User's Guide
Reference Manual
Pane Talk
Videos
Support
Login
On this Page

    Script security


    Note, as of version 1.3.5 security is disabled by default.

     See [Default-]DocOriginWs.ini and cmdDefault.

    As of version 1.3.1, you can restrict which scripts can be run by each specific Tomcat user.

    Security is controlled by the $E/Default-WsSecurity.ini and $E/Default-WsSecurity.wjs files and their usual overrides. On each web service call the WsSecurity.wjs file reads the WsSecurity.ini file and makes the decision of whether to allow or deny access.

    By default, all scripts are allowed.

    You can add restrictions by putting the WsSecurity.ini file into the $U/Overrides folder and adding lines identifying script names and allowed user names. See the examples in $E/Default-WsSecurity.ini.

    If the script decides that access is denied, the http response headers provided by the web service will contain a non-zero do.exitCode and the do.property.message will be "access denied".

    More advanced requirements may require overriding $E/Default-WsSecurity.wjs with your own script and implementing security in any preferred way.

    Eclipse Corporation offers a full range of software solutions for all your document design and automation needs – built from the ground up by the team that developed Adobe Central and JetForm. As pioneers in the enterprise document automation industry, the Eclipse team has the knowledge, experience and track record your company can rely on. Let us show you how easy it can be to modernize your company's customer communications to take advantage of cutting-edge marketing tools – and provide our powerful proprietary Integration Without Modification™ software feature in all our software solutions. Don't change your business software, change your forms software to DocOrigin.