Hi,
i've written a stateless bean and i've given permissions to some of the methods
in the bean.
i've written a customloginmodule that authenticates the user and the
getRoleSets method retrieves roles from the database.
the login happens fine but as soon as i invoke any of the ejb methods, i get an
error stating that no permissions on the create method
java.lang.SecurityException: Insufficient method permissions,
principal=mackju, ejbName=ResultsSes, method=create
interface=HOME, requiredRoles=[], principalRoles=[WebsiteUser, ResultWriter,
ResultReader]
in the ejb-jar.xml if i add
<method-permission >
<role-name>ResultReader</role-name>
<ejb-name>ResultsSes</ejb-name>
<method-intf>Remote</method-intf>
<method-name>create</method-name>
</method-permission>
everything works fine.
this effectively means that i need to provide permissions for all the callback
methods as well which is not appropriate
can anyone tell me if i'm missing anything in any of the config files?
thanks Vinay
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3902942#3902942
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3902942
-------------------------------------------------------
This SF.Net email is sponsored by the JBoss Inc.
Get Certified Today * Register for a JBoss Training Course
Free Certification Exam for All Training Attendees Through End of 2005
Visit http://www.jboss.com/services/certification for more information
_______________________________________________
JBoss-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/jboss-user
