1 Reply Latest reply on Sep 4, 2005 12:02 AM by starksm64

Meaning of the application-policy name

j.bin Aug 31, 2005 4:40 PM

Hello,

login-config.xml entries start with

<application-policy name="security-domain-name">

As explained in Ch 8 of the Admin Guide (p. 278):

The name attribute of the application-policy is the login configuration name. This corresponds to the portion of
the jboss.xml and jboss-web.xml security-domain element value after the java:/jaas/ prefix.

OK. Searching for available jboss-web.xml among those deployed.
Found one under

deploy/jms/jbossmq-httpil.sar/jbossmq-httpil.war/WEB-INF

and another under

default/deploy/http-invoker.sar/invoker.war/WEB-INF

OK. First contains uncommented:

<security-domain>java:/jaas/jbossmq</security-domain>

2nd has:

<security-domain>java:/jaas/jmx-console</security-domain>

Piece in bold looks like JNDI name to me (wrong?).
OK, invoking list() on JNDIView.

Under jaas there is:

 +- jaas (class: javax.naming.Context)
 | +- JmsXARealm
 | +- jbossmq
 | +- HsqlDbRealm

I can see "jbossmq", but no "jmx-console".

Now, my Q: what is the significance of the
<application-policy name="security-domain-name">
?
Is it an arbitrary one or ...?
Anyway, your help is apreciated.

Thank you,

1. Re: Meaning of the application-policy name

starksm64 Sep 4, 2005 12:02 AM (in response to j.bin)

Figure 8.11 illustrates the association between the security-domain and jaas login module configuration. Section 8.4.1. How the JaasSecurityManager Uses JAAS also discusses this.

The second paragraph of 8.4.2. The JaasSecurityManagerService MBean talks about the details of the JNDI name meaning.
Actions