Access EJB resources

Security policies for EJB (enterprise JavaBean) resources apply to a specific type of WebLogic resource related to deployed EJBs. You can create security policies for EJB JARs, individual EJBs within an EJB JAR, or for individual methods on an EJB.

Note: These instructions also apply to Message-driven Beans (MDBs).

Note: If you loaded security policies for the EJB application from deployment descriptors using the Deployment Assistant, you need to Activate Changes and start the application in order to access the policies.

The way you access security policies differs slightly depending on how your EJBs are deployed. Start with step1 or step 2:

If the Web Application is deployed within an enterprise application (EAR):
1. In the left panel expand Deployments and select the EJB module or individual EJB, for example:
  Deployments > MyEAR > EJBModule > myEJB
2. On the Settings page for the EJB select Security > Policies to display the Policy Conditions page.
If the Web Application is a stand-alone deployment:
1. In the left panel, expand Deployments and select the Web application, for example:
  Deployments > MyEJBApp
2. Select the level where you want to apply the security role:
  To apply a security role to the entire EJB application and its contents: select Security > Application Scope > Policies
  
  To apply a security role to all of the EJBs in the EJB JAR: select Security > Module Scope > Policies
  
  To apply a security role to an individual bean, expand the deployment, click the EJB and select Security > Policies.
If you are securing an individual EJB: in the EJB Methods field, select the method you want to secure or select ALL.
Return to the main task. Start at Create security policies: step 2