When you specify <res-auth>Application</res-auth> in
the deployment descriptor of your application, component-managed EIS sign-on
is used.
Your application (the component) should provide the security information
(user ID, password, and optional group name) used for EIS sign-on:
- If your application uses the J2EE Connector Architecture Common Client
Interface (CCI), it performs component-managed sign-on by first populating
an IMSConnectionSpec object with the security information. Then, when the
application establishes a connection to IMS™, it passes the IMSConnectionSpec object
as a parameter of the IMSConnectionFactory.getConnection method. The IMS resource
adapter uses this security information for the sign-on to IMS.
- If your application is an application built by Rational Application Developer,
the security information is passed as application input data. To pass the
security information as input data you must expose the properties, userName,
password, and groupName of IMSConnectionSpec. For specific information about
how to expose the IMSConnectionSpec properties user ID, password, and group
name as application input data for the IMS resource adapter, see Exposing InteractionSpec and ConnectionSpec properties for input as data .
If your application does not use one of the above methods to provide security
information, WebSphere® Application
Server will obtain the security information from the J2C connection factory's
custom properties. Note: If you specified a component-managed JAAS
Authentication alias while setting up your connection factory, the user ID
and password in the alias will override the userName and password values in
the connection factory custom properties during the start-up of the WebSphere Application
Server.