Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
1.0-M4
-
None
-
None
Description
When calling EJB method from the Web module some important security context information (username) is lost. It is impossible to determine caller user name from the EJB method. EJBContext.getCallerPrincipal().getName() returns something like this:
[org.apache.geronimo.security.realm.providers.GeronimoGroupPrincipal: manager]
Note that only group name can be determined from this string or from the EJBMethod.getCallerPrincipal().