"adrian(a)jboss.org" wrote : "ALRubinger" wrote : "anil.saldhana(a)jboss.com" wrote : Added to that, IMO the interceptors (including the security interceptors) should not be in the externalized project. They should be sitting in the ejb3 module in the AS workspace. | | | | So what about EJB3 Standalone and Embedded? They don't need interceptors? This isn't an AS integration point. | | | | The security aspect (to give it its correct name ;-) is a product of the security | project. It's an implementation detail. | Only the runtime metadata it uses is "shared" and then only if it needs to be, | e.g. converting ejb3 metadata to jboss-security's internal model. | | The EJB2 security interceptors and Tomcat Security Integration code (tomcat realms) exist in the AS5 workspace in server and tomcat modules. Why should the ejb3 security interceptors exist in an external project? View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4135007#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...