Security role references assembly settings

Use the Application Assembly Tool (AAT) to define the role name sand map them to the actual run-time roles in the environment with the role-link element.

To get to this panel in the AAT, have already created a bean. After creating a bean, click the EJB module > <bean_type> (session beans, for example) > <session_bean>. Security role references display in the navigation panel.

 

Name

Specifies the name of a security role reference used in the application code.

For example, if the name is boss, then the AccountBean can make a decision based on whether the user executing a method is granted the role of a boss.

Data type: String

 

Link

Specifies the name of a security role defined in the encompassing application.

The role reference is linked to this name. For example, the AccountBean code uses a role named boss. The Account Bean is a part of an enterprise application, FinanceApp, that has a role named Manager. If the link specifies "Manager," then when the bean makes a call to isCallerInRole("boss"), the result is true if and only if the user, who invoked the method, has the FinanceApp Manager role granted. The security role reference is the name used by an application component or module, and the link name is the name defined in the deployment descriptor of the encompassing application. The link maps the name used in the component to a corresponding name in the application.

Data type: String

 

Description

Contains text describing the security role.

Data type: String