Authenticating a SOAP service in Java (password security)

Posted by user1686448 on Stack Overflow See other posts from Stack Overflow or by user1686448
Published on 2012-09-20T15:35:53Z Indexed on 2012/09/20 15:37 UTC
Read the original article Hit count: 180

Filed under:
|
|
|
|

I am writing an application, in Java, which needs to log in to a remote SOAP service (JIRA) prior to calling methods on that service.

I have looked at examples of how to do this, for example http://www.j-tricks.com/1/post/2010/8/jira-soap-client.html, however I am concerned that I need to put the password in memory at some point.

I've read that I should store the password as a char[] but still, I'm concerned about storing the password in the clear at all.

How should I store the password used by my client to log into the SOAP service? And how should I read it and pass it to JIRA?

© Stack Overflow or respective owner

Related posts about java

Related posts about security