Assembly is the process of packaging an application for installation (deployment) into the application server run time. As part of preparing a secured application for deployment, you specify various security settings in the deployment descriptors for your WAR or EAR file.
To assemble your secured application, perform these steps:
(Optional) Add the was.policy file to applications for Java 2 Security.
Export your application as a WAR or EAR file.
After you secure an application, the resulting WAR or EAR file contains security information in its deployment descriptors.
Here are the WAR file deployment descriptors that contain security settings:
web.xml
Deployment descriptor for the Web module, including security information.
was.policy
Contains the Java 2 Security permissions that are granted for the application to access secured system resources.
An application EAR file contains the following deployment descriptors, in addition to the deployment descriptors for the WAR file:
application.xml
Contains all of the roles that are used in the application.
ibm-application-ext.xmi
Contains roles mapping for users and groups.