Skip navigation.

eDocs Home > BEA WebLogic Server 9.0 Documentation > Administration Console Online Help > Access Web Application resources

Administration Console Online Help

PreviousNextvertical dots separating previous/next from contents/index/pdfContents

Access Web Application resources

Before you begin

This subtask is part of the main task for creating a security policy. Start with the main task: Create security policies

Note: If you loaded security policies for the Web application from deployment descriptors using the Deployment Assistant, you need to Activate Changes and start the application in order to access the policies.


A security policy for a Web Application resource applies either to the entire Web application and its contents or to individual to resources contained in the Web application, such as JSPs and JARs.

The way you access policies differs slightly depending on how your Web application is deployed. Start with step1 or step 2:

  1. If the Web Application is deployed within an enterprise application (EAR):
    1. In the left panel, expand Deployments and select the Web application module, for example:

      Deployments > MyEAR > Modules > MyWebAppModule
    2. On the Settings page for the selected resource, select Security > URL Patterns > Policies to display the Policy conditions page.
  2. If the Web Application is a stand-alone deployment:
    1. In the left panel, expand Deployments and select the Web application, for example:

      Deployments > MyWebAppModule
    2. Specify the level where you want to apply the security policy:

      To apply a security policy to the entire Web application and its contents: select Security > Application Scope > Policies and go to step 8.

      To apply a security policy to a resource within the application: select Security > URL Patterns > Policies to display the Policy Conditions page.

  3. Click New to display the Create a New Policy URL Pattern page
  4. In the URL Pattern field enter a string that represents the path to the Web application resource:
    • To secure a resource within the application, enter the path to the resource, for example: /MyServlet.jsp
    • To secure the entire contents of a Web application contained in an EAR, enter a single slash: /

    Caution: In WebLogic Server version 8.x the two characters / * were used by the security container to indicate the entire Web application contents. Starting with the current version, BEA recommends that you use the / character, as it is the standard J2EE syntax used by the Servlet container. If you want to continue using /* you need to disable the EnforceStrictURLPattern field. For more information, see Reset the EnforceStrictURLPattern flag

  5. Click Finish to display the URL pattern in the URL Patterns table
  6. Click the pattern to display the Policy Conditions page.
  7. In the Methods field select the method you want to secure or select ALL.
  8. Return to the main task. Start at Create security policies: step 2

 

Skip navigation bar   Back to Top