Feature Authorization Role Mapping (authorization-roles)

A collection of role names and mappings of the roles to users, groups, or special subjects

NameTypeDefaultDescription

id

string

A unique configuration ID.

security-role

A unique configuration ID.

NameTypeDefaultDescription

id

string

A unique configuration ID.

name

string
Required

Role name.

security-role > group

A unique configuration ID.

NameTypeDefaultDescription

access-id

string

A group access ID in the general form group:realmName/groupUniqueId. A value will be generated if one is not specified.

id

string

A unique configuration ID.

name

string
Required

Name of a group that has the security role.

security-role > special-subject

A unique configuration ID.

NameTypeDefaultDescription

id

string

A unique configuration ID.

type

  • ALL_AUTHENTICATED_USERS

  • EVERYONE

One of the following special subject types: ALL_AUTHENTICATED_USERS, EVERYONE.
ALL_AUTHENTICATED_USERS
All authenticated users.
EVERYONE
All users for every request, even if the request was not authenticated.

security-role > user

A unique configuration ID.

NameTypeDefaultDescription

access-id

string

A user access ID in the general form user:realmName/userUniqueId. A value will be generated if one is not specified.

id

string

A unique configuration ID.

name

string
Required

Name of a user who has the security role.