Role Mapping
To implement security, you must perform a mapping between the session provider defined roles (which the grid is initially unaware of) to the application defined roles and global grid defined roles (which the grid is aware of). Until this mapping exists, the grid has no way to control what features or functions an authenticated user has access to.
Mapping basically involves defining a set of session provider defined roles that map to each application defined role. However, to perform this mapping, you must understand two aspects of roles: synthetic session provider roles and how the grid resolves role mapping for a user.