File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes EJB and other Java EE Technologies and the fly likes EJB/WebLogic security issue Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Java Interview Guide this week in the Jobs Discussion forum!
JavaRanch » Java Forums » Java » EJB and other Java EE Technologies
Bookmark "EJB/WebLogic security issue" Watch "EJB/WebLogic security issue" New topic

EJB/WebLogic security issue

Muness Alrubaie

Joined: Oct 27, 2005
Posts: 1
We have an ejb that uses weblogic security authentication.

I am trying to connect to another EJB, on a different server that doesn't use the weblogic security (it doesn't do any auth).

But, if I try to connect from our ejb, it passes on the security credentials to server 2 (with no auth). That server then comes back with: java.lang.SecurityException: [Security:090398]Invalid Subject: principals=[mba29]

Any ideas of how I may be able to connect to the remote EJB by unsetting the user authentication before calling it? Or to force a single user name (I think we can get the other group to add one user for our connections)?
I agree. Here's the link:
subject: EJB/WebLogic security issue
It's not a secret anymore!