You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@geronimo.apache.org by "David Jencks (JIRA)" <ji...@apache.org> on 2009/06/30 10:56:47 UTC

[jira] Closed: (GERONIMO-4645) jetty7 ejb web service authentication is turned off

     [ https://issues.apache.org/jira/browse/GERONIMO-4645?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

David Jencks closed GERONIMO-4645.
----------------------------------

    Resolution: Fixed

Reimplemented the web services security stuff in rev 789622.

Generally this uses more of built-in jetty functionality.  The security stuff is handled in a SecurityHandler subclass, and the web service is called from a ServletHandler subclass.  Also the security checks are done with a WebUserDataPermission object.

My guess is that it would be fairly easy to extend this to allow use of jaspi for ejb web services.

> jetty7 ejb web service authentication is turned off
> ---------------------------------------------------
>
>                 Key: GERONIMO-4645
>                 URL: https://issues.apache.org/jira/browse/GERONIMO-4645
>             Project: Geronimo
>          Issue Type: Bug
>      Security Level: public(Regular issues) 
>          Components: Jetty
>    Affects Versions: 2.2
>            Reporter: David Jencks
>            Assignee: David Jencks
>             Fix For: 2.2
>
>
> See JettyContainerImpl.addWebService.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.