[jboss-user] [Security] - Re: Authentication succeeded, getCallerPrincipal()=anonymous

Wolfgang Knauf do-not-reply at jboss.com
Fri Oct 30 07:41:40 EDT 2009


thanks for the detailed answers to ALL my questions ;-). That's good forum style!
I hope my questions are not too silly, but I know only JBoss security a bit, but not RAP etc.

So the RAP AJAX part is running in the same JBoss as the web pages and the EJBs? Are the AJAX servlets secured the same way as your web pages (included in the "web-resource-collection" of the "security-constraint" in web.xml)? I hope that the AJAX call contains the session id so that the server uses the same session?

Best regards


View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4263151#4263151

Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=4263151

More information about the jboss-user mailing list