0 Replies Latest reply on Oct 2, 2016 12:21 PM by 886274

    Local EJB security




      I have RESTful web service


      public class EducationRest {
          private EducationBean service;
          @Produces({MediaType.APPLICATION_XML, MediaType.APPLICATION_JSON})
          public List<EducationDTO> read() throws NamingException {
              return service.readAllEducations();


      and web.xml security constraints


              <web-resource-name>Administrator permissions</web-resource-name>


      Do I have to specify security constraints again in the ejb-jar.xml for every local EJB or local beans can be unchecked(@PermitAll)?


      public class EducationBean {
        public List<EducationDTO> readAllEducations(){


      Thank you,