Bugs item #1041273, was opened at 2004-10-06 11:03 Message generated for change (Tracker Item Submitted) made by Item Submitter You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=1041273&group_id=22866
Category: JBossSX Group: v4.0 Status: Open Resolution: None Priority: 5 Submitted By: Cuen Edwards (jcuen) Assigned to: Nobody/Anonymous (nobody) Summary: Run-as Identity not propagated Initial Comment: Description ---------- JBoss 4.0. is not propagating a bean's run-as identity, to method calls of other enterprise beans, that the bean calls. According to the EJB spec, the run-as identity should be propagated: (From EJBv2.0 pg 434 or EJBv2.1 page 472) "By specifying a run-as identity, however, it is possible to specify that a different principal be substituted for the execution of the methods of the bean’s home, component, and/or web service endpoint interfaces and ANY METHODS OF OTHER ENTERPRISE BEANS THAT THE BEAN MAY CALL." Please note that this was working correctly in all previous 3.2 versions, which I have tested. I have included a test case to demonstrate this error. Here is a brief description of the testcase: There are three beans: -EntityA (EntityBean) -EntityB (EntityBean) -TestSession (SessionBean) There are two security roles: -SessionClient -Application (Not meant to be assigned to a user.) Method permissions have been defined so that an authenticated user in the SessionClient role, may only call methods on TestSession. TestSession's methods then run-as the role Application, which allows it to access any entity beans etc in the application. Method calls are as follows: TestCase --> TestSession.test() --> EntityALocalHome.create() --> EntityBLocalHome.create () The call to TestSession.test() is correctly authenticating the user and then running as the role Application - which allows it to call EntityALocalHome.create(). Inside EntityALocalHome.create() an attempt is then made to call EntityBLocalHome.create() (also requires Application role) - which fails. Configuration ------------ OS: Windows XP JDK: 1.4.2_04 and 1.5.0 ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=376685&aid=1041273&group_id=22866 ------------------------------------------------------- This SF.net email is sponsored by: IT Product Guide on ITManagersJournal Use IT products in your business? Tell us what you think of them. Give us Your Opinions, Get Free ThinkGeek Gift Certificates! Click to find out more http://productguide.itmanagersjournal.com/guidepromo.tmpl _______________________________________________ JBoss-Development mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-development
