Portlet Application Deployment Descriptor - Portlets Page - Security Tab

Use to specify which of the security roles defined for the application (in web.xml) are used by the current portlet.

Security roles enable you to set tiered levels of access to the portlet. For example, a user with View permissions can view the portlet but cannot edit it. A user with Customize permissions can customize portlet settings. A user with Manage permissions can perform all available functions associated with the portlet. The portlet developer provides the logic that defines the permissions and limitations of these roles.

Element Description

Name

Select the portlet with which you want to work.

Add

Click to create a new portlet in the application. This launches the Create JSR 286 Java Portlet wizard.

Remove

Click to delete the currently selected portlet.

Name

Edit the name of the portlet.

Class

Edit the name of the class for the portlet or click the Browse Classes icon to select an existing portlet class. The class must have a valid Java name.

Security Tab

Use this tab to assign security roles to the selected portlet.

Element Description

Transport Guarantee

Select the requirements for the communication between the client and the portlet:
  • Unspecified

  • Integral - the portlet requires that the data sent between the client and the portlet be sent in such a way that it cannot be changed in transit

  • Confidential - the portlet requires that the data be transmitted in a way that prevents other entities from observing the contents of the transmission

Available Security Roles

Displays the security roles defined in the web.xml file. To add a role to the portlet, select the role in the Available list and click the Add icon to add it to the Selected list. Optionally, click the Add All icon to add all listed roles, or a selection of multiple roles, to the portlet.
  • Name

    Displays the name of the security role.

  • Description

    Displays the description of the security role

Selected Security Roles Displays the security roles supported by the selected portlet. To remove a role from the portlet, select the role and click the Remove icon to return it to the Available list. Optionally, click the Remove All icon to remove all roles, or a selection of multiple roles, from the portlet.
  • Name

    Enter a name for the security role. This can be different from the name defined in the web.xml file, but if it is you must enter the name of the corresponding role in the web.xml file in the Role Link field.

  • Role Link

    (Optional) Enter the name of the security role as defined in the web.xml file if the role is given a different name for the portlet.

  • Description

    Enter a description for the security role.


Related Topics

"Introduction to Portlets" in Developing WebCenter Portal Assets and Custom Components with Oracle JDeveloper

"Building Standards-Based Java Portlets Using JSR 286" in Developing WebCenter Portal Assets and Custom Components with Oracle JDeveloper