In other application servers it is possible to include an app.policy at the top level of the WAR/EAR. This is then used by the security layer to control the granted permissions.
From what I've read it is seems that Glassfish only supports changing the server.policy file at the domain level.
Is this the only way, or am I missing something from the documentation?
Thanks
[Message sent by forum member 'athrawn17' (athrawn17)]
http://forums.java.net/jive/thread.jspa?messageID=259083