[jboss-dev-forums] [Design of Security on JBoss] - Calling from where?

Thursday, 28 June 2007

Hi all,

I am thinking about "improving" security for my EJB applications. The mechanism
we currently use in Jboss is to check whether the caller has permission.  I want to make
this be more strict by checking which method (of which bean) is calling (assume that beans
are in the same container)

In the org.jboss.ejb.plugins.SecurityInterceptor class, we can easily get calling
Principal. Can we get the information of the calling methods?

Please, give me some suggestions!

Cheers
Vo. 

View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4058563#...

Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[jboss-dev-forums] [Design of Security on JBoss] - Calling from where?