Uploaded image for project: 'Geronimo'
  1. Geronimo
  2. GERONIMO-648

EJB web services need user data permissions too

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 1.0-M3
    • Fix Version/s: 1.0-M4
    • Component/s: webservices
    • Labels:
      None

      Description

      Since ejb web services are not part of a web application, they don't get the user data permissions that a web app does. Therefore there is no way to specify that ssl/tls or a client certificate is needed. Also there is no way to specify how to login. We can add a section to the openejb plan that specifies transport-guarantee and authentication-method just like for a web app. We might want to consider bringing this up with the appropriate spec committee.

        Attachments

          Activity

            People

            • Assignee:
              djencks David Jencks
              Reporter:
              djencks David Jencks
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: