2 Replies Latest reply on Sep 23, 2003 2:17 AM by Juha Lindfors

    Security Domain Understanding

    terablot Newbie


      In jboss.xml of defaul server configuration, I have
      <container-configuration extends="Standard Stateless SessionBean">
      <container-name>Secure Stateless SessionBean</container-name>

      in login-config.xml, I have

      <application-policy name="jbpm-domain">

      <login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule" flag="required">
      <module-option name="dsJndiName">java:/DefaultDS</module-option>
      <module-option name="principalsQuery">
      select pw from user where id=?
      <module-option name="rolesQuery">
      select role, null
      from member m
      where m.user_ = ?
      and m.group_ = 'mydomain'


      I am wondering, why in login-config.xml application-policy name="jbpm-domain" and in the jboss.xml


      why not jbpm-domain instead of java:/jaas/jbpm-domain?

      the same things goes with data source, in hsqldb-ds.xml the jndi name is set to DefaultDS but when refering to it like in the login-config.xml

      <module-option name="dsJndiName">java:/DefaultDS</module-option>

      it has to be specified as java:/DefaultDS