Back to Security Pattern Catalog
Container Managed Security
: Core Security, Information Disclosure
Adding programmatic security solutions to an application involves extra work on development of security libraries and verification of the implementation. For many applications, the choice would be to use declarative security. How can security be added declaratively to an application?
Use standard security features provided by application container. Define application level roles at development time. Perform a mapping of these application level logical roles to users in the deployment environment at deployment time or thereafter.
Runtime authentication and authorization handled by container by configuring user realms for LDAP.
Intercepting Web Agent
Authentication, Authorization, Container
Last modified: May 05, 2012
and Maintained by: Munawar Hafiz