Will this run-as thing replace thie PrivelegedAction - method of calling EJBs? On Tue, 2002-05-07 at 12:24, Jan Bartel wrote: > > The spec says: > "When it is specified, the container must propagate the security > identity of the caller to the EJB layer in terms of the security role > name defined in the run-as element." > > Hhhhmmm. Yep, you're right, it sounds like it should be a replace rather > than an augment (which is how I was thinking of it). > > Any comments Greg/Scott/Jules? > > Jan > > Luke Taylor wrote: > > Jan Bartel wrote: > > > >> > >> The intention being to create a "new" principal, based on the old, > >> with a role added. The new principle is associated with the request > >> while it is within the run-as servlet. The popRole call ends this > >> association and should return either the original principal or another > >> equivalent principal stripped of the role (assuming it did not have it > >> in the first place). > >> > > > > Is this the correct behaviour for "run-as"? I thought it was intended to > > replace the access rights of the delegated principal for the call rather > > than extending them? > > > > Luke. > > > > > > > > > _______________________________________________________________ > > Have big pipes? SourceForge.net is looking for download mirrors. We supply > the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] > _______________________________________________ > Jboss-development mailing list > [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/jboss-development
_______________________________________________________________ Have big pipes? SourceForge.net is looking for download mirrors. We supply the hardware. You get the recognition. Email Us: [EMAIL PROTECTED] _______________________________________________ Jboss-development mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-development