2 Replies Latest reply on Jul 30, 2002 4:00 AM by ytzel

    LoginContext create in a Servlet and passed to an EJB

    Rouiller Newbie


      I have some problems to developpe security aspects of my project on the release JBoss-3.0.0_tomcat-4.0.3.

      I need to hand the LoginContext of a client from a java class (control) used both in a servlet (Servlet/JSP) and in a Stand alone application.

      My control work well with the stand alone java application, but I am unable to figure out how to configure JBoss-Tomcat to run it from a Servlet/JSP.
      When my Servlet call an EJB, the JaasSecurityManager of my Security-domain tell me "Principal=null"!?

      It seems to be that the user LoginContext isn't forwarded in this case. I try the same web-application with Tomcat as stand alone application (not embded in JBoss) and every thing was all right. Same behavior with Jetty!!

      Could somebody help me? Is it possible to handle the LoginContext in a servlet? What I have to configure to make it runnable?

      Thanks a lot for your help (this problem will drive me crazy...).