[Jboss-dev-forums] [Design of Security on JBoss] - Re: Mapping Application Roles to Declarative Rol

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

"soh...@jb..." wrote : Since it makes sense to associate this mapping at the security-domain level to be utilized at different layers of the app (not just ejb and web)(I am thinking Portal,SEAM, JBPM etc)
  | 
  | wouldn't it make sense to extend the configuration options in the login-config.xml so that you can specify the role/identity mappings kind of like this:
  | 
  | 
  |     <application-policy name="security-domain-name">
  |        
  |           <login-module>blahblah</login-module>
  |        
  |        <role-mapping>
  |              
  |                     <application-role>whatever role from login module</application-role>
  |                     <deployment-role>whatever deployment role it should map to</deployment-role>
  |              
  |        </role-mapping>
  |     </application-policy>
  | 
  | Ofcourse this is just an example, and definitely needs better element names
  | 
  | 

Close.  The RoleMappingLoginModule uses a properties file to specify the mapping.

View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3955940#3955940

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3955940

[Jboss-dev-forums] [Design of Security on JBoss] - Re: Mapping Application Roles to Declarative Rol

[Jboss-dev-forums] [Design of Security on JBoss] - Re: Mapping Application Roles to Declarative Role