Bug 1121156

Summary: Only one security domain for application can be set in PicketLink subsystem
Product: [JBoss] JBoss Enterprise Application Platform 6 Reporter: Ondrej Lukas <olukas>
Component: PicketLinkAssignee: Pedro Igor <psilva>
Status: CLOSED NOTABUG QA Contact: Josef Cacek <jcacek>
Severity: high Docs Contact: Russell Dickenson <rdickens>
Priority: unspecified    
Version: 6.3.0CC: bdawidow, hmlnarik, myarboro
Target Milestone: ---   
Target Release: EAP 6.4.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-10-23 21:07:38 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Ondrej Lukas 2014-07-18 13:55:09 UTC
In PicketLink application configured from deployment is possible to set more security domains. However in PicketLink subsystem only one security domain can be set for application. It is incosistance between picketlink deployment configuration and picketlink subsystem configuration. Application configured from PicketLink subsystem should also be able to use more security domains.

Comment 2 Pedro Igor 2014-10-23 21:07:38 UTC
When configuring IdPs and SPs you can set a single security-domain. Is not possible to configure more than one for a deployment.

Security domains are used to configure how users are authenticated. What you can do is provide multiple login modules within a security domain if you need to stack different authentication methods.