Hi!
Is there any way in jboss to map the actual users and roles in the provider environment to application specific security roles?
With weblogic you can do something like this:
web.xml:
<auth-constraint>
These are the roles who have access
<role-name>admin</role-name>
</auth-constraint>
<security-role>
An administrator
<role-name>admin</role-name>
</security-role>
weblogic.xml:
<security-role-assignment>
<role-name>admin</role-name>
<principal-name>Demo</principal-name>
<principal-name>Customer-Service</principal-name>
</security-role-assignment>
So, every user with role Demo or Customer-Service gets access to the web app.
Thanks!