|
Problem |
I have created a service proxy to interact with a back-end
EIS system, using J2C connectors. I have also developed a session bean,
which uses this service proxy for EIS interaction. This application works
fine on the WebSphere® server. However, when I turn on server security,
defined credential information in the server configuration, I notice that
if I define the Resource Authentication as Container, the
application fails with security error, ico0064e. However, if the Resource
Authentication is defined as Application, the application works
fine. Why?
Note: When you view a Resource Authentication field in the deployment
descriptor, it will be listed as "res-auth". |
|
Cause |
The key to understanding the cause of the failure is that
the created service proxy makes a connection to EIS in a programmatic way.
In other words, it is the proxy (the application) that manages this
connection. In J2EE™ terms, this connection is called component-managed
connection. The other type of connection J2EE defines is
container-managed connection.
J2EE Connector
Architecture (JCA) Specification V1.0 states that:
The application component provider uses a deployment descriptor
element, for example res-auth for EJB
components, to indicate the requirements for one of the above two
approaches. If the res-auth element is set
to Application, the component code performs a
programmatic sign-on to the EIS; if the
res-auth element is
Container, the Application Server takes the
responsibility of setting and managing EIS sign-on. |
|
Solution |
In the scenario that uses a component-managed connection,
the Resource Authentication res-auth needs to be set to
Application so that the application performs the authentication,
and not the container on the server. |
|
|
|
Cross Reference information |
Segment |
Product |
Component |
Platform |
Version |
Edition |
Application Servers |
WebSphere Application Server |
Java 2 Connectivity (J2C) |
AIX, HPUX, iSeries, Linux, Linux Red Hat - i/p Series, Linux zSeries,
Multi-Platform, OS/390, Solaris, Windows, Windows 2000, Windows NT,
Windows Server 2003, Windows XP, z/OS |
5.0, 5.0.0, 5.0.1, 5.0.2, 5.0.2.1, 5.0.2.2, 5.0.2.3, 5.0.2.4, 5.0.2.5,
5.0.2.6, 5.0.3, 5.0.x, 5.1, 5.1.0, 5.1.0.1, 5.1.0.2, 5.1.0.3, 5.1.0.4,
5.1.0.5, 5.1.1, 5.1.x, 5.x |
Edition Independent |
|
|
|
|