I want to implement security feature for the web application with JBoss 4.2.2.
...
How can we achieve it in JBoss?
Another question: We can restrict the user to access the constrainted resources with Http method (in securit-constraint - web level). If that is the case, then why we need to restrict the methods in ejb (in assembly descriptor - application level)?
Mark Henryson wrote:
1. Whether we need the Principals and Roles table with the same column name specific to JBoss.?
Mark Henryson wrote:
2. Whether we can define our own tables for users and user roles.?
Mark Henryson wrote:
What are the corresponding changes needs to be done at jboss-web.xml? PLease throw some light on it.
I'd appreciate it if you pronounced my name correctly. Pinhead, with a silent "H". Petite ad:
a bit of art, as a gift, the permaculture playing cards
https://gardener-gift.com
|