I have tried the security in jboss, using roles and basic authentication. But really i nead something more!! i want bound access to one instance of an ejb..
i have an ejb that means "resource" and i have a lot resource: forum,faqs,webmail,... up to 50.
can i bound access for each user and for each resource?
I think 2 options:
- Create an ejb for each resource "forum" , "faq", ..
The problem: i have a lot of resources...
- Create an ACL with entity beans with role and resource
The problem: every time someone acces resource ejb, i have to search in ACL!
thera are some pattern?