![]() |
![]() |
||||
This tag is used with a Security Realm, as a container for one or more <role-name> tags, to list the roles which are used by the application.
Each role must be referenced in a <security-role> tag before it can be used in the <auth-constraint> element of a <security-constraint>.
Users are mapped to Roles in the Security Realm itself (for example, a JDBC Authentication Realm).