Joe Gittings wrote:
>
> Dear Jonas team,
>
> I've been looking at the Jonas list archive re. security, there doesn't
> seem to have been much discussion about it for a while.
>
> I found a posting from Philippe in May (
> http://www.objectweb.org/messages/JonasUsers/2000/05/msg00122.html ) saying
> it was slated for 2.1 or 2.2. So... will security make the cut for 2.1? If
> so, how complete will the security implementation be in 2.1? And when is
> 2.1 due out?
>
> I'm basically trying to decide whether to wait for Jonas to implement
> security, or implement my own token-passing security system.
>
> Thanks!
> Joe
Hi Joe,
In the JOnAS 2.1 you will find the first version of security.
How complete is this implementation?
To begin with, it is implemented with Jeremie
It will cover:
- the propagation of a security context with the request
- the authentification with Tomcat
- the access control to the methods of the bean
- security roles are defined with <security-role> <security-role-ref>
method permissions are defined in<method-permisson> in XML deployment
descriptor
- the implementation of isCallerInRole() & gatCallerPrincipal() of
EJBContext Interface.
When?
Our plan is to release JOnAS 2.1 binary version on the Web at mid
October (2000!)
The code relative to the security is yet submitted in the CVS tree
you can have a look on it, but it needs more tests and more
documentation.
I hope it will cover all your needs
Best regards,
--
Philippe
Philippe Coq Evidian Phone: (33) 04 76 29 78 49
Bull S.A - 1 rue de Provence - 38432 Echirolles Cedex France
Download our EJBServer at http://www.objectweb.org
----
To unsubscribe, send email to [EMAIL PROTECTED] and
include in the body of the message "unsubscribe jonas-users".
For general help, send email to [EMAIL PROTECTED] and
include in the body of the message "help".
