Bob, It is O.K. to use request.getUserPrincipal to get your userid. However, there is no Java EE standard for getting the user's role. You can ask if the user is in a certain role using request.isUserInRole(). JBoss does offer the ability to get to the authenticated Subject via a JNDI lookup. I think the name is "java:/jaas/your_securit_domain/subject", but I am not positive and I can't remember where I read that.
later, cgriffith View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3947141#3947141 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3947141 ------------------------------------------------------- All the advantages of Linux Managed Hosting--Without the Cost and Risk! Fully trained technicians. The highest number of Red Hat certifications in the hosting industry. Fanatical Support. Click to learn more http://sel.as-us.falkag.net/sel?cmd=lnk&kid=107521&bid=248729&dat=121642 _______________________________________________ JBoss-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-user
