Hi Thanks for ur advice. But with a statefull session bean, it is not possible for me to make this a generic framework for all j2ee-based applications. Also this come up with all over-heads that a statefull session bean has.
The reason that iam not using container-managed security is that i require to have a role-based security mechanism which is more dynamic and flexible than declarative security mechanism. G.Vijay =========================================================================== To unsubscribe, send email to [EMAIL PROTECTED] and include in the body of the message "signoff EJB-INTEREST". For general help, send email to [EMAIL PROTECTED] and include in the body of the message "help".
