[jboss-dev-forums] [Design of POJO Server] - Re: Unauthenticated Identity for ejb timers
wolfc
do-not-reply at jboss.com
Thu May 24 04:46:46 EDT 2007
Will we keep the function as specified in http://docs.jboss.org/jbossas/jboss4guide/r5/html/ch8.chapter.html#ch8.declarativesecurity2.sect where I can just put in an unauthenticated principal in the deployment?
See also http://jira.jboss.com/jira/browse/EJBTHREE-973
Another question then is what if the caller supplies a principal, but there is no realm to validate against? I say a warning at least.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4048176#4048176
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4048176
More information about the jboss-dev-forums
mailing list