Hi, Kai
You say that you are authenticating. This is cool, but authentication means
only that you are verifying that the given username/password pair exists. In
order to actually identify the user to the server, and in the proper role,
you want to use the login() method of RoleManager.
Arved Sandstrom
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Kai Schilz
Sent: Saturday, November 25, 2000 12:13 PM
To: Orion-Interest
Subject: Group/role-mapping problem with own User implementation
Hi everybody,
I have a problem with the EJBUserManager. I have written my own
implementation of User, which extends EJBUser to include the user's
e-mail-address. The UserManager is set up correctly and it finds the
right user, which is correctly authenticated. But then either the group
is not correcly determined or the group is not mapped correctly to the
corresponding role. I don't know what happens exactly but I always get
an http-error "401 Unauthorized" when accessing the secured document.
[ Snippage ]
