Hi! marc fleury wrote: > |2. the SecurityAssociation > |... on the client side works global (static) to follow the idea of jaas > |it should work thread based, so the principal/credential should be > |ThreadLocal on the client side too. > > yes, I am not sure I understand why it is separated "server" vs "local" Probably because on client you want to set in on the VM level so that any thread calling a server will have the right security association. Otherwise you would have to re-authenticate for each thread. /Rickard -- Rickard �berg Email: [EMAIL PROTECTED] http://www.telkel.com http://www.jboss.org http://www.dreambean.com
- [jBoss-Dev] Security... lets nail it Daniel Schulze
- Re: [jBoss-Dev] Security... lets nail it Oleg Nitz
- Re: [jBoss-Dev] Security... lets nail it Daniel Schulze
- Re[2]: [jBoss-Dev] Security... lets nail it Oleg Nitz
- RE: Re[2]: [jBoss-Dev] Security... lets na... marc fleury
- Re[4]: [jBoss-Dev] Security... lets n... Oleg Nitz
- RE: [jBoss-Dev] Security... lets nail it marc fleury
- Re: [jBoss-Dev] Security... lets nail it Rickard �berg
- Re: [jBoss-Dev] Security... lets nail... Dan OConnor
- Re[2]: [jBoss-Dev] Security... le... Oleg Nitz
- Re: Re[2]: [jBoss-Dev] Securi... Dan OConnor
- RE: Re[2]: [jBoss-Dev] Securi... marc fleury
- Re: [jBoss-Dev] Security... lets nail it Daniel Schulze
