Uploaded image for project: 'EJB 3.0'
  1. EJB 3.0
  2. EJBTHREE-807

Bean meta data does not include security role references

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Done
    • Icon: Major Major
    • AS 4.2.0 GA
    • EJB 3.0 RC9 - Patch 1
    • Security
    • None
    • Medium

      ====================================
      <session>
      <ejb-name>SecTestEJB</ejb-name>
      <business-local>xxx</business-local>
      <ejb-class>xxx</ejb-cla
      ss>
      <security-role-ref>
      <role-name>ADMIN</role-name>
      <role-link>Administrator</role-link>
      </security-role-ref>
      <security-role-ref>
      <role-name>MGR</role-name>
      <role-link>Manager</role-link>
      </security-role-ref>
      </session>
      ==================================================

      There can be security role references configured at the bean level in ejb-jar.xml

      The metadata that is parsed by the ejb3 metamodel does not recognize the security role references.

      The isCallerInRole checks on the EnterpriseContext needs to be aware of these security role references.

              anil.saldhana Anil Saldanha (Inactive)
              anil.saldhana Anil Saldanha (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

                Created:
                Updated:
                Resolved: