users@glassfish.java.net

Re: JSR196 ClientAuthModule Problems

From: <glassfish_at_javadesktop.org>
Date: Mon, 11 Feb 2008 11:07:44 PST

One last piece of information that may be useful. This is the policy file that Glassfish has generated and that I'm guessing is being used.

grant {
  permission javax.security.jacc.WebUserDataPermission "/secure/*";
  permission javax.security.jacc.WebUserDataPermission "/:/secure/*";
  permission javax.security.jacc.WebResourcePermission "/:/secure/*";
  permission javax.security.jacc.WebResourcePermission "/secure/*", "!GET";
};

grant principal com.sun.enterprise.deployment.PrincipalImpl "DefaultRole" {
  permission javax.security.jacc.WebRoleRefPermission "testServlet", "DefaultRole";
  permission javax.security.jacc.WebRoleRefPermission "", "DefaultRole";
  permission javax.security.jacc.WebRoleRefPermission "default", "DefaultRole";
  permission javax.security.jacc.WebRoleRefPermission "jsp", "DefaultRole";
  permission javax.security.jacc.WebResourcePermission "/secure/*", "GET";
};
[Message sent by forum member 'athrawn17' (athrawn17)]

http://forums.java.net/jive/thread.jspa?messageID=258385
© Oracle | By contributing to this project, you are agreeing to the terms of use described here.