[jboss-dev-forums] [Design of Security on JBoss] - Calling from where?
vdhieu
do-not-reply at jboss.com
Thu Jun 28 02:54:30 EDT 2007
Hi all,
I am thinking about "improving" security for my EJB applications. The mechanism we currently use in Jboss is to check whether the caller has permission. I want to make this be more strict by checking which method (of which bean) is calling (assume that beans are in the same container)
In the org.jboss.ejb.plugins.SecurityInterceptor class, we can easily get calling Principal. Can we get the information of the calling methods?
Please, give me some suggestions!
Cheers
Vo.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4058563#4058563
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4058563
More information about the jboss-dev-forums
mailing list