[jboss-user] [Security & JAAS/JBoss] - Re: How to marshall principal/credentials from client login

I found a solution to my problem. I was using xdoclet/ejbdoclet to generate my session interfaces as well as the ejb-jar.xml files for my beans. It turns out that when I annotated the create() methods, I didn't allow for method-permission declarations on the remote HOME method. The proper annotation would look something like: | /** | * @ejb.create-method | * @ejb.permission unchecked="true" method-intf="Home,LocalHome" | */ | public void ejbCreate() { | } | And the resulting ejb-jar.xml would have something like: | <method-permission > | <description><![CDATA[description not supported yet by ejbdoclet]]></description> | <unchecked/> | <method > | <description><![CDATA[]]></description> | <ejb-name>MyBeanName</ejb-name> | <method-intf>LocalHome</method-intf> | <method-name>create</method-name> | <method-params> | </method-params> | </method> | </method-permission> | <method-permission > | <description><![CDATA[description not supported yet by ejbdoclet]]></description> | <unchecked/> | <method > | <description><![CDATA[]]></description> | <ejb-name>MyBeanName</ejb-name> | <method-intf>Home</method-intf> | <method-name>create</method-name> | <method-params> | </method-params> | </method> | </method-permission> | View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3974188#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...