(Call me a newbie, if you like.) Trying to use ejb/jboss security frustrated me and I had to remove all of them in my project to get it working. Now that I am confident there is no more problem with the project, I want to re-visit security. But I need someone to hold my hand to the "promise land". But, preferable, if anyone has a small workable EAR (using ejb/jboss security) project, I would appreciate it if you could allow me to use it to compare with mine to identity where I have sinned.
Here is my use case
1. Create a DAO Stateless bean [persistence layer using PostgreSQL]
2. Add security using ejb3 annotation(DeclareRoles, RolesAllowed) and jboss annotation (SecurityDomain)
3 Create Stateless bean [Business logic layer implementing project use cases]
4. Add security using ejb3 annotation(DeclareRoles, RolesAllowed) and jboss annotation (SecurityDomain)
5 Create JSF Web pages and JSF backing bean [Web layer using JSF, Trinidad and Facelets]
6 Add security in web.xml
7 Run web pages and test
Thanks