I'm not sure it JSR289 does address what I'm looking for...
let's say we have this scenario:
client -> container1 -> container2
client authenticates against container1
client calls EJB1 in container1
EJB1 calls EJB2 in container2 using client identity, not container1 identity
if I relay on mutual SSL the call EJB1-EJB2 will use contianer1-certs not client-cert and therefore be executed using the identity from contianer1, not the client.
or am I missing something?
Christian
[Message sent by forum member 'schaarsc' (schaarsc)]
http://forums.java.net/jive/thread.jspa?messageID=279523