Entering content frame

Background documentation Security Authorization Feature

The authorization features restrict access to operations of a Web service to one or more security roles.Security roles may be mapped to users and groups of users in the user administration of the J2EE engine.

Web services using an EJB endpoint can use the security roles in two ways to authorize a request.

·        Calls to a method of the virtual interface can be limited to users belonging to one or more security roles. If different virtual interfaces for an EJB exist (possibly with different sets pre-defined variables), each virtual interface may check against different security roles.

·        Calls to a method of an EJB can be limited to users belonging to one or more security roles. This applies to all virtual interfaces using the protected method as an endpoint.

 

 

 

Leaving content frame