Weblogic Web Services With Spring Framework

Matt Luce — Tue, 28 Feb 2006 03:17:49 +0000

Recently, I was trying to connect to a web service with the Spring Framework JaxRpcPortProxyFactoryBean. The web service and client code were generated with the weblogic servicegen and clientgen ant tasks respectively.

I found this example on the dev2dev site:
http://dev2dev.bea.com/pub/a/2005/09/spring_integration_weblogic_server.html?page=3

Unfortunately, it didn’t work for me. I spent almost an entire day trying to get it to work. So, in hopes of saving someone else some time, I’ve posted the correct way to make this work below. The example in the article is incorrect in one place. It uses the wsdlDocumentUrl attribute of the JaxRpcPortProxyFactoryBean. However, that attribute is a java.net.URL, not a String, so setting it with a string value will not work. The value I entered for the wsdDocumentlUrl had no effect. Instead, you need to set the wsdl URL on the Impl class generated by clientgen, by passing it into the constructor as seen in the second bean definition below.



   
            InvestorServicePort
    
    
            com.xxx.fmg.investorservice.common.ws.InvestorServicePort
    
    
            
    




        
            http://server:port/InvestorService/InvestorService?WSDL

Spring Framework 2.0 is coming out in the next few months. Supposedly there are some great new Web Service tools in that release. If that’s the case we can stop using the web service tools provided by BEA.

tags: spring framework, bea, j2ee, web service, weblogic, java

Secure Passwords for Datasources in Spring

Matt Luce — Fri, 12 Aug 2005 21:22:54 +0000

Security requirements at my place of employment don’t allow for plain text passwords in any type of configuration files. So we are forced to store passwords encrypted and then decrypt them in every application that needs to create a database connection. This wasn’t an issue for applications that run in a container as Weblogic encrypts the password, but it really limited our use of Spring in non-container apps. To get around this, I’ve created a new subclass of the Spring implementation of javax.sql.Datasource (org.springframework.jdbc.datasource.DriverManagerDataSource) : SecureDriverManagerDataSource which overrides the getPassword() and getConnectionFromDriverManager() methods and adds a new attribute: key. In my implementation of this class, an encrypted password is expected, so before calling the getConnection() method, the password is decrypted using the key attribute. Here is the source code:

public class SecureDriverManagerDataSource extends DriverManagerDataSource
{
private String key;

    public String getKey()
    {
        return key;
    }

    public void setKey(String key)
    {
        this.key = key;
    }

    public String getPassword()
    {
        if (getKey() == null)
        {
            throw new RuntimeException("Key Value is not set");
        }
        try
        {   // possible future enhancement, allow user to set which type of encryption to use for this class
            return SimpleAESEncrypter.decrypt(super.getPassword(),getKey());
        }
        catch (SimpleAESEncrypterException e)
        {
            throw new RuntimeException(e.getMessage(),e);
        }
    }

    protected Connection getConnectionFromDriverManager() throws SQLException
    {
        return getConnectionFromDriverManager(getUrl(),getUsername(), getPassword());
    }
}

And the Spring Bean Defininition:

            com.sybase.jdbc2.jdbc.SybDriver


            jdbc:sybase:Tds:dbserver:1234


            dbuser


            x345sdfxxxdasdf==


            rxxrt56xxc5uuEO/A==

    This implemenation uses our AES encryption utility, but it could be modified to set the encryption implentation as another attribute of the Datasource. You could then set that in the Spring Bean Definition as well

tags: spring framework

Matt Luce » java

Weblogic Web Services With Spring Framework

Secure Passwords for Datasources in Spring