as long as your roles are fixed for the time span of the session of a user, you can handle it all in the login module. You still might decide that it is best to encapsulate your specific data base access into a custom user and/or role module though. It simply depends on your requirements. But you can stay away from JACC, unless you need a more dynamic role membership (depending on more time critical parameters...)
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3938192#3938192 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3938192 ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ JBoss-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-user
