-
1. Re: Cached Principal's not supported?
paper57 Jan 27, 2005 3:50 PM (in response to paper57)Please disregard, I see tomcat is implemented the same way which works fine...the problem is elsewhere.
-
2. Re: Cached Principal's not supported?
paper57 Jan 27, 2005 4:30 PM (in response to paper57)I apologize for all the posts. It appears that tomcat goes to a lot of trouble to work around this issue. I guess in jboss.net in 3.2 I skirted by by riding on top of the basic authentication done in the servlet container under the covers.
Any suggestions on how to proceed? -
3. Re: Cached Principal's not supported?
starksm64 Jan 28, 2005 10:57 AM (in response to paper57)Try describing exactly what the issue is here as this discussion does not actually tell me what you view as an issue and what security setup of the deployment in question is.
-
4. Re: Cached Principal's not supported?
paper57 Jan 28, 2005 11:53 AM (in response to paper57)Everytime I invoke a method on an EJB through a web service, configured to use basic authentication, my custom login module is invoked.
Contrast this to a sample web app, configured to use basic authentication, which invokes the custom module the first time but not on subsequent requests by the same user.
The login process is very expensive, so obviously I do not want this occuring on every invocation. -
5. Re: Cached Principal's not supported?
starksm64 Jan 29, 2005 2:55 PM (in response to paper57)I need to see how the server side components are secured. What are the associated deployment descriptors? It may be easier to simply create a bug report in jira with an example deployment.
http://jira.jboss.com/jira/browse/JBWS -
6. Re: Cached Principal's not supported?
paper57 Feb 10, 2005 11:45 AM (in response to paper57)I have done so here: http://jira.jboss.com/jira/browse/JBWS-106