Hi, I am trying to implement security through roles in my project. Because i need to use the instance level authroization , i am using the Programmetic authorization. As per my understanding a security identity gets associated with the client after the authentication is done. So during authorization we can use the isCallerInRole(role_name); I have few queries.
1) Where do we attach the Security Identity with the client? 2) where do we define the mapping between the Security roles and the Security Identity. Any comments on this are welcome... Any pointer to a document which talks about security implementation in a J2EE application? I am using weblogic 7.0. Regards, Manoj Kumar. =========================================================================== To unsubscribe, send email to [EMAIL PROTECTED] and include in the body of the message "signoff EJB-INTEREST". For general help, send email to [EMAIL PROTECTED] and include in the body of the message "help".
