Assign users and groups to roles using an assembly tool


 

+

Search Tips   |   Advanced Search

 

After creating new EJB roles and Web roles, if we know the user registry used in the WAS environment, we can use assembly tools to assign users and groups to these roles.

Alternatively, we can assign assign users and groups to roles using the admin console.

To assign users and groups to roles using an assembly tool...

  1. In the Project Explorer view of an assembly tool, right-click an enterprise application project, or EAR file, and click...

    Open With | Deployment Descriptor Editor

    An application deployment descriptor editor opens on the EAR file. To access information about the editor, press F1 and click Application deployment descriptor editor.

  2. Click the Security tab and, under the main panel, click Add.

  3. In the Add Security Role wizard, name and describe the security role. Click Finish.

  4. Under WebSphere Bindings, select the user or group extension properties for the security role. Available values include: Everyone, All authenticated users, and Users/Groups.

  5. If we selected Users/Groups, click Add beside the Users or Groups panes. In the wizard that opens, specify a user or group name and click Finish. Repeat this step until you added all the users and groups to which the security role applies.

  6. Close the application deployment descriptor editor and, when prompted, click Yes to save the changes.

 

Results

The ibm-application-bnd.xmi or ibm-application-bnd.xml file in the application contains the users and groups-to-roles mapping table, which is the authorization table. For Java EE V5 applications, the ibm-application-bnd.xml file contains the authorization table.

 

Next steps

After securing an application, install the application using the admin console.

 

Related concepts

Web component security
Role-based authorization

 

Related tasks


Assembling applications
Assigning users and groups to roles

 

Related


Security: Links