Win a copy of Programmer's Guide to Java SE 8 Oracle Certified Associate (OCA) this week in the OCAJP forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Message Driven Bean security problems

 
I Wayan Saryada
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi all,
Currently I am working on WebLogic application server and have a problem about MDB security. In my application the MDB have to read a JMS administered object from the SUN LDAP server (iPlanet). The JMS AO are configured so that only a member of admin groups can read it. After adding this set of ACI the MDB cannot read the JMS AO, but it works fine if I allow the JMS AO to be read by an anonymous user.
Does anybody have any information regarding to this problem?
Regards,
Wayan
 
Lasse Koskela
author
Sheriff
Posts: 11962
5
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Who the MDB is running as...
Have you defined the run-as identity for the MDB in ejb-jar.xml?
There should be something like:
 
I Wayan Saryada
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thanks for the reply.
Doesn't it the ejb-jar.xml suppose to be like the following? the run-as element must contains role-name element?

Currently I have something like this in my ejb-jar.xml and weblogic-ejb-jar.xml

The weblogic-ejb-jar.xml:

[ May 06, 2003: Message edited by: I Wayan Saryada ]
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic