Can you send the granted.policy in
domains/domain1/generated/policy/<module name>/<ejb name>/granted.policy
Mine looks like this
grant principal com.sun.enterprise.deployment.PrincipalImpl "franck" {
permission javax.security.jacc.EJBMethodPermission "TestSecurityBean",
"testSecurityCall,Remote,";
};
grant principal com.sun.enterprise.deployment.PrincipalImpl "lolo" {
permission javax.security.jacc.EJBMethodPermission "TestSecurityBean",
"testInvalidRoleCall,Remote,";
};
grant principal com.sun.enterprise.deployment.PrincipalImpl "chack" {
permission javax.security.jacc.EJBMethodPermission "TestSecurityBean",
"testInvalidRoleCall,Remote,";
};
I am using the latest build (built from code). Can you try upgrading
your glassfish to the latest? Can you send me your ejb module ?
Thanks
Harsha
glassfish_at_javadesktop.org wrote:
> Just a precision. The exception is thrown only on the method call of the bean ( not in the lookup).
>
> Is it possible that the lookup is successful if the client has not been authenticated. I think the problem does not depend on the realm but on identity propagation.
> [Message sent by forum member 'franck_mosse' (franck_mosse)]
>
> http://forums.java.net/jive/thread.jspa?messageID=225207
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe_at_glassfish.dev.java.net
> For additional commands, e-mail: users-help_at_glassfish.dev.java.net
>
>