Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 3.1
    • Fix Version/s: 3.1.1
    • Component/s: webservices
    • Labels:
      None

      Description

      It does not appear to be possible to secure webservice endpoints at the moment, therefore EJB session beans exposed as webservices will not work if they use the @RolesAllowed annotation.

      It would be nice to pass the values specified in the <web-service-security> tag in openejb-jar.xml were passed through to Tomcat/OpenEJB HTTP container, and to potentially support WS-Security schemes as well.

        Attachments

        1. patch-openejb-1004.txt
          71 kB
          Jean-Louis MONTEIRO

          Activity

            People

            • Assignee:
              jlmonteiro Jean-Louis MONTEIRO
              Reporter:
              jgallimore Jonathan Gallimore
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: