-
1. Re: Cached Principal's not supported?
Please disregard, I see tomcat is implemented the same way which works fine...the problem is elsewhere.
-
2. Re: Cached Principal's not supported?
I apologize for all the posts. It appears that tomcat goes to a lot of trouble to work around this issue. I guess in jboss.net in 3.2 I skirted by by riding on top of the basic authentication done in the servlet container under the covers.
Any suggestions on how to proceed? -
3. Re: Cached Principal's not supported?
Try describing exactly what the issue is here as this discussion does not actually tell me what you view as an issue and what security setup of the deployment in question is.
-
4. Re: Cached Principal's not supported?
Everytime I invoke a method on an EJB through a web service, configured to use basic authentication, my custom login module is invoked.
Contrast this to a sample web app, configured to use basic authentication, which invokes the custom module the first time but not on subsequent requests by the same user.
The login process is very expensive, so obviously I do not want this occuring on every invocation. -
5. Re: Cached Principal's not supported?
I need to see how the server side components are secured. What are the associated deployment descriptors? It may be easier to simply create a bug report in jira with an example deployment.
http://jira.jboss.com/jira/browse/JBWS -
6. Re: Cached Principal's not supported?
I have done so here: http://jira.jboss.com/jira/browse/JBWS-106