I've developed a set of basic EJB3 Stateless session beans and deployed them to JBoss 4.0.4 with jbossws-1.0.1 and am trying to figure out how I secure the webservices to use Basic AUTH.
Since these are deployed in the ejb jar file within the ear and not within a war file, I'm having trouble figuring out which file I need to edit to secure access to these webservices.
I don't mind if the wsdl's are also secured.
I'd preferable like to be able to secure specific webservices and not others if possible.
I've done lots of searches and tried alot of things, but haven't figured it out yet. Any tips?