Please find my answers inline: >>>1) There is no role-based declarative security for portlets defined by >>>portlet spec.
Yes >>>2) For local portlets in JBoss Portal it is solved by securing portlet >>>instances. Yes >>>3) For WSRP, JBoss Portal has no solution currently. Neither propagation of >>>a User id, nor role based access control is solved. If we need something >>>there, we should implement it ourselves. Yes View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4022953#4022953 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4022953 _______________________________________________ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user