Win a copy of Cross-Platform Desktop Applications: Using Node, Electron, and NW.js this week in the JavaScript forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

Is it possible to intercept and trace requests in this web service implementation?  RSS feed

 
masoud keshavarz
Greenhorn
Posts: 21
Firefox Browser MySQL Database VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hello guys.
I'm newbie in java and I wrote my first web service application from a tutorial, but I have a few questions about it.

This is my server side code:


And this is my client side code:


I've read before communicating with web services are through SOAP protocol but I'm not sure if above client call web service function through SOAP protocol.
Does above communication is with SOAP protocol? If no then what is the protocol name? In this protocol is it possible to intercept and trace request that client send to server by another server?
Is it possible two web services on two independent servers communicate with each others through above approach or they only can communicate with each others through SOAP protocol?

I use Eclips, Tomcat, Axis2.

Sorry if my question is a bit confusing I tried my best to make it clear.
Thank you for help.
 
Ulf Dittmer
Rancher
Posts: 42972
73
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Does above communication is with SOAP protocol?

That's highly likely. While Axis2 can also use REST, SOAP is really what it's there for.

In this protocol is it possible to intercept and trace request that client send to server by another server?

By whom? By the developer, or by an attacker? The developer can use something like https://code.google.com/p/tcpmon/ to monitor HTTP communication, including SOAP.

Is it possible two web services on two independent servers communicate with each others through above approach or they only can communicate with each others through SOAP protocol?

The question doesn't make sense, because the above approach in all likelihood uses SOAP :-)

 
masoud keshavarz
Greenhorn
Posts: 21
Firefox Browser MySQL Database VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Ulf thank you for reply :-)

By whom? By the developer, or by an attacker? The developer can use something like https://code.google.com/p/tcpmon/ to monitor HTTP communication, including SOAP.


I really liked to play with tcpmon but I couldn't run it at all.
I don't talk about an attacker. I'm talking about an authorized developer whom want to play with requests before it sent from a client to a server, or from a server to another server.

I want to do some experiment and find some answers to this questions:
How does request messages looks like? Is it in xml format? Is it possible to modify or add something into it before we send it to destination?
To find some answers for above questions first I need to catch request from client.
 
Ulf Dittmer
Rancher
Posts: 42972
73
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I really liked to play with tcpmon but I couldn't run it at all.

That's odd, they didn't make the jar file double-clickable. You can run it from the command line via

java -cp tcpmon-1.1.jar com.codegoogle.tcpmon.MainWindow

Note what it prints on the command line about how to set hosts and ports - you may have to adjust that.
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!