[
https://issues.apache.org/jira/browse/GERONIMO-4645?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
David Jencks closed GERONIMO-4645.
----------------------------------
Resolution: Fixed
Reimplemented the web services security stuff in rev 789622.
Generally this uses more of built-in jetty functionality. The security stuff
is handled in a SecurityHandler subclass, and the web service is called from a
ServletHandler subclass. Also the security checks are done with a
WebUserDataPermission object.
My guess is that it would be fairly easy to extend this to allow use of jaspi
for ejb web services.
> jetty7 ejb web service authentication is turned off
> ---------------------------------------------------
>
> Key: GERONIMO-4645
> URL: https://issues.apache.org/jira/browse/GERONIMO-4645
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: Jetty
> Affects Versions: 2.2
> Reporter: David Jencks
> Assignee: David Jencks
> Fix For: 2.2
>
>
> See JettyContainerImpl.addWebService.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
