1124384 – [Doc Bug Fix] JASPI documentation is not sufficient

Bugzilla (bugzilla.redhat.com) will be under maintenance for infrastructure upgrades and will not be available on July 31st between 12:30 AM - 05:30 AM UTC. We appreciate your understanding and patience. You can follow status.redhat.com for details.

Bug 1124384 - [Doc Bug Fix] JASPI documentation is not sufficient

Summary: [Doc Bug Fix] JASPI documentation is not sufficient

Keywords:
Status:	CLOSED DEFERRED
Alias:	None
Product:	JBoss Enterprise Application Platform 6
Classification:	JBoss
Component:	Documentation
Sub Component:
Version:	6.3.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	urgent
Target Milestone:	---
Target Release:	---
Assignee:	Zach Rhoads
QA Contact:	Russell Dickenson
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2014-07-29 11:40 UTC by Josef Cacek
Modified:	2015-10-27 20:44 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:	Build Name: 22558, Security Guide-6.3-1 Build Date: 29-07-2014 11:26:08 Topic ID: 4934-591678 [Specified]
Last Closed:	2015-10-27 20:44:03 UTC
Type:	Bug

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Josef Cacek 2014-07-29 11:40:07 UTC

Chapter "Configure Java Authentication SPI for Containers (JASPI) Security" is not sufficient. An important piec of configuration is missing there.

Please fix following two points:

1) There has to be information about configuration of Valve which enables JASPI authentication. You can use community wiki as a starting point:
https://community.jboss.org/wiki/JBossAS7EnablingJASPIAuthenticationForWebApplications

2) Use CLI commands instead of XML fragments to describe how to configure a security domain with JASPI authentication.
E.g:

/subsystem=security/security-domain=jaspi-test:add(cache-type=default)
/subsystem=security/security-domain=jaspi-test/authentication=jaspi:add
/subsystem=security/security-domain=jaspi-test/authentication=jaspi/auth-module=basic-auth-module:add(code="org.jboss.as.web.security.jaspi.modules.HTTPBasicServerAuthModule", flag="required", login-module-stack-ref="lm-stack")
/subsystem=security/security-domain=jaspi-test/authentication=jaspi/login-module-stack=lm-stack:add
/subsystem=security/security-domain=jaspi-test/authentication=jaspi/login-module-stack=lm-stack/login-module=users:add(code="UsersRoles", flag="required", module-options=[("usersProperties"=>"${jboss.server.config.dir}/jaspi-users.properties"), ("rolesProperties"=>"${jboss.server.config.dir}/jaspi-roles.properties")])
reload

Comment 2 Deon Ballard 2015-06-22 21:54:05 UTC

Reassigning all EAP 6 bugs to Dawn as the new strategist.

Comment 3 anrobert 2015-10-27 20:44:03 UTC

Moved to JIRA: https://issues.jboss.org/browse/JBEAP-1670

Note You need to log in before you can comment on or make changes to this bug.