2.8.2 @HttpConstraint

Organization of this subsection
(1) Description
(2) Attribute

(1) Description

This annotation specifies the default security constraints.

(2) Attribute

The following table lists the @HttpConstraint attributes:

Attribute nameFunctionality
valueThis attribute specifies the behavior when role is not specified.
rolesAllowedThis attribute specifies the list of user names used for authentication.
transportGuaranteeThis attribute specifies the method to communicate between the client and server.

Details of each attribute are as follows:

(a) value attribute
Type
ServletSecurity.EmptyRoleSemantic
Description
This attribute specifies the behavior when the role is not specified.
Default value
javax.servlet.annotation.ServletSecurity.EmptyRoleSemantic.
PERMIT
(b) rolesAllowed attribute
Type
String[]
Description
This attribute specifies the list of user names used for authentication.
Default value
{}
(c) transportGuarantee attribute
Type
ServletSecurity.TransportGuarantee
Description
This attribute specifies the method to communicate between the client and server.
Default value
javax.servlet.annotation.ServletSecurity.
TransportGuarantee.
NONE