Hi Juergen,
That's currently not in plan for JSR-375, but I do agree it would be a
useful feature. We can add it to the list for a follow-on JSR.
Regards,
Will Hopkins
On 03/15/2017 01:03 PM, weberjn_at_gmx.de wrote:
> Dear Expert Group members,
>
> as I understand, there is no portable way for server-side programmatic
> authentication , i.e. to
>
> call a role-protected EJB from un-authenticated servercode, e.g. JEE 7
> batches, timer beans, un-authenticated session beans or JMX beans.
> (Weblogic Server provides a non-portable Programmatic Authentication
> API [1])
>
> Will Java EE Security API standardize this important feature?
>
> Best regards,
> Juergen Weber
>
> [1]
> https://docs.oracle.com/middleware/1221/wls/SCPRG/thin_client.htm#SCPRG
> 221
--
Will Hopkins | WebLogic Security Architect | +1.781.442.0310
Oracle Application Development
35 Network Drive, Burlington, MA 01803