Hi,
I'm trying to put some security guards on my EJBs, and I have the
following questions :-
1. I know that I need to map the application role to WLS principal, but
how can I create the WLS principal??
2. When I create a connection pool, do I need to put all the possible
user names on the allow-clause??
3. Do I need to put all user's password in weblogic.properties file
(e.g. weblogic.password.user01=password)?? And how can I encrypt it??
4. I tried to use "guest" as the user to run my application, and I only
granted execution privilege on method "created" to "guest". But I found
that "guest" can still execute other method, why??
Thanx in advance.
Albert
===========================================================================
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff EJB-INTEREST". For general help, send email to
[EMAIL PROTECTED] and include in the body of the message "help".
