[jboss-user] [Security] - A lot off @SecurityDomain annotations...

mbartyzel do-not-reply at jboss.com
Sat Sep 19 04:37:17 EDT 2009 

Hi,

I wanna to configure security for my ejb and I have some problems :)
I use Eclipse Galileo for JEE Developers + JBoss 5.0.1.GA

1. There are tree @SecurityDomain annotations:
@org.jboss.ejb3.annotation.SecurityDomain
@org.jboss.aspects.security.SecurityDomain
@org.jboss.security.annotation.SecurityDomain

Which of them I should use? Only @org.jboss.ejb3.annotation.SecurityDomain forces applying security because I have EJBAccessException, but...

Below my steps with configuring security
1. Define domain in /server/default/conf/login-config.xml
 <application-policy name="Sandbox">
  	
  		<login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule" flag="required">
  			<module-option name="usersProperties">users.properties</module-option>
  			<module-option name="rolesProperties">roles.properties</module-option>
  		</login-module>
  	
  </application-policy>

2. Then I put properties to source folder of EJB project
user.properties
guest=pass
admin=admin

roles.properties
guest=LOGGED
admin=SUPER,LOGGED

3. I added security domain to my ejb
import @org.jboss.ejb3.annotation.SecurityDomain;

@Stateless(name="Service")
@SecurityDomain("Sandbox",)
@PermitAll
public class ServiceBean implements ServiceRemote {
 public String getDescription() {...}
 ...
}

4. And now we have client code:
		Properties prop = new Properties();
		prop.put(Context.INITIAL_CONTEXT_FACTORY, "org.jboss.security.jndi.JndiLoginInitialContextFactory");
		prop.put(Context.URL_PKG_PREFIXES, "org.jboss.naming:org.jnp.interfaces");
		prop.put(Context.PROVIDER_URL, "jnp://localhost:1099");
		prop.put(Context.SECURITY_PRINCIPAL, "guest");
		prop.put(Context.SECURITY_CREDENTIALS, "pass");
	
		InitialContext ctx = new InitialContext(prop);

                //obtaining remote reference goes here... 
		
		System.out.println( service.getDescription() );

And, every time EJBAccessException is being throwed.

Anyone knows what i did wrong?

Thanks for help


View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4256016#4256016

Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=4256016

More information about the jboss-user mailing list