Hi, The declarative security model defined in the J2EE platform does not suit us because we like to allow the superuser of the application to dynamically assign which EJB objects and methods are allowed for each role.
I have been looking into the security proxy feature of JBoss and I think I might be able to use it to dynamically manage the ACL for each EJB object access. I like to know if any1 else has worked on something similar and may be able to comment if I am on the right track? David View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3859554#3859554 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3859554 ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://productguide.itmanagersjournal.com/ _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user