Yes, security should be an aspect integrated via an interceptor. There are areas where the transport details do matter for security. One is when security depends on the client endpoint. Another is when you need feedback from the transport on the security context. SSL and IIOP both have such notions.
View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3861156#3861156 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3861156 ------------------------------------------------------- The SF.Net email is sponsored by: Beat the post-holiday blues Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek. It's fun and FREE -- well, almost....http://www.thinkgeek.com/sfshirt _______________________________________________ JBoss-Development mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-development
