ReadOnlyAccessFilter org.jboss.invocation.http.servlet.ReadOnlyAccessFilter readOnlyContext readonly The top level JNDI context the filter will enforce read-only access on. If specified only Context.lookup operations will be allowed on this context. Another other operations or lookups on any other context will fail. Do not associate this filter with the JMXInvokerServlets if you want unrestricted access. invokerName jboss:service=Naming The JMX ObjectName of the naming service mbean ReadOnlyAccessFilter /readonly/* EJBInvokerServlet The EJBInvokerServlet receives posts containing serlized MarshalledInvocation objects that are routed to the EJB invoker given by the invokerName init-param. The return content is a serialized MarshalledValue containg the return value of the inovocation, or any exception that may have been thrown. org.jboss.invocation.http.servlet.InvokerServlet invokerName jboss:service=invoker,type=http The RMI/HTTP EJB compatible invoker 1 EJBInvokerHAServlet The EJBInvokerHAServlet receives posts containing serlized MarshalledInvocation objects that are routed to the EJB invoker given by the invokerName init-param. The return content is a serialized MarshalledValue containg the return value of the inovocation, or any exception that may have been thrown. org.jboss.invocation.http.servlet.InvokerServlet invokerName jboss:service=invoker,type=httpHA The HA-RMI/HTTP EJB compatible invoker 1 JMXInvokerServlet The JMXInvokerServlet receives posts containing serlized MarshalledInvocation objects that are routed to the invoker given by the the MBean whose object name hash is specified by the invocation.getObjectName() value. The return content is a serialized MarshalledValue containg the return value of the inovocation, or any exception that may have been thrown. org.jboss.invocation.http.servlet.InvokerServlet 1 JNDIFactory A servlet that exposes the JBoss JNDI Naming service stub through http. The return content is a serialized MarshalledValue containg the org.jnp.interfaces.Naming stub. This configuration handles requests for the standard JNDI naming service. org.jboss.invocation.http.servlet.NamingFactoryServlet namingProxyMBean jboss:service=invoker,type=http,target=Naming proxyAttribute Proxy 2 HAJNDIFactory A servlet that exposes the JBoss JNDI Naming service stub through http, but only for a single read-only context. The return content is a serialized MarshalledValue containg the org.jnp.interfaces.Naming stub. org.jboss.invocation.http.servlet.NamingFactoryServlet namingProxyMBean jboss:service=invoker,type=http,target=HAJNDI proxyAttribute Proxy 2 ReadOnlyJNDIFactory A servlet that exposes the JBoss JNDI Naming service stub through http, but only for a single read-only context. The return content is a serialized MarshalledValue containg the org.jnp.interfaces.Naming stub. org.jboss.invocation.http.servlet.NamingFactoryServlet namingProxyMBean jboss:service=invoker,type=http,target=Naming,readonly=true proxyAttribute Proxy 2 JNDIFactory /JNDIFactory/* HAJNDIFactory /HAJNDIFactory/* ReadOnlyJNDIFactory /ReadOnlyJNDIFactory/* EJBInvokerServlet /EJBInvokerServlet/* EJBInvokerHAServlet /EJBInvokerHAServlet/* JMXInvokerServlet /JMXInvokerServlet/* JMXInvokerServlet /JMXInvokerHAServlet/* JMXInvokerServlet /readonly/JMXInvokerServlet/* JNDIFactory /restricted/JNDIFactory/* JMXInvokerServlet /restricted/JMXInvokerServlet/* HttpInvokers An example security config that only allows users with the role HttpInvoker to access the HTTP invoker servlets /restricted/* GET POST HttpInvoker BASIC JBoss HTTP Invoker HttpInvoker