Hi Ng,
I'm a lurker of this NG, but today I'm looking for your help ;-)

Preface:
I'm learning Ejb 3.0 and Web Services, both argument from security
side (authentication and confidentional conversation).

I wrote a stateless ejb with power of annotations (java 1.5 spec) and
a simple client. All works.
Then, I try to protect a method and I modify client with
authentication lines. All works.
Then, I expose a web service  through  this stateless ejb.
Consequently, I build another client act to deal of web service.All
works.

Now:
I want protect this web service (exposed by ejb) with login and
password. Now, I try with the same annotations I've used for ejb. It's
possible?  But, my great dubt is the class Client... Have you got a
example of autenthication sent by client?

I post you source code if you believe it's useful to understand. :)

Uhm.. I'm sorry for my bad english :(

Bye!

Shad
P.s. another question: in yuor opinion, what are services supply by a
Ejb container? :-o