Bug 1088814 - [Doc Bug Fix] Document missing Login Modules in 11.1. Included Authentication Modules
Summary: [Doc Bug Fix] Document missing Login Modules in 11.1. Included Authentication...
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: JBoss Enterprise Application Platform 6
Classification: JBoss
Component: Documentation
Version: 6.3.0
Hardware: Unspecified
OS: Unspecified
unspecified
urgent
Target Milestone: post-GA
: ---
Assignee: Zach Rhoads
QA Contact: Ondrej Lukas
URL:
Whiteboard:
: 1252535 1252719 1252720 (view as bug list)
Depends On: 1233012
Blocks:
TreeView+ depends on / blocked
 
Reported: 2014-04-17 08:51 UTC by Ondrej Lukas
Modified: 2015-10-20 12:44 UTC (History)
7 users (show)

Fixed In Version:
Doc Type: Enhancement
Doc Text:
Clone Of:
Environment:
Build Name: 22508, Administration and Configuration Guide-6.3-1 Build Date: 04-04-2014 09:09:42 Topic ID: 4732-625706 [Latest]
Last Closed: 2015-10-20 12:44:39 UTC
Type: Bug
Embargoed:


Attachments (Terms of Use)

Description Ondrej Lukas 2014-04-17 08:51:51 UTC
In 11.1. Included Authentication Modules is missing documentation of some provided Login Modules. Please add documentation of RealmUsersRoles, RealmDirect, Disabled, Anon and DatabaseUsers. Ask developers for details.

Comment 1 Ondrej Lukas 2014-04-28 12:30:41 UTC
Same issue occures in Security Guide in Reference A.1. Included Authentication Modules

Comment 2 Russell Dickenson 2014-04-30 22:06:41 UTC
Peter - What is the best reference source for the additional login modules identified by Ondrej in this ticket's description?

Comment 3 Peter Skopek 2014-05-02 11:35:01 UTC
Sorry for this answer, but I was not able to find anything more decent, so I inferred it from source code:

RealmUsersRoles
================
Purpose: Login module which can authenticate users from given realm. Used for remoting calls.
         RealmDirect should be used instead of this one in EAP6.

Options:
- realm : string to specify realm
+ all options from:
   UsersRolesLoginModule (org.jboss.security.auth.spi.UsersRolesLoginModule)
   UsernamePasswordLoginModule (org.jboss.security.auth.spi.UsernamePasswordLoginModule)
   AbstractServerLoginModule (org.jboss.security.auth.spi.AbstractServerLoginModule)
- except the two following which are replaced with constant values:
        map.put("hashAlgorithm", "REALM");
        map.put("hashStorePassword", "false");

RealmDirect
============
Purpose: A login module implementation to interface directly with the security realm.
         This login module allows all interactions with the backing store to be delegated to the realm removing the need for any
         duplicate and synchronized definitions.
         Used for remoting calls and management iterface.
         
Options:
- realm : default value "ApplicationRealm"


Disabled
=========
Purpose: A login module that always fails authentication.
         It is to be used for a security domain that needs to be disabled, for instance when we don't want JAAS to fallback to
         using the 'other' security domain.

Options:
- jboss.security.security_domain : name of security domain to display in error message

Anon 
=====
Purpose: A simple login module that simply allows for the specification of the
         identity of unauthenticated users via the unauthenticatedIdentity property.

Options:
- the same options as UsernamePasswordLoginModule (org.jboss.security.auth.spi.UsernamePasswordLoginModule)



DatabaseUsers
==============
Purpose: Alias to DatabaseServerLoginModule (org.jboss.security.auth.spi.DatabaseServerLoginModule) for compatibility reasons.

Comment 13 Zach Rhoads 2015-08-31 14:24:33 UTC
*** Bug 1252719 has been marked as a duplicate of this bug. ***

Comment 14 Zach Rhoads 2015-08-31 14:25:07 UTC
*** Bug 1252720 has been marked as a duplicate of this bug. ***

Comment 15 Zach Rhoads 2015-08-31 14:25:34 UTC
*** Bug 1252535 has been marked as a duplicate of this bug. ***


Note You need to log in before you can comment on or make changes to this bug.