Java EE 6 not only allows us to package EJBs into their own module, but also to deploy our Beans directly into the WAR module that will use them. We will see how to secure both of these scenarios.
Often, we don't need to
package Enterprise Beans into a separated module; we can collocate them inside the same WAR client module and simplify our application architecture. Now, we will develop a simple EJB that will be injected into the existing
MyProtectedServlet class. We will also see the security context to be passed and the configuration we need to do.
Let's start simple; we can code this really simple
Stateless Bean with no interface view, as shown in the following code snippet: ...