jst/components/j2ee/models/cat39ee0e7f014d/cat38c076d603dd/class38c07c8001a0.txt - www.eclipse.org/webtools - Git at Google

 The auth-constraintType indicates the user roles that
 should be permitted access to this resource
 collection. The role-name used here must either correspond
 to the role-name of one of the security-role elements
 defined for this web application, or be the specially
 reserved role-name "*" that is a compact syntax for
 indicating all roles in the web application. If both "*"
 and rolenames appear, the container interprets this as all
 roles.  If no roles are defined, no user is allowed access
 to the portion of the web application described by the
 containing security-constraint.  The container matches
 role names case sensitively when determining access.
	The auth-constraintType indicates the user roles that
	should be permitted access to this resource
	collection. The role-name used here must either correspond
	to the role-name of one of the security-role elements
	defined for this web application, or be the specially
	reserved role-name "*" that is a compact syntax for
	indicating all roles in the web application. If both "*"
	and rolenames appear, the container interprets this as all
	roles. If no roles are defined, no user is allowed access
	to the portion of the web application described by the
	containing security-constraint. The container matches
	role names case sensitively when determining access.