Configuring the server to handle security

Enabling a server to handle security involves configuring the actual server and configuring the deployment file. In order for the server to handle the application, the application needs to specify certain application security attributes in a deployment descriptor file. This recipe addresses these issues.

Getting ready

Before a Java EE application can use security, the EE server must be configured to handle security. The configuration process involves several steps:

  1. Enabling the security manager
  2. Selecting a realm
  3. Adding users and groups to the realm
  4. Optional: Enabling the default principal to role mapping

The actual steps are server-specific. On the application side, this process involves modifying a deployment ...

Get EJB 3.1 Cookbook now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.