Assuming the principal classes are the same, the unauthenticated user
if given the admin role.
IIUC Simon wants to make the default subjects generated by actual
login, which might make this point a bit clearer.
thanks
david jencks
On Feb 6, 2006, at 7:41 AM, Aaron Mulder wrote:
If I have a security configuration block like this, is an
unauthenticated user given the Admin role? Or does role mapping
ignore the default principal?
Thanks,
Aaron
<security>
<default-principal>
<principal class="..." name="bob" />
</default-principal>
<role-mappings>
<role name="Admin">
<principal class="..." name="bob" />
</role>
</role-mappings>
</security>
