[Jboss-dev-forums] [Design of Security on JBoss] - Re: Mapping Application Roles to Declarative Rol

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Since it makes sense to associate this mapping at the security-domain level to be utilized at different layers of the app (not just ejb and web)(I am thinking Portal,SEAM, JBPM etc)

wouldn't it make sense to extend the configuration options in the login-config.xml so that you can specify the role/identity mappings kind of like this:


    <application-policy name="security-domain-name">
       
          <login-module>blahblah</login-module>
       
       <role-mapping>
             
                    <application-role>whatever role from login module</application-role>
                    <deployment-role>whatever deployment role it should map to</deployment-role>
             
       </role-mapping>
    </application-policy>

Ofcourse this is just an example, and definitely needs better element names


View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3955932#3955932

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3955932

[Jboss-dev-forums] [Design of Security on JBoss] - Re: Mapping Application Roles to Declarative Rol

[Jboss-dev-forums] [Design of Security on JBoss] - Re: Mapping Application Roles to Declarative Role