in my application I have a Session Bean callable
from Role1 and not callable from Role2.
When I try, as Role2, to create the Session Bean
I have a EJBException generated from JBoss (from org.jboss.ejb.plugins.SecurityInterceptor).
Client side I receive a RemoteException but I don't know
how I can understand that this RemoteException is due
to SecurityInterceptor (= insufficient method permission)
instead of any other problem.
1) Is a good thing to modify the SecurityInterceptor class so that the SecuritInterceptor, when it finds an "insufficient method permission",
throws a custom Exception that I can manage client side ?
2) If the answer to question 1 is YES, how must I proceed ?
I generate a customSecurityInterceptor class and I put it
(or a JAR file that contains it) in the directory of my
JBoss instance ?
Many thanks for any help,