I am using JAAS with Weblogic and Oracle. I am able to authenticate users from the database server. Unable to authorize the same.

I have One EJB Auth.java. There I am authenticating and calling Prov.java (another EJB). I have specified the security role in that EJB.


try {
} catch(LoginException le) {



I am returning a dirrent Principal other than the one which I specified in Prov.java (EJB). But it still calls the EJB whereas it should'n be.

Please help..........

Partha Sarathi