> -----Original Message----- > From: David Jencks [mailto:[EMAIL PROTECTED] > Sent: Tuesday, January 06, 2004 8:52 PM > > > I think I understand now and agree that this is a useful case to > > support. > > Let me state how I understand this. We're looking to support > > > > trival principals --1x1-- roles --nxm-- methods > > > > where we have LoginModules that stuff trival principals into subjects, > > i.e. > > do the user --nxm-- trivial principals mapping. Off the top of my > > head, I > > think that the simplification should take place in the tool that > > creates the > > security descriptor so that it looks like > > > > roles --nxm-- methods > > > > to the deployer. > > > > What do you think? Did I make sense? > > I think we agree. One thing I'm not sure of is what and where the > deployment tool is. If the geronimo xml is input to it, a shorter > notation for the trivial 1x1 mapping would be desirable. If geronimo > xml is output from the tool, a shorter notation would be unnecessary.
I was thinking of it as the latter. Regards, Alan
