Thanks David. I was referring to option 2.
djencks wrote: > > > On Apr 12, 2009, at 6:48 AM, govinda wrote: > >> >> How to add/remove security Pricipal User/Group without re-deploying >> application? > > I don't understand what you are asking. I can think of two > possibilities: > > 1. You would like to change the identity information for some users. > For instance, add a user or add a group to a user. Depending on how > your security realm is set up, you'd edit this information. For > instance using the property file login module you'd edit the user and > group properties files (I think there's a console page to help with > this). Using an ldap login module you'd modify the ldap data. > > 2. You want to change the principal-role mapping that indicates which > security realm principals are associated with particular application > roles. To do this you need to redeploy the application after editing > the security element in your geronimo plan. > > In order to avoid the need for (2) you should plan your security > carefully so there are enough roles in the application and enough > principals mapped to these roles to distinguish between all the kinds > of users your application needs. > > thanks > david jencks > > >> >> -- >> View this message in context: >> http://www.nabble.com/How-to-add-remove-security-Pricipal-User-Group--tp23011194s134p23011194.html >> Sent from the Apache Geronimo - Dev mailing list archive at >> Nabble.com. >> > > > -- View this message in context: http://www.nabble.com/How-to-add-remove-security-Pricipal-User-Group--tp23011194s134p23022059.html Sent from the Apache Geronimo - Dev mailing list archive at Nabble.com.
