Server-level security
You can design your application to access a Domino server via the following modes of authentication:
1. Anonymous authentication: Logs onto the server as an anonymous user. Only accesses databases and servers that are marked to "Allow Anonymous Access." No user name or password values are required.
2. Specified user authentication: Logs onto the server as the user specified in the user attribute and verified by the password provided in the password attribute of any of the following top-level tags:
The user name specified must be present in the Domino Directory for the server and the password specified must match the user's Internet password, as defined in their person record, or an exception is thrown.
You can cache the user and password attribute values for the duration of a session of a web application using by setting default JSP attribute values.
You initiate container-managed access in one of the following ways:
When *webuser is specified as the user attribute, no value is required for the corresponding password attribute.
If you are accessing the Domino server remotely via the Internet Inter-ORB Protocol (IIOP), you must:
Once you have authenticated the user to the server, you can set up conditional access to the database based on the user's:
ifauthor, ifdepositor, ifdesigner, ifeditor, ifmanager, ifreader, ifnoaccess
ifdbrole
Though you can encrypt and sign database fields in the Notes client, you cannot encrypt or sign document items in JSPs.
You restrict document access by creating readers and authors items that contain the names of only those users who are allowed to read or author that document. You set these item values in a JSPs by doing the following:
1. Create a single- or multi-value item using one of the following tags:
3. Provide the user name or names of those people you want to give special access to the document to as the item value.