-
Feature Request
-
Resolution: Done
-
Major
-
EJB 3.0 RC3
-
None
-
None
I'm using the DatabaseServerLoginModule to map principal and roles (client uses ClientLoginModule)
I have a one SLSB with the following security definitions:
@SecurityDomain("testApp-server")
public class....... {
@RolesAllowed("admin")
public int add(int a, int b)
}
Everything works fine - but I want to move the security domain's declaration to the DD:
I removed the '@SecurityDomain' annotation and added a
<security-domain>java:/jaas/testApp-server</security-domain> element to my jboss-app.xml file.
It doesn't work - everyone can access my "secured" method.
Additional tests I did:
A. I know that the jboss-app.xml is being loaded since I added a service module (SAR) into it - and it is being loaded
B. I tried to replace the name of the security domain with an none-exist security domain and again
nothing happends (not even an error message)
C. I tried both static login configuration (server/conf/login-config.xml) and a dynamic one (using the
DynamicLoginConfig) - yet, nothing happends
- is blocked by
-
EJBTHREE-185 jboss.xml support
- Closed
- is related to
-
EJBTHREE-1115 CLONE -Allow a default <security-domain> element in jboss.xml
- Resolved
- relates to
-
EJBTHREE-646 Allow a per EJB <security-domain> element in jboss.xml
- Closed