On Tue, 2011-10-18 at 09:09 -0500, Anil Saldhana wrote:
Marcus,
this is in regard to your proposed changes to JBossWebRealm for the
authorization bits.
https://github.com/mmoyses/jboss-as/commit/ba3c43f8dfc9c201098392c5ebf904...
Previously, AS5/6, we had the JBoss Authorization enabled by default.
IMO for AS7, you have taken the right approach to allow user to
configure whether to use JBoss Authz via jboss-web.xml setting.
I didn't know what the default value for the useJBossAuthorization flag
was supposed to be, so feel free to propose changing it.
--
Remy Maucherat <rmaucher(a)redhat.com>
Red Hat Inc