Security - IV

• javax.ejb.EJBContext interface supports two methods:

  • getCallerPrincipal() returns the name of the principal associated with the caller.
  • isCallerInRole() returns whether the principal associated with the caller is in the specified role.

• This approach allows beans implementation to enforce further security restrictions. Assume that all the sales personnel has a permission to execute the same method but each one of them might have different limits. Defining a sub-roles based on this functional difference explodes the number of roles.

Previous slide

Next slide

Back to first slide

View graphic version