This annotation is used on a Servlet implementation class to specify security
constraints to be enforced by a Servlet container on HTTP protocol messages.
The Servlet container will enforce these constraints on the url-patterns
mapped to the servlets mapped to the annotated class.
Defines the access semantic to be applied to an empty rolesAllowed array.
access is to be permitted independent of authentication state and
access is to be denied independent of authentication state and
Defines the data protection requirements that must be satisfied by
no protection of user data must be performed by the transport.
All user data must be encrypted by the transport (typically
that defines the protection
that is to be applied to all HTTP methods that are NOT represented in
the array returned by httpMethodConstraints
Get the HTTP method specific constraints. Each
names an HTTP protocol method
and defines the protection to be applied to it.
- an array of
HttpMethodConstraint elements each
defining the protection to be applied to one HTTP protocol method. For
any HTTP method name, there must be at most one corresponding element in
the returned array. If the returned array is of zero length, it indicates
that no HTTP method specific constraints are defined.