This graphic shows the hierarchy of resources and policies in the WebLogic Security Service. At the center of the figure are a number of resources that can be protected by policies: an application resource, several EJB resources, a web application resource, and a JDBC resource. Policies may be set individually on each resource by establishing the role for which access is allowed under the conditions set by those policies.