[jboss-user] [Security] - Re: Authentication succeeded, getCallerPrincipal()=anonymous
do-not-reply at jboss.com
Fri Oct 30 07:41:40 EDT 2009
thanks for the detailed answers to ALL my questions ;-). That's good forum style!
I hope my questions are not too silly, but I know only JBoss security a bit, but not RAP etc.
So the RAP AJAX part is running in the same JBoss as the web pages and the EJBs? Are the AJAX servlets secured the same way as your web pages (included in the "web-resource-collection" of the "security-constraint" in web.xml)? I hope that the AJAX call contains the session id so that the server uses the same session?
View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4263151#4263151
Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=4263151
More information about the jboss-user