I know that I can set the default permission for methods by adding
@ejb.permission role-name=user but when I then want to over-ride one
method, I add @ejb.permission role-name=superuser to that method tag.
This does not seem to work. A user with the role user can run my
method I marked for
--- Jeremy Cowgar [EMAIL PROTECTED] wrote:
I know that I can set the default permission for
methods by adding
@ejb.permission role-name=user but when I then
want to over-ride one
method, I add @ejb.permission role-name=superuser
to that method tag.
This does not seem to work. A user
--- Jeremy Cowgar [EMAIL PROTECTED] wrote:
Setting permission on class level forces xdoclet
to
generate following entry:
method-permission
description![CDATA[description not
supported yet by ejbdoclet]]/description
role-nameadmin/role-name
Hmm, as honest judge I would put blame on you :)
* in method name means that this permission applies
to every method in your bean - also to
getPatientObjectValue.
But user holding role Hello would be able to run
only
this method.
Roles are additive...
I give universal permission only to