[jboss-dev-forums] [Design of EJB 3.0] - EJB3 issues with the Security Layer
anil.saldhana@jboss.com
do-not-reply at jboss.com
Tue Aug 29 12:17:00 EDT 2006
http://www.jboss.com/index.html?module=bb&op=viewtopic&t=88989
Regarding the NPE in the SecurityContext class, not obtaining the requisite ApplicationPolicy(authentication/authorization info etc), I made some changes such that there is a SecurityConfiguration static class from where the configuration is obtained.
But before that, there needs to be an MBean (or some way) by which the application policies are established prior to start making authentication/authorization checks.
It is your choice as to how the configuration is established in the embedded ejb3 world.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3968133#3968133
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3968133
More information about the jboss-dev-forums
mailing list