如何在 CXF 中修改 JAX-WS 响应的 HTTP 标头? [英] How do i modify HTTP headers for a JAX-WS response in CXF?

问题描述

我一直致力于开发位于安全代理后面的 CXF Web 服务，该代理要求在服务调用之前进行 HTTP 基本身份验证.这些服务相互之间进行通信，并且需要对请求和响应进行身份验证.

I have been working on developing CXF web services that sit behind a security proxy which asks for HTTP basic authentication prior service invocation. These services communicate between each other and require authentication for both request and response.

到目前为止，我已经能够通过 HTTPConduit 为请求设置 HTTP 基本身份验证，如下所示:

So far i have been able to set HTTP basic authentication via the HTTPConduit for the request like so:

    Client client = ClientProxy.getClient(port);
    HTTPConduit conduit = (HTTPConduit) client.getConduit();
    AuthorizationPolicy authorizationPolicy = new AuthorizationPolicy();
    authorizationPolicy.setUserName(username);
    authorizationPolicy.setPassword(password);
    authorizationPolicy.setAuthorizationType("Basic");
    conduit.setAuthorization(authorizationPolicy);

在每次服务方法调用时都会调用上述方法，并且我会以以下形式获得正确的入站消息

The method above is called on every service method invocation and i'm getting correct inbound messages in the form of

INFO: Inbound Message
----------------------------
ID: 1
Address: http://someURL/someService?wsdl
Encoding: UTF-8
Http-Method: POST
Content-Type: text/xml; charset=UTF-8
Headers: {Accept=[*/*], Authorization=[Basic {TOKEN}], 
                cache-control=[no-cache], connection=[keep-alive], 
                Content-Length=[735], content-type=[text/xml; charset=UTF-8], 
                pragma=[no-cache], ...}
Payload: <soap:Envelope>...</soap:Envelope>
--------------------------------------

但是，响应不包含所需的标头

The response, however, doesn't contain the required headers

INFO: Outbound Message
---------------------------
ID: 2
Encoding: UTF-8
Content-Type: text/xml
Headers: {}
Payload: <soap:Envelope/">...</soap:Envelope>
--------------------------------------

如何修改响应 HTTP 标头?我试过了

How can i modify response HTTP headers? I've tried

((BindingProvider)port).getResponseContext().put(
           MessageContext.HTTP_RESPONSE_HEADERS, 
           Collections.singletonMap("Authentication", 
           Collections.singletonList("Basic "+token)));

没有得到想要的结果.

推荐答案

一种方法是创建一个 CXF 拦截器.

One approach would be creating a CXF interceptor.

public class BasicAuthOutInterceptor extends AbstractPhaseInterceptor<Message> {

    public BasicAuthOutInterceptor() {
        super(Phase.PRE_STREAM);
    }

    @Override
    public void handleMessage(Message message) throws Fault {
        String token = "basic auth token";

        @SuppressWarnings("unchecked")
        Map<String, List<String>> headers = (Map<String, List<String>>) message
                .get(Message.PROTOCOL_HEADERS);
        if (headers == null) {
            headers = new TreeMap<String, List<String>>(
                    String.CASE_INSENSITIVE_ORDER);
            message.put(Message.PROTOCOL_HEADERS, headers);
        }

        headers.put("Authentication", Arrays.asList("Basic "+ token));
    }

}

并将其注册为 out and outFault 拦截器.

and registering it as an out and outFault interceptor.

    <bean id="basicAuthOutInterceptor class="BasicAuthOutInterceptor" />

    <cxf:bus>
        <cxf:outInterceptors>
            <ref bean="basicAuthOutInterceptor"/>
        </cxf:outInterceptors>
        <cxf:outFaultInterceptors>
            <ref bean="basicAuthOutInterceptor"/>
        </cxf:outFaultInterceptors>        
    </cxf:bus> 

这篇关于如何在 CXF 中修改 JAX-WS 响应的 HTTP 标头?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！