There is no standard that defines how to use a JAAS Subject for authorization prior to J2EE 1.4 so jboss defined a mechanism that uses a java.security.acl.Group named 'Roles' as the location for the declarative roles. J2EE 1.4 defines a new JACC permission based contract for specifying how to delegate the authorization checks. Support for this exists in jboss-4.0.x.
View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3854001#3854001 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3854001 ------------------------------------------------------- This SF.Net email is sponsored by: Sybase ASE Linux Express Edition - download now for FREE LinuxWorld Reader's Choice Award Winner for best database on Linux. http://ads.osdn.com/?ad_id=5588&alloc_id=12065&op=click _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
