Hi Since very long time I'm trying to setup an environment with tomee / jpa and security. I was able to create an EJB Layer, which i can test like the following example, which is really nice.
http://tomee.apache.org/examples-trunk/testing-security-3/README.html My first problem. How can I inject EntityManger to the LoginProvider. This example LoginProvider just returns static roles. I would like to make queries to the database and construct roles programatically. Or maybe I should not use JAAS (ServiceLoginProviderModule) for this kind of requirement. My second problem. I also added a jersey layer on top. I would like to test this layer with security. How i can do this? Are there any useful examples? I tried many frameworks like rest-assured which looks realy nice to me, but I couldn't figure out, how to configure web.xml without to declare security-constraints for each jax-rs service. It could not be so complicated, but it seems, that I am the only one with such problems. :-( Thanks allot for your help -- View this message in context: http://openejb.979440.n4.nabble.com/Testing-security-in-webapp-tp4660610.html Sent from the OpenEJB Dev mailing list archive at Nabble.com.
