I implemented a JACC provider to evaluate my own policy. When I access a servlet, JBoss 4.0.3SP3 calls my JACC provider only if there is exists a security constraint in the web.xml.
If I add to web.xml this: | </security-constraint> | <security-constraint> | <web-resource-collection> | <web-resource-name>All web resources</web-resource-name> | <url-pattern>/*</url-pattern> | </web-resource-collection> | </security-constraint> Then the Jacc provider gets called on any web resources - but other wise I don't. I'm I doing something wrong? I'm not sure if ejb access behaves similarly - I'll check that out this afternoon View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3936973#3936973 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3936973 ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642 _______________________________________________ JBoss-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-user
