[jboss 3.0.8-tomcat 4.1.24] Hi,
I know, there are some posts regarding this problem, but they do not solve my problem. Our Application consists of a Swing Frontend connecting to the app-server using http, the 'http-invoker' and ejbs in all colors. We need Method-Level Security for the ejbs. The http invoker is secured as well as the jar application using the jboss-specific deployment-descriptor. Both security-domains are equal. --8<-- <jboss-web> <security-domain>java:/jaas/xyz_realm</security-domain> </jboss-web> --8<-- When trying to create a session bean SomeSessionBeanHome.create(), the error 'No method permissions assigned to method=create, interface=HOME' is thrown. The userprincipal is not null, it is the one I expect and the principals role is set correct too. Thus it is no cache or jaas configuration problem. I can solve the problem by granting method permissions to *: --8<-- <method-name>*</method-name> --8<-- But then I loose fine-grained security on method level. Do I have to add method-permissions to the home interface? yours, kalexm View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3858712#3858712 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3858712 ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://productguide.itmanagersjournal.com/ _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
