handler也有很多的作用啊,比如硬件的初始化;
这里我们来做一个认证的服务的handler
这里我必须要声明的是,我们在写完了Handler的时候,我们必须要在我们的server-config.wsdd中配置我们的handler啊
public class AuthenticationHandler extends BasicHandler {
Log log = LogFactory.getLog(AuthenticationHandler.class);
//定义认证的参数信息
String securityProvider = "securityProvider";
String unauthenticated = "unauthenticated";
String authenticatedUser = "authenticatedUser";
String canAuth = "canAuth";
public void invoke(MessageContext msgContext) throws AxisFault {
log.info("AuthenticationHandler : invoke : start");
SecurityProvider provider = msgContext.getProperty(securityProvider); //获取当前的安全服务
//判断当前的安全机制的状态
if(provider == null ) {
//创建一个安全级别
provider = new SimpleSecurityProvider();
//将创建的安全级别设置到当前的ws的服务中
msgContext.setProperty(securityProvider, provider);
}
if(provider != null ) {
//获取当前ws服务的认证信息
String userid = msgContext.getUsername();
String pwd = msgContext.getPassword();
log.info(userid+" "+pwd);
//对访问的用户进行认证
AuthenticatedUser authUser = provider.authenticate(msgContext);//获取预设的用户信息
if(authUser == null ) {
throw new AxisFault(unauthenticated, "error", null, null);
}
//用户通过认证,将用户设置为认证用户
msgContext.setProperty(authenticatedUser, authUser);
}
}
配置允许访问的用户列表,在对应的服务对象上配置相应的参数
<parameter name="allowedRoles" value="user1,anni"/>
并配置handler
客户端编写测试代码
public static void main(String[] args) {
Log log = LogFactory.getLog(AuthenClient.class);
String url = "http://localhost:8080/axis/services/HandleredService";
Service service = new Service();
Call call = (Call) service.createCall();
call.setTargetEndpointAddress(new URL(url));
call.setOperationName(new QName("HandleredService", "publicMethod"));
//由于当前的ws方法,添加认证的信息,设置访问的权限
call.getMessageContext().setUsername("user1");
call.getMessageContext().setPassword("pass1");
String res = (String) call.invoke(new Object[]{"Authen Message"});
log.info(res);
}