I apologize for continuing this thread - but... actually, I am using Tomcat stand-alone. Tomcat runs on one machine, JBoss on another. I am not using the integrated setup. That's one reason why I am trying to investigate this situation, and why I'm writing to the Tomcat list instead of JBoss.
Maybe I'm not phrasing my question properly: How does Tomcat (or ANY servlet container for that matter) propagate the security information for a single session from one JVM (e.g. the servlet runtime) to another (e.g. the EJB runtime), especially over a network? I'll try posting on some other forums. Thanks for the replies :-) -Jason On Friday, April 5, 2002, at 11:43 AM, Craig R. McClanahan wrote: > I think your basic point ("it is going to be proprietary to a specific > container") is correct. In particular, the "container" we're talking > about here is the *combination* of Tomcat and the EJB layer from JBoss. > Since I have no clue how this integration was done even for standard > container managed security, I'm afraid I cannot offer any advice on the > details. Perhaps someone on the JBoss list (since they did the > integration) can help. > >> Thanks - Jason > > Craig > > > -- > To unsubscribe: <mailto:[EMAIL PROTECTED]> > For additional commands: <mailto:[EMAIL PROTECTED]> > Troubles with the list: <mailto:[EMAIL PROTECTED]> > -- To unsubscribe: <mailto:[EMAIL PROTECTED]> For additional commands: <mailto:[EMAIL PROTECTED]> Troubles with the list: <mailto:[EMAIL PROTECTED]>