Hello, I have a web service (from a java class) running in websphere 6.x. secured by basic authentication. I allow different Roles to access the web services, however in some webservices I need to know the role of the authenticated user but have no clue how to get it.
I would love to use IsCallerInRole but this is ejb only? How could I get the required context to use IsCallerInRole?
Other WS engines make the underlying HttpServletRequest available (e.g., for Axis the way to do it is described here). Check the WebSphere documentation if there's a comparable mechanism for that as well.