Thanks for this. Yeah, I was aware of this and, in fact, is kind of the
desired effect. Really what I need is for the Oracle database users to be
acting as essentially an LDAP store (since we've not completely got
everything listed in AD at the moment, unfortunately). Their roles would be
limited at the application level, with the actual database access being
carried out (as you point out) by whichever user I create the connection pool
to run under.
Unfortunately at the moment I'm struggling to see how I'll be able to
authenticate/authorise using my standard Oracle users without some creation
of custom realm providers or dodgy hacks!
--
[Message sent by forum member 'Octavius1701']
View Post: http://forums.java.net/node/870065