I have another question to add to the previous questions. Is there any possibility to program java files that define the security of ours portlets, instead of build manually the security tags in jboss-portlet.xml? Or, i have to build both files (xml and java file)?
not in JBP2.0, but in JBP 2.2
Portal 2.2 offers the possibility to dynamically create security constraints for portal objects like portals, pages, and winodows. Note, however, that the API and meaning of portlet security has changed in 2.2