[jboss-dev-forums] [Security Development] Document updated/added: "PicketBox Mapping"

JBoss development, The document "PicketBox Mapping", was updated Feb 8, 2010 by ANIL SALDHANA. To view the document, visit: http://community.jboss.org/docs/DOC-14760#cf Document: -------------------------------------------------------------- *PicketBox* (formerly JBoss Security) supports facilities to map a Principal, Role(s) and Attribute(s) in a security process.   Need for mapping   It is important for any security framework to provide facilities to map principal or roles from one form to another. Examples include: * The authentication has been performed using X509 Certificates. Now you want to convert the principal from the certificate to a logical name that is meaningful to your application such as display purposes. * The authentication process derived a set of roles as part of the security domain. But you want to associate a few more roles with the current subject as part of the deployment archive.   Read more below:     *Role Mapping*   The conversion of roles during a particular security event may be important for the following reasons: * You want to add more roles to the subject than what the authentication process derived. * You want to replace/remove one or more roles. --------------------------------------------------------------