Example application server security scenario

Portlet Factory, Version 6.1.2

Example application server security scenario

This is an application server security scenario.
URL: http://server:port/myproject/webengine/mysubfolder/MyModel
Resolves to the model stored in .../WEB-INF/models/mysubfolder/MyModel
Model Id: "mysubfolder/MyModel"
AppContext (where the IBM® WebSphere Portlet Factory WAR is installed): "myproject"
Servlet within the WebSphere Portlet Factory WAR that executes WebApp-based models: "webengine"
Example Security Constraint (would be in WEB-INF/web.xml):
<security-constraint id="SecurityConstraint_n"> <web-resource-collection id="WebResourceCollection_1"> <web-resource-name>My Protected models</web-resource-name> <url-pattern>/webengine/mysubfolder/*</url-pattern> </web-resource-collection> <auth-constraint id="AuthConstraint_1"> <description>Roles allowed to execute models via webengine, under mysubfolder.</description> <role-name>FactoryAdministrators</role-name> </auth-constraint> </security-constraint>

Parent topic: Overview: security methodologies

Library | Support |