I noticed that if you define a WAR's security domain and then define an
EJB within WEB-INF/classes, that EJB's default security domain is
"other" and not the WAR's security domain.
Don't you think it would be more user friendly and intuitive for nested
components' security domain to be inherited from their parent container
rather than defaulting to "other"?
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com