Bugs item #453422, was opened at 2001-08-20 09:41 You can respond by visiting: http://sourceforge.net/tracker/?func=detail&atid=402704&aid=453422&group_id=31602 Category: ejbdoclet Group: None Status: Open Resolution: None Priority: 5 Submitted By: Andrew Stevens (stevensa) Assigned to: Nobody/Anonymous (nobody) Summary: Method permissions in DD Initial Comment: As I understand the (1.1) spec, you don't have to specify roles for all methods ("It is possible that some methods are not assigned to any security roles. This means that none of the security roles defined by the Application Assembler needs access to the methods.") However, if I include any finder class tags without roles (e.g. @ejb:finder signature="Collection findAll()") then xdoclet generates method-permission entries for them that don't contain any <role-name> elements. Since the DTD specifies "<!ELEMENT method-permission (description?, role-name+, method+)>" i.e. 1 or more role-names, this is invalid. It would be better to omit the whole entry instead. Also, <unchecked/> was added with EJB 2.0, but the asm- descriptor.j template doesn't check the ejbspec configuration property before adding it. If I include it in my beans' finder tags (ready for when I move to 2.0), then my generated 1.1 ejb-jar.xml is invalid. Again, it would be better if (for 1.1) the whole method-permission entry was omitted instead. ---------------------------------------------------------------------- You can respond by visiting: http://sourceforge.net/tracker/?func=detail&atid=402704&aid=453422&group_id=31602 _______________________________________________ Xdoclet-devel mailing list [EMAIL PROTECTED] http://lists.sourceforge.net/lists/listinfo/xdoclet-devel
