Hi All, I think my previous mail is some how missed out or missed the attention. So I 'm posting it again. As we all know that in in J2EE we can set acls to beans and their methods. Andfor that the credentials and principals are to be supplied for getting the naming context thru hashtable enviroment. Now the question is that how could we pass the credentials and how can maintain the credentials and password over the entire session so that user can get the appropriate authorization in form based authentication of web based application. How should we maintain the credentials over the session ? Should we put that in session? But is that secure? One more point, if cetificate based authentication is being used, how to use for the realms. Pls do give your suggestion. Thnaks and Regards, Sudarson __________________________________________________ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ =========================================================================== To unsubscribe, send email to [EMAIL PROTECTED] and include in the body of the message "signoff EJB-INTEREST". For general help, send email to [EMAIL PROTECTED] and include in the body of the message "help".
