Hi, I have some question about the EJB security, please help to give some comments, thanks ! 1. If there is no method-permission for an EJB in the ejb-jar.xml, shall we still need a JACC Manager, which in it, we grant the all access permissions ? 2. When we will say that the EJBDeploymentGBean of an EJB is not security-enabled. In the current codes, the value seems always set to true. Thanks !
-- Ivan
