Hi,

I wanna to configure security for my ejb and I have some problems :)
I use Eclipse Galileo for JEE Developers + JBoss 5.0.1.GA

1. There are tree @SecurityDomain annotations:
@org.jboss.ejb3.annotation.SecurityDomain
@org.jboss.aspects.security.SecurityDomain
@org.jboss.security.annotation.SecurityDomain

Which of them I should use? Only @org.jboss.ejb3.annotation.SecurityDomain forces applying security because I have EJBAccessException, but...

Below my steps with configuring security
1. Define domain in /server/default/conf/login-config.xml
<application-policy name="Sandbox">

<login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule" flag="required">
<module-option name="usersProperties">users.properties</module-option>
<module-option name="rolesProperties">roles.properties</module-option>
</login-module>

</application-policy>

2. Then I put properties to source folder of EJB project
user.properties
guest=pass
admin=admin

roles.properties
guest=LOGGED
admin=SUPER,LOGGED

3. I added security domain to my ejb
import @org.jboss.ejb3.annotation.SecurityDomain;

@Stateless(name="Service")
@SecurityDomain("Sandbox",)
@PermitAll
public class ServiceBean implements ServiceRemote {
public String getDescription() {...}
...
}

4. And now we have client code:
Properties prop = new Properties();
prop.put(Context.INITIAL_CONTEXT_FACTORY, "org.jboss.security.jndi.JndiLoginInitialContextFactory");
prop.put(Context.URL_PKG_PREFIXES, "org.jboss.naming:org.jnp.interfaces");
prop.put(Context.PROVIDER_URL, "jnp://localhost:1099");
prop.put(Context.SECURITY_PRINCIPAL, "guest");
prop.put(Context.SECURITY_CREDENTIALS, "pass");

InitialContext ctx = new InitialContext(prop);

//obtaining remote reference goes here...

System.out.println( service.getDescription() );

And, every time EJBAccessException is being throwed.

Anyone knows what i did wrong?

Thanks for help