aspose file tools*
The moose likes EJB and other Java EE Technologies and the fly likes Switching Security Context with JAAS Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Java 8 in Action this week in the Java 8 forum!
JavaRanch » Java Forums » Java » EJB and other Java EE Technologies
Bookmark "Switching Security Context with JAAS" Watch "Switching Security Context with JAAS" New topic
Author

Switching Security Context with JAAS

Jay Sam
Greenhorn

Joined: Feb 27, 2005
Posts: 27
Hi,

this is my scenario:

1) client authenticates via JAAS
2) gets reference to stateful session EJB
3) calls some methods
4) at some point, client decides to re-authenticate, because he needs to call more privileged methods. So he authenticates as a more privileged user.
5) client calls methods on stateful session EJB with new, more privileged status

My questions:
a) will I be able to use the same EJB reference, although having switched security context by reauthenticating to JAAS ?
b) will state in the stateful session EJB still be bound to me, or will I have to transfer state to a new session EJB ?
c) do I - as authenticated user with JAAS, have to call every method on the EJB with the doAS(Subject, EJBHandle) syntax ?

Regards,

Jay
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Switching Security Context with JAAS
 
Similar Threads
JAAS and stateful session beans
ServiceLocator with JAAS authentication ?
ServiceLocator with JAAS ?
J2EE security through entire enterprise app
My SCEA Part 1Study Notes