[jboss-dev-forums] [Design of Messaging on JBoss (Messaging/JBoss)] - Re: moving SecurityAspect to be an interceptor
timfox
do-not-reply at jboss.com
Thu Feb 7 07:31:19 EST 2008
"ataylor" wrote :
| Ok, so adding and removing the users from the map on creating a connection and closing a connection is fine. If the server closes the connection via the connection manager on client fail, the interceptor wouldn't get called and the user would remain in the map.
Good point. When I think about it, I don't really see what's wrong with having the username/password on the ServerConnectionEndpoint. After all they're just attributes, as long as the security logic itself is not there but in the interceptor then that should be ok IMHO.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4127344#4127344
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4127344
More information about the jboss-dev-forums
mailing list