Configuring the server to handle security
Enabling a server to handle security involves configuring the actual server and configuring the deployment file. In order for the server to handle the application, the application needs to specify certain application security attributes in a deployment descriptor file. This recipe addresses these issues.
Before a Java EE application can use security, the EE server must be configured to handle security. The configuration process involves several steps:
- Enabling the security manager
- Selecting a realm
- Adding users and groups to the realm
- Optional: Enabling the default principal to role mapping
The actual steps are server-specific. On the application side, this process involves modifying a deployment ...