Hello,
I am trying out to implement security in EJB3, with stand alone client. Here is the code.
Client
LoginModule
CallbackHandler
Bean method
When I print "name" property of principal in bean, I am not getting the name I had set in the NameCallback. Is there any flaw in this implementation? I am having this doubt because I am not prompting for userName and password in callback handler. Instead I am directly passing userName and password in the constructor. Is this implementation legal? I have done this because, I want to integrate this in the
servlet later. I am not using
J2EE authentication in the web layer and I need to use EJB security.
Waiting for some help. Thanks in advance.
Thanks & Regards,
Vishal S Shukla (SCJP 93%, SCWCD 94%, SCBCD 100%)