This content has been marked as final.
Show 1 reply
-
1. Re: Per-application role to principal mappings
ddossot May 26, 2005 10:45 AM (in response to hclau)Dear Marvin,
I had the same expectations as you, but we were both wrong! Here is what is the real usage of these mappings:"The only use of the security-role settings in the jboss.xml and jboss-web.xml descriptors is to assign additional roles to a run-as identity. These have no affect for authenticated users. The user to role mapping for actual users is based on the JAAS login module configuration and associated security store." (Scott Stark)
Hope this helps,
Best regards,
David