EJB design: who can tell me something about the security of the j2ee

  1. hi,all
    i use servlet to authenticate the user's username and password which they input in a HTML's form
    how can i associate it with the j2ee's role? i have read the j2ee's specification all through and find nothing
    who can tell me how to do it,or where can i find this infomation
  2. http://www.weblogic.com/docs/admindocs/ldap.html
    for setting up the security service in WL
  3. Ok, but this is a weblogic-specific approach. I guess the same server-specific mechanism is probably implemented in every application server. The question is: is there a standard, container-independent way to do so?