I'm trying to secure a web service which is an EJB. I'm trying to accomplish this by adding the following jboss.xml in the META-INF folder.
<?xml version="1.0"?> <!DOCTYPE jboss PUBLIC "-//JBoss//DTD JBOSS 4.0//EN" "http://www.jboss.org/j2ee/dtd/jboss_4_2.dtd"> <jboss> <security-domain /> <enterprise-beans> <session> <ejb-name>MyEJB</ejb-name> <configuration-name>MyEJB Web Service Config</configuration-name> </session> </enterprise-beans> <container-configurations> <container-configuration> <container-name>MyEJB Web Service Config</container-name> <security-domain>java:/jaas/mydomain</security-domain> </container-configuration> </container-configurations> </jboss>
@Stateless(name="MyEJB") @WebService(endpointInterface="...", name = "...", targetNamespace = "...", serviceName = "...") @WebContext(urlPattern = "/webservice", authMethod = "BASIC", transportGuarantee = "NONE", secureWSDLAccess = false)