Details
-
New Feature
-
Status: Closed
-
Major
-
Resolution: Fixed
-
1.0-M2
-
None
Description
The J2EE DD application.xml may declare security roles. It would be nice if the deployer could map those to principals, and then those mappings would be the default for any modules in the EAR that use the same roles.
To implement this, we can add a "security" element referencing geronimo-security.xsd to geronimo-application.xsd, so that becomes 1 place to (optionally) do all role mapping for the application. If you want to do it separately for each module, or to override the EAR settings with some module-specific setting, that would be fine too.