|
|
| Home > Documentation > Apache Geronimo v1.0 - User's Guide > Security > Geronimo Login Config Schema |
As was explained before, Geronimo login configuration schema was devised as a user-friendly syntax for configuring Security Realm GBeans. It is included with xml-reference element into the host GBean and processed by the syntax-aware deployer.
Geronimo login configuration namespace is http://geronimo.apache.org/xml/ns/loginconfig-1.0 and the schema file is geronimo-login-config-1.0.xsd. All types are defined in this namespace.
Element login-config of the login-configType type is the top-level element in the login configuration schema.
It defines login module configurations for the enclosing Security Realm GBean. Currently the only GBean that implements the SecuritRealm interface is GenericSecurityRealm.
login-module-ref - optinal element in the sequence of choices. Defines reference to a login module.
login-module - optional element in the sequence of choices. Defines login module.
This is an abstract base type from which all other login module types are derived.
@control-flag - login module control flag of the geronimo:control-flagType. Defines how authentication outcome from the login module must be combined with authentication outcomes from other login modules.
This type constrains the values of the module control flag. Values of this type emulate JAAS module combination semantics.
This type allows reference to the login module by the object name. Object name is split into components, so you do not have to write an extensive object name by hand, just a extensive object-name enclosed in pointy brackets.
Login-module-refType extends from abstract-login-moduleType.
@control-flag - required attribute of the control-flagType type. It is inherited from the abstract base class. Defines how referenced login module authentication outcome must be combined with authentication outcome of other modules.
domain - optional element of the xs:string type that defines domain component of the login module object name.
server - optional element of the xs:string type that defines server component of the login module object name.
application - optional element of the xs:string type that defines application component of the login module object name.
module - optional element of the xs:string type that defines module component of the login module object name
type - optional element of the xs:string type that defines j2eeType component of the login module object name.
name - required element of the xs:string type that defines name component of the login module object name.
The login-moduleType describes configuration for one login module within the enclosing GenericSecurityRealm GBean.
@control-flag - required attribute of the control-flagType type. It is inherited from the abstract base class. Defines how login module authentication outcome must be combined with authentication outcome of other modules.
@server-side - required attribute of the xs:boolean type. If set to true login module is server-side login module.
login-domain-name - required element of the xs:string type. This is Login Domain name.
login-module-class - required element of the xs:string type. This is a name of the class that implements this login module.
option - optional sequence of options of type optionType from 0 to many. Options are specific to the login module.
This type defines login module specific option, like location of the authentication database, etc.
@name - required attribute of type xs:string. This is login module option name.
Bookmark this on Delicious
Digg this
|
Privacy Policy - Copyright © 2003-2009, The Apache Software Foundation, Licensed under ASL 2.0. |
