I agree with the concept of security roles. Is there a way for EJB1 to forego
the user's credentials and adopt its own so it can access EJB2? Something like a
<run-as>?
jim
----- Original Message -----
From: "Alexander Kogan" <[EMAIL PROTECTED]>
To: "JBoss-User" <[EMAIL PROTECTED]>
Sent: Thursday, March 15, 2001 5:30 PM
Subject: Re: [jBoss-User] Security
> Thomas Hagedorn wrote:
> >
> > > Suppose :
> > > EJB1 ---> EJB2 --> EJB3 ---> DB
> > > EJB4 ---> EJB5 --> EJB6 ---> DB
> > > I would like to make avaliable to public only beans EJB1 and EJB4. How?
> >
> > Don't publish the Home and Remote interfaces of the beans you'll keep
> > inside. Without interfaces noone can connect to the beans.
>
> Not really. Interfaces could be downloaded from the server.
> The right solution (IMHO) would be using "security-roles" and
> "method-permissions" in ejb-jar assembly descriptor.
>
>
>
>
> >
> > hth
> > tom
> > --
> > THETA - Consulting
> > Kommuniktionsanalyse - Anwendungsentwicklung - LINUX-Systeme
> >
> > Thomas Hagedorn Tel. 07231-472108
> > Rainstr. 12 Tel. 0172-7642398
> > 75217 Birkenfeld [EMAIL PROTECTED]
> >
> > Jesus inside - where do you want to go forever ?
> >
> > --
> > --------------------------------------------------------------
> > To subscribe: [EMAIL PROTECTED]
> > To unsubscribe: [EMAIL PROTECTED]
>
> --
> __________________________________________________
> Alexander Kogan PTC www.ptc.com
> [EMAIL PROTECTED] 140 Kendrick St. Needham MA 02494
>
>
> --
> --------------------------------------------------------------
> To subscribe: [EMAIL PROTECTED]
> To unsubscribe: [EMAIL PROTECTED]
>
>
--
--------------------------------------------------------------
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
