0 Replies Latest reply on Nov 10, 2006 6:13 PM by smodou

    Nested Roles in jboss-web.xml

    smodou

      Hi All,
      I am using LdapExtLoginModule and I have the following security role definition in my jboss-web.xml:


      <security-role>
      <role-name>approvers</role-name>
      <principal-name>supervisors</principal-name>
      <principal-name>directors</principal-name>
      <principal-name>managers</principal-name>
      </security-role>

      the role approvers is defined in web.xml, but it is not a group/role in our LDAP repository. Supervisors, directors, and managers are all groups in LDAP.

      What I want is for any member of those groups to have the approvers role.
      However, JBOSS does not assign the approver role to members of those groups. This works fine in weblogic where am also using container managed security.

      Can this work in JBOSS? Any ideas

      regards,
      Modou