[jboss-user] [EJB3] - Re: security in ejb3.1 using jboss 6.0 CR1
aravind kopparthi
do-not-reply at jboss.com
Tue Dec 14 22:48:12 EST 2010
aravind kopparthi [http://community.jboss.org/people/aravindsk] created the discussion
"Re: security in ejb3.1 using jboss 6.0 CR1"
To view the discussion, visit: http://community.jboss.org/message/576044#576044
--------------------------------------------------------------
when i check the Caller and isCallerinRole in side a EJB method that is annoated with @RolesAllowed("businessowner") which means EJB sessionContext has the security info but not being verified by @RolesAllowed?
@RolesAllowed("businessowner")
Public List getMembers(){
// Create the client
System.out.println("Caller : " + sctx.getCallerPrincipal().getName());
System.out.println("Caller is in Role : " + sctx.isCallerInRole(Roles.BUSINESS));
}
it prints out this
22:43:15,656 INFO [STDOUT] Caller : admin
22:43:15,687 INFO [STDOUT] Caller is in Role : false
22:43:15,656 INFO [STDOUT] Caller : admin
22:43:15,687 INFO [STDOUT] Caller is in Role : false
--------------------------------------------------------------
Reply to this message by going to Community
[http://community.jboss.org/message/576044#576044]
Start a new discussion in EJB3 at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2029]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-user/attachments/20101214/6c63301b/attachment.html
More information about the jboss-user
mailing list