[jboss-dev-forums] [Design of Management Features on JBoss] - Re: security domain used for securing remote access to Profi
scott.stark@jboss.org
do-not-reply at jboss.com
Tue Jul 7 19:42:27 EDT 2009
Related to JBPAPP-2229, there is a request to not have the ProfileService proxy bindings available globally in jndi. It was further discussed to not use ejbs to provide the secure facade for the ProfileService. Rather, the currently unsecured remoting proxies for the ProfileService should be secured by default in the EAP, and the ejbs removed.
The org.jboss.profileservice.remoting.ProxyFactory bean deployed in the deploy/profileservice-jboss-beans.xml that creates the proxies and jndi bindings. These proxies do have typical client side interceptors, but the server side component is not being secured via a security aspect. That is what should be added to the following profileservice-jboss-beans.xml beans:
ManagementView
DeploymentManager
as well as the ProfileService bean from the bootstrap/conf/profile.xml deployment.
View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4242312#4242312
Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=4242312
More information about the jboss-dev-forums
mailing list