Security order of precedence used for running J2EE tasks
There are three ways of verifying that a task runs with the correct user credentials. Tasks run with specified security credentials using the following methods:
- Java™ Authentication and Authorization Service (JAAS) security context on the thread when the task was created.
- setAuthenticationAlias method on the TaskInfo object.
- A specified security identity on a BeanTaskInfo task TaskHandler EJB method.
The authentication methods are performed in the order listed above, so that if an authentication method succeeds, the following checks are ignored. This means that the usr and pwd credentials defined in Configure the Java security take precedence over any credentials specified in the tasks themselves.