> Hi,
>
> My question also relates to security.
> How can we map OS level usergroups to J2EE security roles? In the XML
> descriptors, we can only map roles to methods, EJBs, etc. But how to map
> real users to roles? (Please let me know your answers for both Windows and
> Solaris platforms!)
>
> Thanks,
>
> Tibor
user to role mapping is done in XML descriptors as well. Heres an excerpt
from my orion-application.xml:
<security-role-mapping name="admins">
<group name="admins" />
</security-role-mapping>
<security-role-mapping name="cse">
<user name="cse" />
</security-role-mapping>
in this case, the role names and the user/group names are identical. The
group/user is the entity that is verified by the user management, which can
be configured in the same file with the <user-manager> element. The default
user management goes to the file principals.xml.
HTH
