2 Replies Latest reply on Mar 5, 2008 4:16 PM by whafrog

    Security role re-assignment

    whafrog Newbie

      I'm in the midst of converting a weblogic webapp to jboss. The weblogic app makes heavy use of a feature in weblogic.xml where you can assign a group of security roles to a new role for internal use in the app, eg:

      <security-role-assignment>
       <role-name>any-user</role-name>
       <principal-name>Admin</principal-name>
       <principal-name>Agents</principal-name>
       <principal-name>Partners</principal-name>
       </security-role-assignment>


      I can then use HttpServletRequest.isUserInRole("any-user") instead of checking for each.

      Is there an equivalent feature in JBoss? Or am I faced with putting long strings of "or"s in my code?

      TIA,

      Jon