[prev in list] [next in list] [prev in thread] [next in thread]
List: wsf-javascript-user
Subject: Re: [User] Suggestion about WSO2ESB
From: Maeglin Vardamir <belcon () gmail ! com>
Date: 2012-09-08 2:15:01
Message-ID: CACVTwgBeKQRZgjtnNkaUZxXAVGfjW1WFpcZxuEDp5G_azcHQMA () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
Hi Paul,
Here is my case.
Client-------->Reverse Proxy-------->WSO2ESB proxy service------->Backend
webservices
https https
https
I want my proxy service to decide whether let the request to access backed
web service according to certificate of the clients.
For now, I would put certificate in the HTTP Head when the request passes
the Reverse Proxy. Thus, my proxy service can make decision according to
the HTTP head variable.
Is it possible for WSO2? I had played with WSO2 AM but found that I need to
create a token. I didn't want that.
Thanks a lot.
Regards,
Bin
On Fri, Sep 7, 2012 at 6:03 AM, Paul Fremantle <paul@wso2.com> wrote:
> Bin
>
> I wasn't clear what you are trying to solve. The API Manager is designed
> to allow applications to subscribe to services but we use OAuth2 Bearer
> tokens instead of client certs. So it doesn't solve the exact problem you
> asked.
>
> Paul
>
>
> On 6 September 2012 19:51, Maeglin Vardamir <belcon@gmail.com> wrote:
>
>> Hi Paul,
>>
>> I just went through quick Getting Started Guide, but had no idea how to
>> replace API key with Common Name of a certificate. And there is no way to
>> subscribe a Common Name with an Application. Any suggestion for that?
>>
>> Thanks,
>> Bin
>>
>>
>> On Thu, Sep 6, 2012 at 5:56 PM, Paul Fremantle <paul@wso2.com> wrote:
>>
>>> Maeglin
>>>
>>> The ESB is a great product and very flexible. What the API Manager does
>>> is take a few capabilities of the ESB (routing, validation, throttling, SLA
>>> management), together with other components from WSO2 Carbon (OAuth
>>> handling, Registry/Repository, BAM) and a new model around an API store,
>>> and put together into a consistent product just for managing API access.
>>> Take a look. Of course many customers use both - the API Manager to handle
>>> the external facing aspects, and the ESB internally to do mediation,
>>> transformation and integration.
>>>
>>> Paul
>>>
>>>
>>> On 6 September 2012 07:39, Maeglin Vardamir <belcon@gmail.com> wrote:
>>>
>>>> Hi Paul,
>>>>
>>>> Thanks for your quick response. I would check that and response to this
>>>> mail if I found anything.
>>>> Since I am totally new to WSO2 even SOA, I would make many mistakes. It
>>>> is also possible that I picked ESB by mistake.
>>>>
>>>> Regards,
>>>> Bin
>>>>
>>>>
>>>> On Thu, Sep 6, 2012 at 2:27 PM, Paul Fremantle <paul@wso2.com> wrote:
>>>>
>>>>> Maeglin
>>>>>
>>>>> The more you describe your scenario, the more I wonder if our API
>>>>> Manager wouldn't be more appropriate:
>>>>> http://wso2.com/products/api-manager/
>>>>>
>>>>> We don't use client certs in that case, but OAuth2 tokens.
>>>>>
>>>>> Take a look.
>>>>>
>>>>> To solve what you've asked you can simply to a dblookup call against
>>>>> the MySQL and then filter/drop based on the results.
>>>>>
>>>>> Paul
>>>>>
>>>>>
>>>>> On 6 September 2012 07:24, Maeglin Vardamir <belcon@gmail.com> wrote:
>>>>>
>>>>>> Hi all,
>>>>>>
>>>>>> I also got another case. Now I have the Common Name from HTTP Header.
>>>>>> How can I set up rules to forward/reject the request to the backend web
>>>>>> service?
>>>>>> I means maybe I set the rules in the mysql like below
>>>>>>
>>>>>> CN Legal
>>>>>> Client1 False
>>>>>> Client2 True
>>>>>>
>>>>>> May I setup those rules via WSO2 ESB (Carbon Server?) and store them
>>>>>> into mysql? Or I need WSO2 IS? How to do that?
>>>>>>
>>>>>> Thanks,
>>>>>> Bin
>>>>>>
>>>>>>
>>>>>> On Thu, Sep 6, 2012 at 2:18 PM, Maeglin Vardamir <belcon@gmail.com>wrote:
>>>>>>
>>>>>>> Hi Paul,
>>>>>>>
>>>>>>> Thanks for you information. I also googled that page. It is helpful.
>>>>>>>
>>>>>>> Regards,
>>>>>>> Bin
>>>>>>>
>>>>>>>
>>>>>>> On Mon, Sep 3, 2012 at 7:47 PM, Paul Fremantle <paul@wso2.com>wrote:
>>>>>>>
>>>>>>>> Bin
>>>>>>>>
>>>>>>>> In that case its really easy.
>>>>>>>>
>>>>>>>> This blog shows how to read those headers in the ESB and then you
>>>>>>>> can simply write a filter mediator or router to send the message to the
>>>>>>>> right place:
>>>>>>>>
>>>>>>>>
>>>>>>>> http://warunapw.blogspot.co.uk/2011/11/how-to-read-http-headers-through.html
>>>>>>>>
>>>>>>>> Paul
>>>>>>>>
>>>>>>>>
>>>>>>>> On 3 September 2012 08:27, Maeglin Vardamir <belcon@gmail.com>wrote:
>>>>>>>>
>>>>>>>>> Hi Paul,
>>>>>>>>>
>>>>>>>>> Yes. You are right. I did customize my reverse proxy to store CN
>>>>>>>>> in http header.
>>>>>>>>>
>>>>>>>>> Regards,
>>>>>>>>> Bin
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> On Mon, Sep 3, 2012 at 2:26 PM, Paul Fremantle <paul@wso2.com>wrote:
>>>>>>>>>
>>>>>>>>>> Hi
>>>>>>>>>>
>>>>>>>>>> Is the reverse proxy part of the WSO2 ESB config or a separate
>>>>>>>>>> server instance?
>>>>>>>>>>
>>>>>>>>>> I'm not sure this is possible to do if you have a reverse proxy
>>>>>>>>>> in the way, because the reverse proxy will terminate the SSL connection and
>>>>>>>>>> the SSL connection coming into the WSO2 ESB will just be the reverse
>>>>>>>>>> proxies connection. If the client connects directly to the WSO2 ESB its
>>>>>>>>>> possible to do what you want. If you must have a reverse proxy then you
>>>>>>>>>> need a way of getting the CN from the reverse proxy to the WSO2 ESB (e.g.
>>>>>>>>>> you could add it into an HTTP header). But this only works if you can
>>>>>>>>>> customize the reverse proxy.
>>>>>>>>>>
>>>>>>>>>> Paul
>>>>>>>>>>
>>>>>>>>>> On 3 September 2012 03:13, Maeglin Vardamir <belcon@gmail.com>wrote:
>>>>>>>>>>
>>>>>>>>>>> Hello there,
>>>>>>>>>>>
>>>>>>>>>>> Here is my case.
>>>>>>>>>>>
>>>>>>>>>>> Client-------->Reverse Proxy-------->WSO2ESB proxy
>>>>>>>>>>> service------->Backend webservices
>>>>>>>>>>> https https
>>>>>>>>>>> https
>>>>>>>>>>>
>>>>>>>>>>> I got several clients which connected the backend web service
>>>>>>>>>>> through https connection. I have a local CA service to deliver certificates
>>>>>>>>>>> to client, Reverse Proxy, Receiver and Sender of proxy service and backend
>>>>>>>>>>> apache.
>>>>>>>>>>> For now, I can get response from web service after making some
>>>>>>>>>>> changes to configuration files.
>>>>>>>>>>>
>>>>>>>>>>> But I want more features. I want to re-direct request to
>>>>>>>>>>> different endpoint according Common Name of the client's certificate.
>>>>>>>>>>>
>>>>>>>>>>> For example, I got one client. And I had two certificate for it
>>>>>>>>>>> to do testing. One common name is Client1, the other one is Client2. The
>>>>>>>>>>> client sent request to https://wso2esb_server:8243/services/echo.
>>>>>>>>>>> The WSO2ESB proxy service would re-direct request to
>>>>>>>>>>> https://backend1/services/echo if Common Name of the client's
>>>>>>>>>>> certificate is Client1. Otherwise, re-direct the request to
>>>>>>>>>>> https://backend2/services/echo.
>>>>>>>>>>>
>>>>>>>>>>> Is it doable? How to do that? Any suggestion would be welcomed.
>>>>>>>>>>>
>>>>>>>>>>> Regards,
>>>>>>>>>>> Bin
>>>>>>>>>>>
>>>>>>>>>>> _______________________________________________
>>>>>>>>>>> User mailing list
>>>>>>>>>>> User@wso2.org
>>>>>>>>>>> http://wso2.org/cgi-bin/mailman/listinfo/user
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> --
>>>>>>>>>> Paul Fremantle
>>>>>>>>>> CTO and Co-Founder, WSO2
>>>>>>>>>> OASIS WS-RX TC Co-chair, VP, Apache Synapse
>>>>>>>>>>
>>>>>>>>>> UK: +44 207 096 0336
>>>>>>>>>> US: +1 646 595 7614
>>>>>>>>>>
>>>>>>>>>> blog: http://pzf.fremantle.org
>>>>>>>>>> twitter.com/pzfreo
>>>>>>>>>> paul@wso2.com
>>>>>>>>>>
>>>>>>>>>> wso2.com Lean Enterprise Middleware
>>>>>>>>>>
>>>>>>>>>> Disclaimer: This communication may contain privileged or other
>>>>>>>>>> confidential information and is intended exclusively for the addressee/s.
>>>>>>>>>> If you are not the intended recipient/s, or believe that you may have
>>>>>>>>>> received this communication in error, please reply to the sender indicating
>>>>>>>>>> that fact and delete the copy you received and in addition, you should not
>>>>>>>>>> print, copy, retransmit, disseminate, or otherwise use the information
>>>>>>>>>> contained in this communication. Internet communications cannot be
>>>>>>>>>> guaranteed to be timely, secure, error or virus-free. The sender does not
>>>>>>>>>> accept liability for any errors or omissions.
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> --
>>>>>>>> Paul Fremantle
>>>>>>>> CTO and Co-Founder, WSO2
>>>>>>>> OASIS WS-RX TC Co-chair, VP, Apache Synapse
>>>>>>>>
>>>>>>>> UK: +44 207 096 0336
>>>>>>>> US: +1 646 595 7614
>>>>>>>>
>>>>>>>> blog: http://pzf.fremantle.org
>>>>>>>> twitter.com/pzfreo
>>>>>>>> paul@wso2.com
>>>>>>>>
>>>>>>>> wso2.com Lean Enterprise Middleware
>>>>>>>>
>>>>>>>> Disclaimer: This communication may contain privileged or other
>>>>>>>> confidential information and is intended exclusively for the addressee/s.
>>>>>>>> If you are not the intended recipient/s, or believe that you may have
>>>>>>>> received this communication in error, please reply to the sender indicating
>>>>>>>> that fact and delete the copy you received and in addition, you should not
>>>>>>>> print, copy, retransmit, disseminate, or otherwise use the information
>>>>>>>> contained in this communication. Internet communications cannot be
>>>>>>>> guaranteed to be timely, secure, error or virus-free. The sender does not
>>>>>>>> accept liability for any errors or omissions.
>>>>>>>>
>>>>>>>>
>>>>>>>
>>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> Paul Fremantle
>>>>> CTO and Co-Founder, WSO2
>>>>> OASIS WS-RX TC Co-chair, VP, Apache Synapse
>>>>>
>>>>> UK: +44 207 096 0336
>>>>> US: +1 646 595 7614
>>>>>
>>>>> blog: http://pzf.fremantle.org
>>>>> twitter.com/pzfreo
>>>>> paul@wso2.com
>>>>>
>>>>> wso2.com Lean Enterprise Middleware
>>>>>
>>>>> Disclaimer: This communication may contain privileged or other
>>>>> confidential information and is intended exclusively for the addressee/s.
>>>>> If you are not the intended recipient/s, or believe that you may have
>>>>> received this communication in error, please reply to the sender indicating
>>>>> that fact and delete the copy you received and in addition, you should not
>>>>> print, copy, retransmit, disseminate, or otherwise use the information
>>>>> contained in this communication. Internet communications cannot be
>>>>> guaranteed to be timely, secure, error or virus-free. The sender does not
>>>>> accept liability for any errors or omissions.
>>>>>
>>>>>
>>>>
>>>
>>>
>>> --
>>> Paul Fremantle
>>> CTO and Co-Founder, WSO2
>>> OASIS WS-RX TC Co-chair, VP, Apache Synapse
>>>
>>> UK: +44 207 096 0336
>>> US: +1 646 595 7614
>>>
>>> blog: http://pzf.fremantle.org
>>> twitter.com/pzfreo
>>> paul@wso2.com
>>>
>>> wso2.com Lean Enterprise Middleware
>>>
>>> Disclaimer: This communication may contain privileged or other
>>> confidential information and is intended exclusively for the addressee/s.
>>> If you are not the intended recipient/s, or believe that you may have
>>> received this communication in error, please reply to the sender indicating
>>> that fact and delete the copy you received and in addition, you should not
>>> print, copy, retransmit, disseminate, or otherwise use the information
>>> contained in this communication. Internet communications cannot be
>>> guaranteed to be timely, secure, error or virus-free. The sender does not
>>> accept liability for any errors or omissions.
>>>
>>>
>>
>
>
> --
> Paul Fremantle
> CTO and Co-Founder, WSO2
> OASIS WS-RX TC Co-chair, VP, Apache Synapse
>
> UK: +44 207 096 0336
> US: +1 646 595 7614
>
> blog: http://pzf.fremantle.org
> twitter.com/pzfreo
> paul@wso2.com
>
> wso2.com Lean Enterprise Middleware
>
> Disclaimer: This communication may contain privileged or other
> confidential information and is intended exclusively for the addressee/s.
> If you are not the intended recipient/s, or believe that you may have
> received this communication in error, please reply to the sender indicating
> that fact and delete the copy you received and in addition, you should not
> print, copy, retransmit, disseminate, or otherwise use the information
> contained in this communication. Internet communications cannot be
> guaranteed to be timely, secure, error or virus-free. The sender does not
> accept liability for any errors or omissions.
>
>
[Attachment #5 (text/html)]
Hi Paul,<br><br><div>Here is my \
case.</div><div><br></div><div>Client-------->Reverse Proxy-------->WSO2ESB \
proxy service------->Backend webservices</div><div> https \
https https</div>
<div><br><br>I want my proxy service to decide whether let the request to access \
backed web service according to certificate of the clients.<br>For now, I would put \
certificate in the HTTP Head when the request passes the Reverse Proxy. Thus, my \
proxy service can make decision according to the HTTP head variable.<br> <br>Is it \
possible for WSO2? I had played with WSO2 AM but found that I need to create a token. \
I didn't want that.<br><br>Thanks a lot.<br><br>Regards,<br> \
Bin<br></div><br><br><div class="gmail_quote">On Fri, Sep 7, 2012 at 6:03 AM, Paul \
Fremantle <span dir="ltr"><<a href="mailto:paul@wso2.com" \
target="_blank">paul@wso2.com</a>></span> wrote:<br> <blockquote \
class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex">Bin<div><br></div><div>I wasn't clear what you are trying \
to solve. The API Manager is designed to allow applications to subscribe to services \
but we use OAuth2 Bearer tokens instead of client certs. So it doesn't solve the \
exact problem you asked.</div> <span class="HOEnZb"><font color="#888888">
</font></span><div><span class="HOEnZb"><font \
color="#888888"><br>Paul</font></span><div><div class="h5"><br><br><div \
class="gmail_quote">On 6 September 2012 19:51, Maeglin Vardamir <span \
dir="ltr"><<a href="mailto:belcon@gmail.com" \
target="_blank">belcon@gmail.com</a>></span> wrote:<br> <blockquote \
class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex">
Hi Paul,<div><br></div><div>I just went through quick Getting Started Guide, but had \
no idea how to replace API key with Common Name of a certificate. And there is no way \
to subscribe a Common Name with an Application. Any suggestion for that?</div>
<div><br></div><div>Thanks,</div><div> Bin<div><div><br><br><div \
class="gmail_quote">On Thu, Sep 6, 2012 at 5:56 PM, Paul Fremantle <span \
dir="ltr"><<a href="mailto:paul@wso2.com" \
target="_blank">paul@wso2.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex">Maeglin<div><br></div><div>The ESB is a great product and \
very flexible. What the API Manager does is take a few capabilities of the ESB \
(routing, validation, throttling, SLA management), together with other components \
from WSO2 Carbon (OAuth handling, Registry/Repository, BAM) and a new model around an \
API store, and put together into a consistent product just for managing API access. \
Take a look. Of course many customers use both - the API Manager to handle the \
external facing aspects, and the ESB internally to do mediation, transformation and \
integration.</div>
<span><font color="#888888">
</font></span><div><span><font \
color="#888888"><br>Paul</font></span><div><div><br><br><div class="gmail_quote">On 6 \
September 2012 07:39, Maeglin Vardamir <span dir="ltr"><<a \
href="mailto:belcon@gmail.com" target="_blank">belcon@gmail.com</a>></span> \
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex">
Hi Paul,<div><br></div><div>Thanks for your quick response. I would check that and \
response to this mail if I found anything.</div><div>Since I am totally new to WSO2 \
even SOA, I would make many mistakes. It is also possible that I picked ESB by \
mistake.</div>
<div><br></div><div>Regards,</div><div> Bin <div><div><br><br><div \
class="gmail_quote">On Thu, Sep 6, 2012 at 2:27 PM, Paul Fremantle <span \
dir="ltr"><<a href="mailto:paul@wso2.com" \
target="_blank">paul@wso2.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex">Maeglin<div><br></div><div>The more you describe your \
scenario, the more I wonder if our API Manager wouldn't be more appropriate: <a \
href="http://wso2.com/products/api-manager/" \
target="_blank">http://wso2.com/products/api-manager/</a></div>
<div><br></div><div>We don't use client certs in that case, but OAuth2 \
tokens.</div><div><br></div><div>Take a look. </div><div><br></div><div>To solve what \
you've asked you can simply to a dblookup call against the MySQL and then \
filter/drop based on the results.</div>
<span><font color="#888888">
</font></span><div><span><font \
color="#888888"><br>Paul</font></span><div><div><br><br><div class="gmail_quote">On 6 \
September 2012 07:24, Maeglin Vardamir <span dir="ltr"><<a \
href="mailto:belcon@gmail.com" target="_blank">belcon@gmail.com</a>></span> \
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex">
Hi all,<div><br></div><div>I also got another case. Now I have the Common Name from \
HTTP Header. How can I set up rules to forward/reject the request to the backend web \
service?</div><div>I means maybe I set the rules in the mysql like below</div>
<div><br></div><div>CN Legal </div><div>Client1 \
False</div><div>Client2 True</div><div><br></div><div>May I setup those \
rules via WSO2 ESB (Carbon Server?) and store them into mysql? Or I need WSO2 IS? How \
to do that?</div>
<div><br></div><div>Thanks,</div><div> Bin<div><div><br><br><div \
class="gmail_quote">On Thu, Sep 6, 2012 at 2:18 PM, Maeglin Vardamir <span \
dir="ltr"><<a href="mailto:belcon@gmail.com" \
target="_blank">belcon@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex">Hi Paul,<div><br></div><div>Thanks for you information. I \
also googled that page. It is helpful.</div><div><br></div><div>
Regards,</div><div> Bin<div><div><br><br><div class="gmail_quote">On Mon, Sep 3, \
2012 at 7:47 PM, Paul Fremantle <span dir="ltr"><<a href="mailto:paul@wso2.com" \
target="_blank">paul@wso2.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex"><div>Bin</div><div><br></div>In that case its really easy. \
<div><br></div><div>This blog shows how to read those headers in the ESB and then you \
can simply write a filter mediator or router to send the message to the right \
place:</div>
<div><br></div><div><a \
href="http://warunapw.blogspot.co.uk/2011/11/how-to-read-http-headers-through.html" \
target="_blank">http://warunapw.blogspot.co.uk/2011/11/how-to-read-http-headers-through.html</a></div><span><font \
color="#888888"><div>
<br></div><div>Paul<br>
</div></font></span><div><div><div><br></div><br><div class="gmail_quote">On 3 \
September 2012 08:27, Maeglin Vardamir <span dir="ltr"><<a \
href="mailto:belcon@gmail.com" target="_blank">belcon@gmail.com</a>></span> \
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex">
Hi Paul,<div><br></div><div>Yes. You are right. I did customize my reverse proxy to \
store CN in http header.</div><div><br></div><div>Regards,</div><div> \
Bin<div><div><br><br><div class="gmail_quote">On Mon, Sep 3, 2012 at 2:26 PM, Paul \
Fremantle <span dir="ltr"><<a href="mailto:paul@wso2.com" \
target="_blank">paul@wso2.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex">Hi<div><br></div><div>Is the reverse proxy part of the WSO2 \
ESB config or a separate server instance?</div><div><br></div>
<div>I'm not sure this is possible to do if you have a reverse proxy in the way, \
because the reverse proxy will terminate the SSL connection and the SSL connection \
coming into the WSO2 ESB will just be the reverse proxies connection. If the client \
connects directly to the WSO2 ESB its possible to do what you want. If you must have \
a reverse proxy then you need a way of getting the CN from the reverse proxy to the \
WSO2 ESB (e.g. you could add it into an HTTP header). But this only works if you can \
customize the reverse proxy.</div>
<div><br></div><div>Paul<br><br><div class="gmail_quote"><div><div>On 3 September \
2012 03:13, Maeglin Vardamir <span dir="ltr"><<a href="mailto:belcon@gmail.com" \
target="_blank">belcon@gmail.com</a>></span> wrote:<br>
</div></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px \
#ccc solid;padding-left:1ex"><div><div>
Hello there,<div><br></div><div>Here is my \
case.</div><div><br></div><div>Client-------->Reverse Proxy-------->WSO2ESB \
proxy service------->Backend webservices</div><div> https \
https https</div>
<div><br></div><div>I got several clients which connected the backend web service \
through https connection. I have a local CA service to deliver certificates to \
client, Reverse Proxy, Receiver and Sender of proxy service and backend apache. \
</div>
<div>For now, I can get response from web service after making some changes to \
configuration files.</div><div><br></div><div>But I want more features. I want to \
re-direct request to different endpoint according Common Name of the client's \
certificate.</div>
<div><br></div><div>For example, I got one client. And I had two certificate for it \
to do testing. One common name is Client1, the other one is Client2. The client sent \
request to <a href="https://wso2esb_server:8243/services/echo" \
target="_blank">https://wso2esb_server:8243/services/echo</a>. The WSO2ESB proxy \
service would re-direct request to <a href="https://backend1/services/echo" \
target="_blank">https://backend1/services/echo</a> if Common Name of the client's \
certificate is Client1. Otherwise, re-direct the request to <a \
href="https://backend2/services/echo" \
target="_blank">https://backend2/services/echo</a>.</div>
<div><br></div><div>Is it doable? How to do that? Any suggestion would be \
welcomed.</div><div><br></div><div>Regards,</div><div> Bin</div> \
<br></div></div><div>_______________________________________________<br> User mailing \
list<br> <a href="mailto:User@wso2.org" target="_blank">User@wso2.org</a><br>
<a href="http://wso2.org/cgi-bin/mailman/listinfo/user" \
target="_blank">http://wso2.org/cgi-bin/mailman/listinfo/user</a><br> \
<br></div></blockquote></div><br><br clear="all"><div><br></div>-- <br>Paul \
Fremantle<br>CTO and Co-Founder, WSO2<br>OASIS WS-RX TC Co-chair, VP, Apache \
Synapse<br><br>UK: <a href="tel:%2B44%20207%20096%200336" value="+442070960336" \
target="_blank">+44 207 096 0336</a><br>
US: <a href="tel:%2B1%20646%20595%207614" value="+16465957614" target="_blank">+1 646 \
595 7614</a><br><br>blog: <a href="http://pzf.fremantle.org" \
target="_blank">http://pzf.fremantle.org</a><br>
<a href="http://twitter.com/pzfreo" target="_blank">twitter.com/pzfreo</a><br><a \
href="mailto:paul@wso2.com" target="_blank">paul@wso2.com</a><div><br></div><div><a \
href="http://wso2.com" target="_blank">wso2.com</a> Lean Enterprise Middleware<br>
<br>Disclaimer: This communication may contain privileged or other confidential \
information and is intended exclusively for the addressee/s. If you are not the \
intended recipient/s, or believe that you may have received this communication in \
error, please reply to the sender indicating that fact and delete the copy you \
received and in addition, you should not print, copy, retransmit, disseminate, or \
otherwise use the information contained in this communication. Internet \
communications cannot be guaranteed to be timely, secure, error or virus-free. The \
sender does not accept liability for any errors or omissions. </div>
<br>
</div>
</blockquote></div><br></div></div></div>
</blockquote></div><br><br clear="all"><div><br></div>-- <br>Paul Fremantle<br>CTO \
and Co-Founder, WSO2<br>OASIS WS-RX TC Co-chair, VP, Apache Synapse<br><br>UK: <a \
href="tel:%2B44%20207%20096%200336" value="+442070960336" target="_blank">+44 207 096 \
0336</a><br>
US: <a href="tel:%2B1%20646%20595%207614" value="+16465957614" target="_blank">+1 646 \
595 7614</a><br><br>blog: <a href="http://pzf.fremantle.org" \
target="_blank">http://pzf.fremantle.org</a><br>
<a href="http://twitter.com/pzfreo" target="_blank">twitter.com/pzfreo</a><br><a \
href="mailto:paul@wso2.com" target="_blank">paul@wso2.com</a><div><br></div><div><a \
href="http://wso2.com" target="_blank">wso2.com</a> Lean Enterprise Middleware<br>
<br>Disclaimer: This communication may contain privileged or other confidential \
information and is intended exclusively for the addressee/s. If you are not the \
intended recipient/s, or believe that you may have received this communication in \
error, please reply to the sender indicating that fact and delete the copy you \
received and in addition, you should not print, copy, retransmit, disseminate, or \
otherwise use the information contained in this communication. Internet \
communications cannot be guaranteed to be timely, secure, error or virus-free. The \
sender does not accept liability for any errors or omissions. </div>
<br>
</div></div></blockquote></div><br></div></div></div>
</blockquote></div><br></div></div></div>
</blockquote></div><br><br clear="all"><div><br></div>-- <br>Paul Fremantle<br>CTO \
and Co-Founder, WSO2<br>OASIS WS-RX TC Co-chair, VP, Apache Synapse<br><br>UK: <a \
href="tel:%2B44%20207%20096%200336" value="+442070960336" target="_blank">+44 207 096 \
0336</a><br>
US: <a href="tel:%2B1%20646%20595%207614" value="+16465957614" target="_blank">+1 646 \
595 7614</a><br><br>blog: <a href="http://pzf.fremantle.org" \
target="_blank">http://pzf.fremantle.org</a><br>
<a href="http://twitter.com/pzfreo" target="_blank">twitter.com/pzfreo</a><br><a \
href="mailto:paul@wso2.com" target="_blank">paul@wso2.com</a><div><br></div><div><a \
href="http://wso2.com" target="_blank">wso2.com</a> Lean Enterprise Middleware<br>
<br>Disclaimer: This communication may contain privileged or other confidential \
information and is intended exclusively for the addressee/s. If you are not the \
intended recipient/s, or believe that you may have received this communication in \
error, please reply to the sender indicating that fact and delete the copy you \
received and in addition, you should not print, copy, retransmit, disseminate, or \
otherwise use the information contained in this communication. Internet \
communications cannot be guaranteed to be timely, secure, error or virus-free. The \
sender does not accept liability for any errors or omissions. </div>
<br>
</div></div></div>
</blockquote></div><br></div></div></div>
</blockquote></div><br><br clear="all"><div><br></div>-- <br>Paul Fremantle<br>CTO \
and Co-Founder, WSO2<br>OASIS WS-RX TC Co-chair, VP, Apache Synapse<br><br>UK: <a \
href="tel:%2B44%20207%20096%200336" value="+442070960336" target="_blank">+44 207 096 \
0336</a><br>
US: <a href="tel:%2B1%20646%20595%207614" value="+16465957614" target="_blank">+1 646 \
595 7614</a><br><br>blog: <a href="http://pzf.fremantle.org" \
target="_blank">http://pzf.fremantle.org</a><br>
<a href="http://twitter.com/pzfreo" target="_blank">twitter.com/pzfreo</a><br><a \
href="mailto:paul@wso2.com" target="_blank">paul@wso2.com</a><div><br></div><div><a \
href="http://wso2.com" target="_blank">wso2.com</a> Lean Enterprise Middleware<br>
<br>Disclaimer: This communication may contain privileged or other confidential \
information and is intended exclusively for the addressee/s. If you are not the \
intended recipient/s, or believe that you may have received this communication in \
error, please reply to the sender indicating that fact and delete the copy you \
received and in addition, you should not print, copy, retransmit, disseminate, or \
otherwise use the information contained in this communication. Internet \
communications cannot be guaranteed to be timely, secure, error or virus-free. The \
sender does not accept liability for any errors or omissions. </div>
<br>
</div></div></div>
</blockquote></div><br></div></div></div>
</blockquote></div><br><br clear="all"><div><br></div>-- <br>Paul Fremantle<br>CTO \
and Co-Founder, WSO2<br>OASIS WS-RX TC Co-chair, VP, Apache Synapse<br><br>UK: <a \
href="tel:%2B44%20207%20096%200336" value="+442070960336" target="_blank">+44 207 096 \
0336</a><br>
US: <a href="tel:%2B1%20646%20595%207614" value="+16465957614" target="_blank">+1 646 \
595 7614</a><br><br>blog: <a href="http://pzf.fremantle.org" \
target="_blank">http://pzf.fremantle.org</a><br>
<a href="http://twitter.com/pzfreo" target="_blank">twitter.com/pzfreo</a><br><a \
href="mailto:paul@wso2.com" target="_blank">paul@wso2.com</a><div><br></div><div><a \
href="http://wso2.com" target="_blank">wso2.com</a> Lean Enterprise Middleware<br>
<br>Disclaimer: This communication may contain privileged or other confidential \
information and is intended exclusively for the addressee/s. If you are not the \
intended recipient/s, or believe that you may have received this communication in \
error, please reply to the sender indicating that fact and delete the copy you \
received and in addition, you should not print, copy, retransmit, disseminate, or \
otherwise use the information contained in this communication. Internet \
communications cannot be guaranteed to be timely, secure, error or virus-free. The \
sender does not accept liability for any errors or omissions. </div>
<br>
</div></div></div>
</blockquote></div><br>
_______________________________________________
User mailing list
User@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/user
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic