Secured WSDL example with YAML (#2550)

* feat: add secured WSDL example with YAML config, update documentation and test alignment

- Introduced `apis.yaml` for secured WSDL configurations.
- Revised `ROADMAP.md` with a question about deprecating the old `rest2soap` interceptor.
- Updated `README.md` with instructions for secured WSDL usage.
- Adjusted test endpoint for SOAP proxy in `SecuredWsdlExampleTest`.

* refactor: minor

Author: predic8

distribution/examples/web-services-soap/secured-wsdl/README.md

@@ -1,9 +1,8 @@
-# Securing a WSDL
+# Using a secured WSDL for a SOAP Proxy
 
-## How it works
-- The `soapProxy` acts as an entry point, listening on port `2010` and forwarding WSDL requests to the internal `wsdl-proxy`.
-- The `wsdl-proxy` provides full authentication configuration.
-- To secure a WSDL service, replace `<sampleSoapService/>` with a <target> definition specifying the actual WSDL endpoint. Authentication settings should be configured within the `wsdl-proxy` to ensure proper access control.
+Usually WSDL documents are not secured and can be freely accessed by anyone. But sometimes WSDL documentation is considered sensitive and is protected by access control.
 
-**Refer to [`proxies.xml`](./proxies.xml) for further details, settings, and modifications.**
+To reference a secured WSDL in Membrane, configure an internal API to handle authentication and authorization with the server hosting the WSDL.
+
+See the `apis.yaml` for a starting point.
 

distribution/examples/web-services-soap/secured-wsdl/apis.yaml

@@ -0,0 +1,30 @@
+# yaml-language-server: $schema=https://www.membrane-api.io/v7.0.5.json
+#
+# 1.) Start Membrane:
+#     ./membrane.sh
+#
+# 2.) Open the WSDL in a browser:
+#     The WSDL from the wsdl-API:     http://localhost:2001/?wsdl
+#     The WSDL from the SOAP Proxy:   http://localhost:2000/?wsdl
+#     The Service publisher:          http://localhost:2000
+#
+# 3.) Change the API below to retrieve the WSDL
+
+# Internal API
+api:
+  name: wsdl
+  port: 2001 # For debugging purposes. Cause it is used with internal:// no port is needed
+  flow:
+    # Remove that service an configure in this API SSL, HTTP headers or other means of authentication
+    - sampleSoapService: {}
+#  target:
+#    ssl:
+#      keystore:
+#        location: keystore.p12
+#        password: changeit
+
+---
+soapProxy:
+  port: 2000
+  # Reference the internal API
+  wsdl: internal://wsdl/?wsdl

distribution/src/test/java/com/predic8/membrane/examples/withoutinternet/test/SecuredWsdlExampleTest.java

@@ -28,11 +28,24 @@ public String getExampleDirName() {
     }
 
     @Test
-    void testSecuredWsdl() {
+    void wsdlFromInternalAPI() {
         // @formatter:off
         given()
         .when()
-            .get("http://localhost:2010/services?wsdl")
+            .get("http://localhost:2001/?wsdl")
+        .then()
+            .statusCode(200)
+            .contentType(XML)
+            .body(containsString("wsdl:definitions"));
+        // @formatter:on
+    }
+
+    @Test
+    void wsdlFromSOAPProxy() {
+        // @formatter:off
+        given()
+        .when()
+            .get("http://localhost:2000/?wsdl")
         .then()
             .statusCode(200)
             .contentType(XML)

docs/ROADMAP.md

@@ -14,6 +14,7 @@
 
 # 7.X
 
+- Question: Should we remove the old rest2soap interceptor(using XSLT) in favor of the new template based examples?
 - Do we need add(Rule,Source) and getRuleBySource(Manual|Spring)?
 - Rewrite ACL to use the YAML configuration instead of external XML files
 - Fix maven central publish job