I am confused. In the Jonas<MyBean>Home.java that GenIC creates for me, i
see that in my "create" method it calls "preinvoke(2, methodSignature)".
This (it is located in JEntityHome) in turn calls "checkSecurity" which is
in JBeanHome. The following is that method:
public void checkSecurity(String methodSignature) throws RemoteException {
// A "null" string means : no security control.
if (methodSignature.equals("null")) {
return;
}
TraceEjb.debugSecurity("JBeanHome.checkSecurity()");
try {
methodGuard.checkGuard(methodSignature);
} catch (SecurityException e) {
throw new RemoteException("checkSecurity", e);
}
}
Now what confuses me is this. The Jonas<MyBean>Home.java passes the
methodSignature: "<MyBeanHome>:com.<mysite>.<MyBeanHome>.create_1:int " .
How am I ever gonna get authorized? I know my Descriptor never had such a
method signature on it.
Second question, by this time it is already too late to create a
SecurityContext, and add the Principal from the user. Can I do it when they
first call jndiContext.lookup()? Is the container notified then? If so, what
part? What class/method gets called?
thanks,
Robert
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com
----
To unsubscribe, send email to [EMAIL PROTECTED] and
include in the body of the message "unsubscribe jonas-users".
For general help, send email to [EMAIL PROTECTED] and
include in the body of the message "help".
