To configure global security, use the default-acl tag. This tag defines which personas have access to Nucleus components. In the following example, all users who are assigned the restUser role have read and write access to all Nucleus properties and execute access for all methods on Nucleus components. The default-acl tag is optional. This example assumes that a role called restUser has already been created in the profile repository.

 <default-acl value="Profile$role$restUser:read,write,execute"/>
loading table of contents...