Hi!
"Kenworthy, Edward" wrote:
> So what you're saying is wheras with WLS (and others) getting the
> InitialContext and "logging on" to the AppServer is one step, the "proper"
> way to do it in the future, when JAAS becomes part of the spec' (EJB2.1?) it
> will be two step - get InitialContext then "log on" to the AppServer using
> JAAS.
Basically, yes. As before, the JNDI security was only intended for the
namespace access. Then, when there were no standardized way of doing
security in EJB the vendors started using it for EJB too. It "works",
but the semantics is really unclear and hardly portable between servers.
I would use JAAS if possible. It's da way of the future, and will be in
the next J2EE spec.
/Rickard
--
Rickard �berg
Email: [EMAIL PROTECTED]
--
--------------------------------------------------------------
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Problems?: [EMAIL PROTECTED]
