This section describes how to propagate servlet credentials between servers and how to use identities to map logical identity names to a user name, password, and required SSL session characteristics. The identity names are used in the run-as mode settings on beans called from servlets.
Basically EAServer receives an HTTP request targeting a certain servlet which in turn invokes another EJB. The user credentials (either a user name/password pair, or a X.509 certificate) is passed to the invoked EJB. EAServer, which is the EJB container, authorizes the user’s credentials.
