster/doc/requirements/client.java.applet.html
http://www.xmlblaster.org/xmlBlaster/doc/requirements/client.j2me.html
http://www.xmlblaster.org/xmlBlaster/doc/requirements/client.browser.html
This is a bit critical as proxies can shutdown the http connection if they feel
to do so.
regards
Marcel
--
http://www.xmlBlaster.org