[ http://issues.apache.org/jira/browse/GERONIMO-668?page=comments#action_12316845 ]
Alan Cabrera commented on GERONIMO-668: --------------------------------------- What about having a special Geronimo class that is designated as by Geronimo as primary, then have a convention where a special login module would insert it into the subject? This way, people could have a variety of schemes to insert the primary principal by simply writing their own login module that followed the convention and we wouldn't have to have an "uber" metadata and code to handle all the different possibilities. > Unable to determine username from EJB method > -------------------------------------------- > > Key: GERONIMO-668 > URL: http://issues.apache.org/jira/browse/GERONIMO-668 > Project: Geronimo > Type: Bug > Versions: 1.0-M4 > Reporter: Ivan Dubrov > Assignee: David Jencks > Fix For: 1.0-M4, 1.0-M5 > > When calling EJB method from the Web module some important security context > information (username) is lost. It is impossible to determine caller user > name from the EJB method. EJBContext.getCallerPrincipal().getName() returns > something like this: > [org.apache.geronimo.security.realm.providers.GeronimoGroupPrincipal: manager] > Note that only group name can be determined from this string or from the > EJBMethod.getCallerPrincipal(). -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira
