It can be applied at method level, basically you would define a method-permission element that contains method elements that describe the method you do not want security checks for - within this method-permission you would put the unchecked element instead of adding the role-name elements.
| <method-permission> | <unchecked/> | <method> | <ejb-name>EmployeeService</ejb-name> | <method-name>*</method-name> | </method> | </method-permission> | The remaining methods can be secured in the same way that you are currently securing them. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3902988#3902988 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3902988 ------------------------------------------------------- This SF.Net email is sponsored by the JBoss Inc. Get Certified Today * Register for a JBoss Training Course Free Certification Exam for All Training Attendees Through End of 2005 Visit http://www.jboss.com/services/certification for more information _______________________________________________ JBoss-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-user
