jboss 3.0.8-tomcat 4.1.24
Every method must be assigned a permission. In 3.2.x and lower the default permission for a method is excluded. 4.0.x has an option to switch the default to unchecked.
Thank you very much for your help.
That every method must have method permissions is understood, and its the way we do it. But astonishingly if I do not grant *, so grant rights to all methds, but on method level I cannot invoke the create method of the home interface anymore. The SecurityInterceptor do not accept any calls to the home interface. From my experience, I never had to grant rights to the home interfaces of beans why do I get this SecurityException when working with the home-stub. Am I wrong do? Do I have to grant rights to the homeInterfaces create Method, and where do I have to do this, in the ejb-jar, jboss deployment descriptor or in the container configuration?
Well, if I said permission must be explicitly granted to those methods that should be accessible, why is it astonishing that home method also need permissions granted?
My understanding, but I might be wrong, was that I can only secure the Bean itself and not the home stub.
Will this work? Im'going to try it,
thanks for your help,
That syntax applies to both the home, local home, remote and local interfaces.