This content has been marked as final.
Show 2 replies
-
1. Re: Caching of subjects in the security manager
adrian.brock Aug 16, 2005 10:53 AM (in response to timfox)One of the reasons for using the interceptor/aspect stack is to allow the security
to be configurable/pluggable.
e.g. rather than requiring acreateConnection(user, password)
it could use an interceptor/aspect to pickup the jaas login during the normalcreateConnection()
just like ejb.
e.g. I don't see a problem with forcing an authentication on every request (like ejb or web),
as long as it is the same user on every request over the connection.
Ideally, the JBoss Messaging security should be a minimal integration with
a reuse of as much as possible from JBoss Security or the role based aspect
as the default implementation. -
2. Re: Caching of subjects in the security manager
adrian.brock Aug 16, 2005 10:54 AM (in response to timfox)One of the reasons for doing JBoss Messaging is to move away from JBossMQ's
"I have to implement everything myself" philosophy and reuse JBoss technology.