Return-Path: 
 <dev-return-12376-apmail-geronimo-dev-archive=geronimo.apache.org@geronimo.apache.org>
Delivered-To: apmail-geronimo-dev-archive@www.apache.org
Received: (qmail 9352 invoked from network); 5 May 2005 18:37:39 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199)
  by minotaur.apache.org with SMTP; 5 May 2005 18:37:39 -0000
Received: (qmail 29095 invoked by uid 500); 5 May 2005 18:38:52 -0000
Delivered-To: apmail-geronimo-dev-archive@geronimo.apache.org
Received: (qmail 28989 invoked by uid 500); 5 May 2005 18:38:52 -0000
Mailing-List: contact dev-help@geronimo.apache.org; run by ezmlm
Precedence: bulk
list-help: <mailto:dev-help@geronimo.apache.org>
list-unsubscribe: <mailto:dev-unsubscribe@geronimo.apache.org>
List-Post: <mailto:dev@geronimo.apache.org>
Reply-To: dev@geronimo.apache.org
Delivered-To: mailing list dev@geronimo.apache.org
Received: (qmail 28926 invoked by uid 99); 5 May 2005 18:38:52 -0000
X-ASF-Spam-Status: No, hits=0.0 required=10.0
	tests=
X-Spam-Check-By: apache.org
Received-SPF: pass (hermes.apache.org: local policy)
Received: from smtp104.mail.sc5.yahoo.com (HELO smtp104.mail.sc5.yahoo.com)
 (66.163.169.223)
  by apache.org (qpsmtpd/0.28) with SMTP; Thu, 05 May 2005 11:38:50 -0700
Received: from unknown (HELO ?192.168.1.5?) (david?jencks@66.93.38.137 with
 plain)
  by smtp104.mail.sc5.yahoo.com with SMTP; 5 May 2005 18:36:15 -0000
Mime-Version: 1.0 (Apple Message framework v619.2)
In-Reply-To: <925104237.1115315950835.JavaMail.jira@ajax.apache.org>
References: <925104237.1115315950835.JavaMail.jira@ajax.apache.org>
Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
Message-Id: <2c796c2b2623967bb368c4e6a75e5c63@yahoo.com>
Content-Transfer-Encoding: 7bit
From: David Jencks <david_jencks@yahoo.com>
Subject: Re: [jira] Commented: (GERONIMO-317) Support for method-permissions
 in the web.xml in Tomcat
Date: Thu, 5 May 2005 11:36:14 -0700
To: dev@geronimo.apache.org
X-Mailer: Apple Mail (2.619.2)
X-Virus-Checked: Checked
X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N

FWIW I think what david is asking for here is what you get using the  
JACC tomcat realm.  I don't see method-permissions mentioned.  The idea  
is to use the geronimo permissions-role mapping rather than the  
"identity" non-mapping supplied by tomcat that IIRC you can still get  
using the tomcat JAAS realm.

david jencks

On May 5, 2005, at 10:59 AM, Jeff Genender (JIRA) wrote:

>      [  
> http://issues.apache.org/jira/browse/GERONIMO-317? 
> page=comments#action_64574 ]
>
> Jeff Genender commented on GERONIMO-317:
> ----------------------------------------
>
> David, can you be more specific by method-permissions in the web.xml?   
> I am assuming you are referring to method permissions of EJB?  AFAIK,  
> web.xml does not have method permissions.  Are you referring to the  
> web-resource and user-data constraints?  These are now supported.
>
>> Support for method-permissions in the web.xml in Tomcat
>> -------------------------------------------------------
>>
>>          Key: GERONIMO-317
>>          URL: http://issues.apache.org/jira/browse/GERONIMO-317
>>      Project: Geronimo
>>         Type: Task
>>   Components: web, Tomcat, security, deployment
>>     Reporter: David Blevins
>>     Assignee: Alan Cabrera
>
>>
>> Security roles in the web.xml should be linked to roles defined in a  
>> Geronimo security realm and not the Tomcat security realm provider.
>
> -- 
> This message is automatically generated by JIRA.
> -
> If you think it was sent incorrectly contact one of the administrators:
>    http://issues.apache.org/jira/secure/Administrators.jspa
> -
> For more information on JIRA, see:
>    http://www.atlassian.com/software/jira
>