仅当您要定制为 Report Launcher for ClearQuest 定义的缺省 WebSphere Application Server 安全角色和配置时,才需要该任务。
定制安全配置之前,请考虑您要尝试实现的安全行为。例如,您是否希望所有用户在启动 Report Launcher 时都进行认证?您是否希望向不同用户或组提供不同的报告访问权?请查看安全配置设置示例,作为更新配置的起点。更新 Report Launcher for ClearQuest 部署描述符,以在 WebSphere Application Server 上配置客户机认证。
您可以使用以下代码样本作为在自身环境中配置 Report Launcher 应用程序安全性的起点。
<security-constraint> <web-resource-collection> <web-resource-name>authenticated</web-resource-name> <url-pattern>/*</url-pattern> </web-resource-collection> <auth-constraint> <role-name>AuthenticatedUsers</role-name> </auth-constraint> <user-data-constraint> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> </security-constraint> <login-config> <auth-method>FORM</auth-method> <realm-name>default</realm-name> <form-login-config> <form-login-page>/Login.jsp</form-login-page> <form-error-page>/Login.jsp?error=true</form-error-page> </form-login-config> </login-config> <security-role> <role-name>AuthenticatedUsers</role-name> </security-role>
<security-constraint> <web-resource-collection> <web-resource-name>authenticated</web-resource-name> <url-pattern>/*</url-pattern> </web-resource-collection> <auth-constraint> <role-name>AuthenticatedUsers</role-name> </auth-constraint> <user-data-constraint> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> </security-constraint> <security-constraint> <web-resource-collection> <web-resource-name>secure</web-resource-name> <url-pattern>/reports/home/ManagementReports/*</url-pattern> </web-resource-collection> <auth-constraint> <role-name>Managers</role-name> </auth-constraint> <user-data-constraint> <transport-guarantee>CONFIDENTIAL</transport-guarantee> </user-data-constraint> </security-constraint> <login-config> <auth-method>FORM</auth-method> <realm-name>default</realm-name> <form-login-config> <form-login-page>/Login.jsp</form-login-page> <form-error-page>/Login.jsp?error=true</form-error-page> </form-login-config> </login-config> <security-role> <role-name>AuthenticatedUsers</role-name> </security-role> <security-role> <role-name>Managers</role-name> </security-role>