Originally posted by Leo Gao: How to draw login sequence diagram if I use container managed Security?
Container Managed Security is nothing more that aspect oriented programming. Every container interception as security, transaction and so on, are application of the AOP tecnique at container managed components like EJB's.
Have said that, you can create your design based on AOP modeling and architecture, which means that you must use Pointcut and Avisor sequence diagrams.
But, IMHO, I would not give so much detail at the sequence diagram, instead, I would provide more 'business view' for those diagrams, once the technical architecture could abstract these details.
As I konw, for example,Container managed secutiy uses a form for login, and web container will handle the atuthentication process based on db or ldap( this will be setup in the confige xml file including roles...). After login, the user principal will be propogated into EJB contianer automatically.
So, If I want to draw the login sequence diagram, it is too sample, just a web form.
Or I won't draw it, just metion it in the technical doc.