Security Elements

Security elements are as follows:

• security-role-mapping

• servlet

• servlet-name

• role-name

• principal-name

• group-name

security-role-mapping

Maps roles to users or groups in the currently active realm.

Subelements

The following table describes subelements for the security-role-mapping element. The left column lists the subelement name, the middle column indicates the requirement rule, and the right column describes what the element does.

Table 6–9 security-role-mapping Subelements

Element	Required	Description
role-name	only one	Contains the role name.
principal-name	requires at least one principal-name or group-name	Contains a principal (user) name in the current realm.
group-name	requires at least one principal-name or group-name	Contains a group name in the current realm.

Attributes

none

servlet

Specifies a principal name for a servlet, which is used for the run-as role defined in web-xml.

Subelements

The following table describes subelements for the servlet element. The left column lists the subelement name, the middle column indicates the requirement rule, and the right column describes what the element does.

Table 6–10 servlet Subelements

Element	Required	Description
servlet-name	only one	Contains the name of a servlet, which is matched to a servlet-name in web.xml.
principal-name	only one	Contains a principal (user) name in the current realm.

Attributes

none

servlet-name

Contains data that specifies the name of a servlet, which is matched to a servlet-name in the web.xml file. This name must be present in the web.xml file.

Subelements

none

Attributes

none

role-name

Contains data that specifies the role-name in the security-role element of the web.xml file.

Subelements

none

Attributes

none

principal-name

Contains data that specifies a principal (user) name in the current realm.

Subelements

none

Attributes

none

group-name

Contains data that specifies a group name in the current realm.

Subelements

none

Attributes

none