Removes authorization from members of a given role to perform specific actions on the given entity. If the entity is a server, members of the role are denied permission to restart, refresh, or shut down the server. If the entity is an application, Web application, servlet, or package, members of the role are denied access to those resources, including deploying the entity.
removeroleauth [ connect-args | local-args ] [-role rolename] \ [-action actionname] entity
<jag_removeroleauth [ role=”rolename”] [action=”actionname”] entity=”entity” />
Option |
Description |
Required |
|---|---|---|
connect-args | local-args |
Arguments to specify a connection to the server or to run in local mode. See “Local versus connected mode”. |
Yes |
|
Role id or name to which authorization is being denied. The role must exist on the server to which you are connected. |
Yes |
action |
Only valid when the entity type is Server. Valid actions include restart, refresh and shutdown. |
No |
entity |
The name of the entity, in the form EntityType:EntityName. Valid entities are application, Webapplication, servlet, server, and package. |
Yes |
This example denies access to the “Estore” application to members of the role named “test”.
jagtool removeroleauth -role test Application:Estore
