Hi!, I am trying a sample EJB application to R&D some security related issues. I want to access EJB through a web application as well as a Swing client. I have set approriate <method-permission> in EJB deployment descriptor. I am using users.properties/roles.properties file for authentication mechanism. - On the web application side I am using BASIC authentication and the servlet is able to access the EJB OK, as long as I am using a login/password that has access to the EJB. - Now I am trying to access the EJB using a stand alone Java class. These are the things I have tried till now: =>Created a InitialContext with appropriate principal, credentials and tried getting a reference to EJB home interface. That resulted in security exception. =>Logged into a LoginContext by using appropriate JBossSX classes and then tried getting a EJB home interface. Again security exception. Now I am not sure what to do. I read at some places about client side container but not sure what that is. Can anyone give some ideas to try? Is there any other way I can make a swing application and a web applicatin authenticate to EJB container? Also can anyone point me to any documentation that gives some idea about how the security credentials gets propagated from web application to EJB container?
View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3839316#3839316 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3839316 ------------------------------------------------------- This SF.Net email is sponsored by The 2004 JavaOne(SM) Conference Learn from the experts at JavaOne(SM), Sun's Worldwide Java Developer Conference, June 28 - July 1 at the Moscone Center in San Francisco, CA REGISTER AND SAVE! http://java.sun.com/javaone/sf Priority Code NWMGYKND _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user