I had the same problem as you do before. After days of try and error, finally I realized that I have to put my group name into your application's principals.xml to work. Personally I do see this as a bug Hope this help Conrad -----Original Message----- From: Arved Sandstrom [mailto:[EMAIL PROTECTED]] Sent: Saturday, November 25, 2000 12:19 PM To: Orion-Interest Subject: RE: Group/role-mapping problem with own User implementation Hi, Kai You say that you are authenticating. This is cool, but authentication means only that you are verifying that the given username/password pair exists. In order to actually identify the user to the server, and in the proper role, you want to use the login() method of RoleManager. Arved Sandstrom -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Kai Schilz Sent: Saturday, November 25, 2000 12:13 PM To: Orion-Interest Subject: Group/role-mapping problem with own User implementation Hi everybody, I have a problem with the EJBUserManager. I have written my own implementation of User, which extends EJBUser to include the user's e-mail-address. The UserManager is set up correctly and it finds the right user, which is correctly authenticated. But then either the group is not correcly determined or the group is not mapped correctly to the corresponding role. I don't know what happens exactly but I always get an http-error "401 Unauthorized" when accessing the secured document. [ Snippage ]
