Adding Security to a Web Application

Increase Web application security by adding security roles and constraints to your Web application.

In the WorkSpace Navigator of the Web Application Development perspective, select web.xml.
Select the Security tab.
Click Add in the Security Roles section. A new role is added with the default name "NewSecurityRole x."
(Optional) Change the default name to a unique, descriptive name in the Name field of the General Information section.
(Optional) Enter a description.
Expand the Security Constraints section.
Click Add. A new constraint is added with the default name "NewSecurityConstraint x". General Information, Web Resource Collections, Authorize Roles and Constraints, and User Data Constraint sections appear.
(Optional) Change the default name to a unique, descriptive name in the Display name field of the General Information section.
In the Web Resource Collection section, to add a Web resource and its HTTP method:
1. Click Add.
2. (Optional) Enter a description.
3. Select the HTTP method or methods that you want to use.
4. Click Add to add URL patterns.
5. Click OK.
In the Authorize Roles and Constraints section, to add a role that is authorized to access a Web resource collection with a constraint:
1. Click Edit. The Define Authorization Constraint dialog box appears.
2. Type a description for the constraint.
3. Select the Role Name that you want to restraint to apply to.
4. Click OK.
In the User Data Constraint section, to select a transport guarantee that is required between the client and the server for the security constraint:
1. Click the arrow in the Type field to select the constraint. You can select None, Integral, or Confidential.
2. (Optional) Enter a description for the constraint.

Send your feedback on this help topic to Sybase Technical Publications: pubs@sybase.com

Your comments will be sent to the technical publications staff at Sybase, Inc. For product-related issues or technical support, contact Sybase Technical Support at 1-800-8SYBASE.