6.3.1 Security identity functionality
By using the security management functionality, you can authenticate users who want to access the Web container or EJB container. Such users are authenticated using their user names and passwords.
On successful authentication when using the security management functionality, authentication information called a security identity is created and sent to the Web container or EJB container. If this authentication fails, an exception occurs.
The figure below shows the flow when using a security identity for authentication.
|
|
![[Figure]](GRAPHICS/ZU060100.GIF)
For security management, you can use the Run As functionality to send the security identity specified with the intermediate component.
If a security identity that differs from the one used to log into the client is specified with the intermediate component that calls the Enterprise Bean, the Run As functionality allows the specified security identity to be used to call the Enterprise Bean. The figure below shows the Run As functionality.
|
|
![[Figure]](GRAPHICS/ZU060200.GIF)
Note that the application server does not support the following types of security management functionality:
-
Encryption of messages for accessing components
-
Assignment of signatures to messages
-
Authentication with certificates