Although checking very carefully for any possible mistake, I cannot get this scenario to work. The provided solution does not work as expected too. Here is what happens:

  • If you are not logged in, you can do everything, although forbidden in the security configuration.
  • If you manually login using the Login.jsp directly, it works as expexted: custrep is not alloed to update any data, admin can do everything.
  • After logging out, you can again do everything.

Can you please double check your scenario?

Is there any chance to debug JEE security? How?


--Afuechsel 08:03, 11 August 2010 (UTC)

Not logged in. Log in, Register

By use of this website, you agree to the NetBeans Policies and Terms of Use. © 2012, Oracle Corporation and/or its affiliates. Sponsored by Oracle logo