A role is an abstract logical grouping of users that is defined by the application developer or assembler. When the application is deployed, these roles are mapped by a deployer to security identities, such as principals or groups, in the runtime environment. A servlet container enforces declarative or programmatic security for the principal associated with an incoming request based on the security attributes of that calling principal. For example,
|