In the seamspace project,security-rule.drl has the following code snippet I donn't know why. 1. check: PermissionCheck(name == "memberImage", action == "view", granted == false) there is a memberImage component,but where is the action view? 2. check: PermissionCheck(name == "blog", action == "create", granted == false) Does this mean Statful session bean BlogAction create is restircted? 3. check: PermissionCheck(name == "friendComment", action == "create", granted == false) Restrict @Factory("friendComment")?and where is action create? 4. @Restrict is not required to invoke permission check? View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4107756#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...