I'd like to impose security restrictions on my EJB3, but only in the Remote interface. If called via the Local interface, I want no restrictions.
Can I add @RolesAllowed annotations to the method declarations in my remote interface without adding them to the implementation class? Seems to me that that would secure calls made via the Remote interface only. I've been trying to test it out, but I'm having a hard time compiling and want to know if I'm wasting my time. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3955060#3955060 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3955060 Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
