adogg, I do not know for sure, but I would think that what you want is not possible. You could for example configure certain methods of your EJB to require certain roles. However, by securing the bean(even if only securing one method) means that any user must be authenticated before access.
However, you may consider using the run-as role mechanism. Assign run-as roles to any local bean accessing your EJB locally. Then secure your local interface mehtods to that run-as role. let us know how solve this, cgriffith View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3955072#3955072 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3955072 Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user
