In 11.1. Included Authentication Modules is missing documentation of some provided Login Modules. Please add documentation of RealmUsersRoles, RealmDirect, Disabled, Anon and DatabaseUsers. Ask developers for details.
Same issue occures in Security Guide in Reference A.1. Included Authentication Modules
Peter - What is the best reference source for the additional login modules identified by Ondrej in this ticket's description?
Sorry for this answer, but I was not able to find anything more decent, so I inferred it from source code: RealmUsersRoles ================ Purpose: Login module which can authenticate users from given realm. Used for remoting calls. RealmDirect should be used instead of this one in EAP6. Options: - realm : string to specify realm + all options from: UsersRolesLoginModule (org.jboss.security.auth.spi.UsersRolesLoginModule) UsernamePasswordLoginModule (org.jboss.security.auth.spi.UsernamePasswordLoginModule) AbstractServerLoginModule (org.jboss.security.auth.spi.AbstractServerLoginModule) - except the two following which are replaced with constant values: map.put("hashAlgorithm", "REALM"); map.put("hashStorePassword", "false"); RealmDirect ============ Purpose: A login module implementation to interface directly with the security realm. This login module allows all interactions with the backing store to be delegated to the realm removing the need for any duplicate and synchronized definitions. Used for remoting calls and management iterface. Options: - realm : default value "ApplicationRealm" Disabled ========= Purpose: A login module that always fails authentication. It is to be used for a security domain that needs to be disabled, for instance when we don't want JAAS to fallback to using the 'other' security domain. Options: - jboss.security.security_domain : name of security domain to display in error message Anon ===== Purpose: A simple login module that simply allows for the specification of the identity of unauthenticated users via the unauthenticatedIdentity property. Options: - the same options as UsernamePasswordLoginModule (org.jboss.security.auth.spi.UsernamePasswordLoginModule) DatabaseUsers ============== Purpose: Alias to DatabaseServerLoginModule (org.jboss.security.auth.spi.DatabaseServerLoginModule) for compatibility reasons.
*** Bug 1252719 has been marked as a duplicate of this bug. ***
*** Bug 1252720 has been marked as a duplicate of this bug. ***
*** Bug 1252535 has been marked as a duplicate of this bug. ***