Defining Worklist Manager Console Security Using a File Realm

When you install the WLM SE, sample users and groups are defined for you in the GlassFish file realm. The users include staff1, staff2, and manager1. The password for each is the same as the username. The user groups (or roles) are staff and manager.

Perform the following steps to define file-realm security:

• To Create a User Login Profile in the File Realm

• To Define Security Roles for the Worklist Manager Console

• To Map Groups to Security Roles for the Worklist Manager Console

To Create a User Login Profile in the File Realm

1. In a web browser, log in to the GlassFish Admin Console.

   The default URL for the Admin Console is http://localhost:4848, if GlassFish is installed on the computer from which you launched the web browser.

2. In the left navigation panel, expand Configuration > Security > Realms, and then select file.

3. On the Edit Realm page, click Manager Users.

4. On the File Users page, click New.

   The New File Realm User page appears.

5. Enter the following information for the user:

   • User ID: The login user name for the user.

   • Group List: One or more user groups to which the user is assigned.

     ---

     Note –

     These user groups need to be added to the Worklist Manager Console's web.xml file. This is described in the following task.

     ---

   • New Password: The login password for the user.

   • Confirm New Password: The same password as above.

   

6. Click OK.

7. Repeat the above steps for each Worklist Manager Console user.

8. Continue to To Define Security Roles for the Worklist Manager Console.

To Define Security Roles for the Worklist Manager Console

This procedure describes how to define abstract security roles to the default Worklist Manager Console. These roles can then be mapped to user groups.

1. In the NetBeans Projects window, expand the Worklist Manager Console folder (by default, WLMConsoleWeb).

2. Under the Worklist Manager Console folder, expand Web Pages and then expand WEB-INF.

3. Open the file web.xml.

   The XML Editor appears.

4. Click the Security tab.

5. In the Security Roles section, click Add.

   The Add Security Role dialog box appears.

   

6. Enter a name and brief description for the role, and then click OK.

   The new user role appears in the Security Roles list.

   

7. Repeat the above steps for each role you need to add.

8. Save and close the file.

9. Continue to To Map Groups to Security Roles for the Worklist Manager Console.

To Map Groups to Security Roles for the Worklist Manager Console

This procedure describes how to map user groups to the security roles you defined above for the default Worklist Manager Console.

1. In the NetBeans Projects window, expand the Worklist Manager Console folder (by default, WLMConsoleWeb).

2. Under the Worklist Manager Console folder, expand Web Pages and then expand WEB-INF.

3. Open the file sun-web.xml.

   The XML Editor appears.

4. Click the Security tab.

   The user roles you created above appear in the list.

5. Expand the user role you need to map to a group.

   

6. Click Add Group.

   The Add Group dialog box appears.

   

7. Enter a name for the user group, and then click OK.

8. Repeat the above steps for each role you need to map.

9. Save and close the file.