[GERONIMO-648] EJB web services need user data permissions too - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 1.0-M3
Fix Version/s: 1.0-M4
Component/s: webservices
Labels:
None

Description

Since ejb web services are not part of a web application, they don't get the user data permissions that a web app does. Therefore there is no way to specify that ssl/tls or a client certificate is needed. Also there is no way to specify how to login. We can add a section to the openejb plan that specifies transport-guarantee and authentication-method just like for a web app. We might want to consider bringing this up with the appropriate spec committee.

Attachments

Activity

People

Assignee:: David Jencks

Reporter:: David Jencks

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 17/May/05 09:27

Updated:: 07/Aug/06 15:05

Resolved:: 17/May/05 09:31