[jboss-user] [EJB3] - Re: Can't get SessionContext.isCallerInRole(...) to work from remote call.
Krister Wicksell
do-not-reply at jboss.com
Tue May 10 07:29:26 EDT 2011
Krister Wicksell [http://community.jboss.org/people/kriwic] created the discussion
"Re: Can't get SessionContext.isCallerInRole(...) to work from remote call."
To view the discussion, visit: http://community.jboss.org/message/604422#604422
--------------------------------------------------------------
Hi,
I have added the following to login-config.xml:
...
<policy
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="urn:jboss:user-roles:1.0 resource:user-roles_1_0.xsd"
xmlns:ur="urn:jboss:user-roles:1.0">
<application-policy name="zert">
<authentication>
<login-module code="org.jboss.security.auth.spi.XMLLoginModule" flag="required">
<module-option name="userInfo">
<ur:users>
<ur:user name="admin" password="test">
<ur:role name="administrator"></ur:role>
<ur:role name="producer"></ur:role>
<ur:role name="consumer"></ur:role>
</ur:user>
</ur:users>
</module-option>
<module-option name="unauthenticatedIdentity">guest</module-option>
</login-module>
</authentication>
</application-policy>
...
And my bean look like this:
@Stateless
@Remote({Test.class})
@SecurityDomain("zert")
@DeclareRoles({"administrator", "producer", "consumer"})
public class TestBean implements Test {
@Resource
private SessionContext context;
@Override
@RolesAllowed(value={"administrator"})
public boolean checkRole() {
System.out.println("In checkRole()");
return context.isCallerInRole("administrator");
}
}
/Krister
--------------------------------------------------------------
Reply to this message by going to Community
[http://community.jboss.org/message/604422#604422]
Start a new discussion in EJB3 at Community
[http://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2029]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-user/attachments/20110510/f0d8bac7/attachment.html
More information about the jboss-user
mailing list