Chapter 7 Security


317


identity


 identity selection policy, both defined in the deployment descriptor. The


container then uses either the calling component's identity (if the policy is to use the


use caller identity


) or, for 


run as(role name)


, a static identity previously des 


ignated at deployment from the principal identities mapped to the named security


role.


Developers can define component identity selection policies for J2EE Web


and EJB resources, including Web service endpoints. If you want to hold callers


accountable for their actions, you should associate a 


use caller identity


 policy


with component callers. Using the 


run as(role name)


 identity selection policy


does not maintain the chain of traceability and may be used to afford the caller


with the privileges of the component. Code Example 7.6 shows how to configure


client identity selection policies in an enterprise bean deployment descriptor. 












...










 guest 






...




...




Code Example 7.6


Configuring Identity Selection Policies for Enterprise Beans


Code Example 7.7 shows how to configure client identity selection policies in


Web component deployment descriptors. If 


run as


 is not explicitly specified, the


use caller identity


 policy is assumed.








footer






  


 


 


        

 


 

  

    

      
      
 Home 
      | About Us | Network 
      | Services | Support 
      | FAQ | Control Panel 
      | Order Online |
      Sitemap | Contact

      
 

    

  

  




Our web partners:
Inexpensive 
Web Hosting 



Java Web Hosting


personal webspace


webspace php 


linux webhost
 




 html web templates




DreamweaverQuality Web Templates


PSD Web Templates
 





cheap webhost


j2ee web Hosting


buy webspace


ftp webspace


adult webspace
 





frontpage WebHosting


webspace hosting


cheap webhost


Visionwebhosting.net Business web hosting division of Vision Web Hosting Inc.. All rights reserved



aol web hosting