-
1. Re: Servlet 3.0 AsyncContext and EJB @RolesAllowed
antlia Dec 16, 2014 3:57 AM (in response to antlia)I understand that JEE Specs report that:
“Propagation of Security Identity in EJB™ Calls” on page 15-176 are available only to threads executing the initial request or when the request is dispatched to the container via the
AsyncContext.dispatch
method. Java Enterprise Edition features may be available to other threads operating directly on the response object via theAsyncContext.start(Runnable)
method.But I cannot understand why I've a non-anonymous principal only in Servlet container and not in the EJB part.
IMHO having a principal in a container (any container), should imply a non-anonymous principal in all the containers associated to the same security domain.
-
2. Re: Servlet 3.0 AsyncContext and EJB @RolesAllowed
jaikiran Dec 31, 2014 11:42 PM (in response to antlia)Can you please post the entire exception stacktrace? Also try enabling TRACE level logging of the org.jboss.security package and post those logs too.