This sounds more like an issue with jboss than a cactus issue.
Actually, I think I have it. I think it's a JAAS issue. If anyone here can confirm my reasoning, that'd help.
My JAAS policy is the default one, which is probably "Allow all". I really just want the tests to log in to the Cactus redirector, so I don't care what role it plays, as the Cactus redirector does no authorization check. Only the EJB container does an authorization check. That seems to explain it.
Thanks, everyone. -- J. B. Rainsberger, Diaspar Software Services http://www.diasparsoftware.com :: +1 416 791-8603 Let's write software that people understand
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
