Well, after some debugging, I've realized that a TomcatSecurityService
is used, which uses the tomcat's engine default realm (the one that uses
tomcat-users.xml).
The point is: how to configure it to use my context-specific realm?
I have a JAASRealm configured to use my LoginModule, just didn't
Luis,
I do not know much about this part of OpenEJB, but can definitely try and
look into it after work today.
On Wed, Aug 20, 2008 at 2:54 PM, Luis Fernando Planella Gonzalez
[EMAIL PROTECTED] wrote:
Well, after some debugging, I've realized that a TomcatSecurityService
is used, which uses
I would appreciate your help very much.
Here is the point I'm stuck:
* I've created a JAASRealm for my context under tomcat, which uses a
custom login module
* I've successfully authenticated in tomcat, and have my roles, e.g, user
* When accessing an EJB, the @RolesAllowed(user) denies access.