Security roles

Access to enterprise bean methods is based on the concept of security roles. A security role represents a type of user of an application in terms of the permissions that the user must have to successfully use the application.

The roles that are permitted to execute a particular enterprise bean or particular methods of a bean are specified in the bean's deployment descriptor, and the mapping of security roles to individual users is done in the external security manager.

For more information about security roles, see Security roles.