Win a copy of High Performance Python for Data Analytics this week in the Python forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Paul Clapham
  • Ron McLeod
  • Bear Bibeault
  • Liutauras Vilda
Sheriffs:
  • Jeanne Boyarsky
  • Tim Cooke
  • Junilu Lacar
Saloon Keepers:
  • Tim Moores
  • Tim Holloway
  • Stephan van Hulst
  • Jj Roberts
  • Carey Brown
Bartenders:
  • salvin francis
  • Frits Walraven
  • Piet Souris

Security question

 
Ranch Hand
Posts: 290
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi Folks, could you please help me with this question :

"If the <run-as> security identity specifies a principal other than the caller of the enterprise bean , the method tests the principal that represents the one given by the <runs-as> identity." - FALSE.

- Explanation: " The isCallerInRole(roleString) tests the principal that represents the actual caller of the enterprise bean , not the principal that corresponds to the <run-as> security identity for the bean, if any."


Tks so much!!!
 
Ranch Hand
Posts: 62
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator

Originally posted by Felipe Pittella:
Hi Folks, could you please help me with this question :

"If the <run-as> security identity specifies a principal other than the caller of the enterprise bean , the method tests the principal that represents the one given by the <runs-as> identity." - FALSE.

- Explanation: " The isCallerInRole(roleString) tests the principal that represents the actual caller of the enterprise bean , not the principal that corresponds to the <run-as> security identity for the bean, if any."


Tks so much!!!




Hi Felipe
I think with <run-as> is the additional priviledge given to an bean .(not to a role ) as it needs to acess other bean method which may require greater access control .
so any Principal with the some roles call this bean method which in turn call another bean method then only the principal will get assigned this additional role so isCallerInRole(..) tests the principal that represents the actual caller of the enterprise bean . Hope it helps..
Thanks
 
The problems of the world fade way as you eat a piece of pie. This tiny ad has never known problems:
Building a Better World in your Backyard by Paul Wheaton and Shawn Klassen-Koop
https://coderanch.com/wiki/718759/books/Building-World-Backyard-Paul-Wheaton
reply
    Bookmark Topic Watch Topic
  • New Topic