I found a solution to my problem. I was using xdoclet/ejbdoclet to generate my
session interfaces as well as the ejb-jar.xml files for my beans. It turns out
that when I annotated the create() methods, I didn't allow for
method-permission declarations on the remote HOME method.
The proper annot
I originally did not use "@" as my UNIQUETOKEN because logins can be email
addresses, but there's surely nothing wrong with splitting on lastIndexOf("@")
rather than String.split()...
Although a good idea, this doesn't help me with my particular problem. It
matters not how the two strings are c
I am attempting to implement java security in an application that is
architected as follows:
We have a web tier running in a jboss instance. This web tier has no
datasources available to it. The only way it has access to data is through a
business tier, a set of applications running in another