只有在您想要自訂對 Report Launcher for ClearQuest 所定義的預設 WebSphere Application Server 安全角色及配置時,才需要這項作業。
在自訂安全配置之前,請考量您想要達到的安全行為。例如,要所有使用者在啟動 Report Launcher 時都進行鑑別嗎?要提供不同的報告存取權給不同的使用者或群組嗎?請檢閱安全配置設定範例,作為更新配置的起點。更新 Report Launcher for ClearQuest 部署描述子,在 WebSphere Application Server 上配置用戶端鑑別。
您可以使用下列程式碼範例,作為在環境中配置 Report Launcher 應用程式安全的起點。
<security-constraint> <web-resource-collection> <web-resource-name>authenticated</web-resource-name> <url-pattern>/*</url-pattern> </web-resource-collection> <auth-constraint> <role-name>AuthenticatedUsers</role-name> </auth-constraint> <user-data-constraint> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> </security-constraint> <login-config> <auth-method>FORM</auth-method> <realm-name>default</realm-name> <form-login-config> <form-login-page>/Login.jsp</form-login-page> <form-error-page>/Login.jsp?error=true</form-error-page> </form-login-config> </login-config> <security-role> <role-name>AuthenticatedUsers</role-name> </security-role>
<security-constraint> <web-resource-collection> <web-resource-name>authenticated</web-resource-name> <url-pattern>/*</url-pattern> </web-resource-collection> <auth-constraint> <role-name>AuthenticatedUsers</role-name> </auth-constraint> <user-data-constraint> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> </security-constraint> <security-constraint> <web-resource-collection> <web-resource-name>secure</web-resource-name> <url-pattern>/reports/home/ManagementReports/*</url-pattern> </web-resource-collection> <auth-constraint> <role-name>Managers</role-name> </auth-constraint> <user-data-constraint> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> </security-constraint> <login-config> <auth-method>FORM</auth-method> <realm-name>default</realm-name> <form-login-config> <form-login-page>/Login.jsp</form-login-page> <form-error-page>/Login.jsp?error=true</form-error-page> </form-login-config> </login-config> <security-role> <role-name>AuthenticatedUsers</role-name> </security-role> <security-role> <role-name>Managers</role-name> </security-role>