cancel
Showing results for 
Search instead for 
Did you mean: 

Mapping UME Roles to J2EE Engine Security Roles

Former Member
0 Kudos

Hi all,

is there a way to map the roles defined in UME which are used in a Web Dynpro application to those declared as part of an EJB descriptor?

Any help is highly appreciated.

Regards,

Sebastian

Accepted Solutions (0)

Answers (2)

Answers (2)

Former Member
0 Kudos

Hi Sebastian,

yes, it is possible to do such mapping. And here how it works:

1. define security roles in the ejb-jar.xml within the <security-role>. For example:

<security-role>

<role-name>test</role-name>

</security-role>

2. then you map the roles those roles to server security roles using the <security-role-map> tag of the ejb-j2ee-engine.xml descriptor.

<security-permission>

<security-role-map>

<role-name>test</role-name>

<server-role-name>myUMErole</server-role-name>

</security-role-map>

</security-permission>

the myUMErole must be defined in the UME!

Does this answer your question?

Former Member
0 Kudos

I too am very interested in this topic. Most of the SAP security documentation for J2EE web/ejb teir refers only to the sun spec.

With the SAP's UME in place there must be something in the works that allows J2EE access to authenticate/authorize based on the users in this store. If they do this it would be very powerful for use J2EE developers.

Jason