No, it would not make a difference. It is the callers resposibility to provide the correct security credentials.
Maybe your POJO endpoint is not secured, then of course there is no security context that can automatically be propagated to the EJB layer. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3942081#3942081 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3942081 ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user