Administration Guide
Overview Guide
Installation Guide
Previous Next Contents


About AppLogic Access Authorization
AppLogic access authentication is implemented by explicitly mapping users and roles to specific AppLogic objects or groups of objects. When an object is invoked, the Netscape Application Server checks to see if the logged-in user invoking the AppLogic has permission to do so. If the user does have permission, the AppLogic runs.

For users who are not allowed to access a certain AppLogic object, the Netscape Application Server returns an error code and an HTML page stating they cannot access this portion of the application. This message is a generic system-generated page and is the same for all AppLogic objects. The AppLogic access verification system is a simple, quickly deployed security system to implement.

Default Access to AppLogic Objects
When an application is first installed or deployed to a Netscape Application Server, all users and roles are granted access to all of the AppLogic objects in that application, unless specifications in the GXR file state otherwise. You explicitly restrict or grant access to an AppLogic based on each user, role, or group. For more information about implementing AppLogic access security, see "Implementing AppLogic Access Authentication."

 

© Copyright 1998 Netscape Communications Corporation