Hello, I have 2 login modules in my security domain: 1st is a UsersRolesLoginModule (sufficient) and 2nd is a LDAPLoginModule (required). There is only admin user in the User/Roles properties files and the rest of the user database is in the LDAP server.
I tried to authenticate the user "john" in LDAP and the login() was successful. However, when a secured EJB method was called, I got the following error: java.rmi.RemoteException: checkSecurityAssociation; nested exception is: java.lang.SecurityException: Insufficient method permissions, principal=john, method=create, requiredRoles=[Administrators, InternalRole, Viewers], principalRoles=[] The user "john" has the Administrators role in the LDAP server. I am puzzled by why the roles of john were not propagated to the Security Manager? If I removed the 1st UsersRolesLoginModule and used only the LDAPLoginModule in my domain, JBoss was able to return john's roles and granted authorization. Does anyone know where my mistakes are? Thanks, Fee ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
