Jboss 在EAP 7中从独立客户端调用EJB时出现问题
我将Weblogin应用程序迁移到JBoss EAP 7.1 但当我从浏览器调用API时,我有一个例外: WFLYEJB0364:对方法的调用:public abstract java.util.List com.medtronic.diabetes.carelink.hcp.service.UserService.getCountryLanguages(java.lang.String,com.medtronic.diabetes.carelink.hcp.persistence.model.ApplicationType) 不允许对bean执行以下操作:UserServiceImpl 用户服务方法签名:Jboss 在EAP 7中从独立客户端调用EJB时出现问题,jboss,migration,jboss7.x,weblogic12c,Jboss,Migration,Jboss7.x,Weblogic12c,我将Weblogin应用程序迁移到JBoss EAP 7.1 但当我从浏览器调用API时,我有一个例外: WFLYEJB0364:对方法的调用:public abstract java.util.List com.medtronic.diabetes.carelink.hcp.service.UserService.getCountryLanguages(java.lang.String,com.medtronic.diabetes.carelink.hcp.persistence.model.
@PermitAll
List<LanguageDefinitionItemDto> getCountryLanguages(String countryCode, ApplicationType type);
如果我删除@PermitAll注释,它仍然不起作用
请解释一下这个安全角色在哪里使用,以及为什么?我是否需要将此管理员和用户添加到jboss安全应用程序领域
有效。但是它会有负面影响吗?在standalone-full.xml中删除cofig
对我有帮助
<security-role-assignment>
<role-name>admin</role-name>
<principal-name>adminGroup</principal-name>
</security-role-assignment>
<security-role-assignment>
<role-name>user</role-name>
<principal-name>userGroup</principal-name>
</security-role-assignment>
<!-- session configuration -->
<session-descriptor>
<cookie-secure> true </cookie-secure>
<persistent-store-type> replicated_if_clustered </persistent-store-type>
<cookie-http-only> false </cookie-http-only>
<url-rewriting-enabled> false </url-rewriting-enabled>
<timeout-secs> 1800 </timeout-secs>
</session-descriptor>
<security-domain name="mySecurityDomain" cache-type="default">
<authentication>
<login-module code="Database" flag="required">
<module-option name="dsJndiName" value="java:/jdbc/powds"/>
<module-option name="principalsQuery" value="SELECT password FROM DDMS_ACCOUNT WHERE user_name = ?"/>
<module-option name="rolesQuery" value="SELECT group_name, 'Roles' FROM DDMS_ACCOUNT_GRP_ASSOC WHERE user_name = ?"/>
</login-module>
</authentication>
</security-domain>
</security-domains>
<security-role>
<role-name>admin</role-name>
</security-role>
<security-role>
<role-name>user</role-name>
</security-role>
Principal: anonymous
:callerRunAs=null:callerRunAs=null:ejbRestrictionEnforcement=false:ejbVersion=2.0];Action=authorization;Source=org.jboss.security.plugins.javaee.EJBAuthorizationHelper;policyRegistration=null;Exception:=PBOX00017: Access denied: authorization failed ;
2019-12-17 10:59:59,177 TRACE [org.jboss.security] (default task-7) PBOX00354: Setting security roles ThreadLocal: null