Return-Path: 
 <dev-return-24905-apmail-geronimo-dev-archive=geronimo.apache.org@geronimo.apache.org>
Delivered-To: apmail-geronimo-dev-archive@www.apache.org
Received: (qmail 49651 invoked from network); 6 Feb 2006 15:41:27 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199)
  by minotaur.apache.org with SMTP; 6 Feb 2006 15:41:27 -0000
Received: (qmail 8444 invoked by uid 500); 6 Feb 2006 15:41:23 -0000
Delivered-To: apmail-geronimo-dev-archive@geronimo.apache.org
Received: (qmail 8400 invoked by uid 500); 6 Feb 2006 15:41:22 -0000
Mailing-List: contact dev-help@geronimo.apache.org; run by ezmlm
Precedence: bulk
list-help: <mailto:dev-help@geronimo.apache.org>
list-unsubscribe: <mailto:dev-unsubscribe@geronimo.apache.org>
List-Post: <mailto:dev@geronimo.apache.org>
Reply-To: dev@geronimo.apache.org
List-Id: <dev.geronimo.apache.org>
Delivered-To: mailing list dev@geronimo.apache.org
Received: (qmail 8389 invoked by uid 99); 6 Feb 2006 15:41:22 -0000
Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 06 Feb 2006 07:41:22 -0800
X-ASF-Spam-Status: No, hits=-0.0 required=10.0
	tests=SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (asf.osuosl.org: domain of ammulder@gmail.com designates
 66.249.92.202 as permitted sender)
Received: from [66.249.92.202] (HELO uproxy.gmail.com) (66.249.92.202)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 06 Feb 2006 07:41:21 -0800
Received: by uproxy.gmail.com with SMTP id m3so741954ugc
        for <dev@geronimo.apache.org>; Mon, 06 Feb 2006 07:41:00 -0800 (PST)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
        s=beta; d=gmail.com;
        h=received:message-id:date:from:sender:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition;
        b=lAOGEhRwcTuYDIIFGN9Lh7Kcqa5BAd9sH0ZtMRPkXx45mQQOIowCmejdtBerGkbmECODMOlQrDj8IjkT1dOp9oEFpokWLJoX0pyRpR7aWm63ACMz+eWAegeaA8utTeeby6WByBaG763cNTxjtanrtld9LUtUTJd5UreFKMVUdV4=
Received: by 10.66.221.11 with SMTP id t11mr2279506ugg;
        Mon, 06 Feb 2006 07:41:00 -0800 (PST)
Received: by 10.66.219.2 with HTTP; Mon, 6 Feb 2006 07:41:00 -0800 (PST)
Message-ID: <74e15baa0602060741h37e70bexa56d0b6bc56cbebf@mail.gmail.com>
Date: Mon, 6 Feb 2006 10:41:00 -0500
From: Aaron Mulder <ammulder@alumni.princeton.edu>
Sender: ammulder@gmail.com
To: Geronimo Dev <dev@geronimo.apache.org>
Subject: Default Security Principal & Role Mapping
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
X-Virus-Checked: Checked by ClamAV on apache.org
X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N

If I have a security configuration block like this, is an
unauthenticated user given the Admin role?  Or does role mapping
ignore the default principal?

Thanks,
    Aaron

<security>
  <default-principal>
    <principal class=3D"..." name=3D"bob" />
  </default-principal>
  <role-mappings>
    <role name=3D"Admin">
      <principal class=3D"..." name=3D"bob" />
    </role>
  </role-mappings>
</security>