A security role is a logical grouping of principals. Access to operations (such as enterprise-bean methods) is controlled by granting access to a role.
If the special subject All is granted a role, any user who can authenticate by using a valid user ID and password is considered to be granted that role.
If the special subject Everyone is granted a role, all users, including those who did not authenticate, are granted the role. In other words, a method on an enterprise bean or a URI is unprotected if any of the required roles for that method are granted to the special subject Everyone.
Data type | String |
Range | Valid values are All or Everyone |