I'm trying to add authentication to an XMBean exposed by JRMPProxyFactory, but the interceptor I placed before XMBean invoke() does not see credential at all. When I trace it back on the call stack, I see JRMPInvoker has "CREDENTIAL" in MarshalledInvocation payload but didn't pass up(?). Since illegal client can bypass JRMPInvoker anyway, I have to have XMBean guarded. Does this mean I can't have the convenience of JRMPInvoker combined with auth interceptor?
(I tried both JBoss 3.2.7 and 4.0.2)
thanks,
Amanda