6 Replies Latest reply on Mar 29, 2006 9:09 PM by elkner

@Service + @Management + @Remote + @SecurityDomain?

elkner Mar 27, 2006 7:25 PM

Is this bean (@Service + @Management + @Remote + @SecurityDomain) possible ?

For my case, @Service + @Management + @Remote works, but as soon as I add @SecurityDomain (since I do not want, that unauthenticated users are allowed to invoke service methods), I get an exception like:

2006-03-28 00:03:03,649 WARN [ScannerThread:org.jboss.system.ServiceController:424] - Problem starting service jboss.j2ee:ear=foo.ear,jar=foo-ejb-0.0.9a.jar,name=UpdateService,service=EJB3,type=ManagementInterface
javax.ejb.EJBAccessException: Authentication failure
at org.jboss.ejb3.security.Ejb3AuthenticationInterceptor.handleGeneralSecurityException(Ejb3AuthenticationInterceptor.java:46)
at org.jboss.aspects.security.AuthenticationInterceptor.invoke(AuthenticationInterceptor.java:71)
at org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:98)

The bean in question (UpdateService) is annotated with @Service + @SecurityDomain("bla"), the IF it implements with @Remote, @Management.

@Service is required, since I need a singleton.
@Management is required, since I want the "service" get started automatically at deployment/server startup (starts a TimerTask to do stuff in a cronjob manner)
@Remote to make it easy, to access the "service" from a remote client
@SecurityDomain because of @Remote ;-)

Any hints ?

1. Re: @Service + @Management + @Remote + @SecurityDomain?

bdecoste Mar 28, 2006 9:53 PM (in response to elkner)

This is a bug. I've created a JIRA task: http://jira.jboss.com/jira/browse/EJBTHREE-492
Actions
2. Re: @Service + @Management + @Remote + @SecurityDomain?

elkner Mar 29, 2006 1:52 AM (in response to elkner)

Was slightly faster: http://jira.jboss.com/jira/browse/EJBTHREE-491 ;-)
Actions
3. Re: @Service + @Management + @Remote + @SecurityDomain?

bdecoste Mar 29, 2006 11:20 AM (in response to elkner)

For the short term, if your Management interface does not implement the lifecycle methods (create, start, stop, destroy), the problem will not occur. The authentication exception occurs when the Service create method is invoked. Working on a long term fix.
Actions
4. Re: @Service + @Management + @Remote + @SecurityDomain?

elkner Mar 29, 2006 2:12 PM (in response to elkner)

Thanx for the info. Unfortunately I need start() and stop() to fire up/cancel timer threads :(

BTW: What are your estimations? Is it possible to have it fixed in RC2?
Actions
5. Re: @Service + @Management + @Remote + @SecurityDomain?

bdecoste Mar 29, 2006 6:35 PM (in response to elkner)

This is fixed, but won't be available until our next release - EJB RC6.
Actions
6. Re: @Service + @Management + @Remote + @SecurityDomain?

elkner Mar 29, 2006 9:09 PM (in response to elkner)

Thax a lot. Hope it doesn't take too long ;-)
Actions

Go to original post