<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=utf-8">
</head>
<body bgcolor="#FFFFFF" text="#000000">
Hello everyone, <br>
<br>
I'm doing a comparison between the different server configuration
files generated in normal distribution and servlet-distribution,
basically working on [1].<br>
<br>
The security subsystem in the servlet distribution does not have
these security domains configured whereas they are in the normal
distribution:
<br>
<br>
<font face="Courier New, Courier, monospace"><subsystem
xmlns="urn:jboss:domain:security:2.0"><br>
<security-domains><br>
...<br>
<security-domain name="jboss-web-policy"
cache-type="default"><br>
<authorization><br>
<policy-module code="Delegating"
flag="required"/><br>
</authorization><br>
</security-domain><br>
<security-domain name="jboss-ejb-policy"
cache-type="default"><br>
<authorization><br>
<policy-module code="Delegating"
flag="required"/><br>
</authorization><br>
</security-domain><br>
<security-domain name="jaspitest" cache-type="default"><br>
<authentication-jaspi><br>
<login-module-stack name="dummy"><br>
<login-module code="Dummy" flag="optional"/><br>
</login-module-stack><br>
<auth-module code="Dummy"/><br>
</authentication-jaspi><br>
</security-domain><br>
<security-domains> </font><br>
<br>
I understand jboss-ejb-policy should not be configured because the
servlet-distribution does not use ejbs, but what about jaspitest?
<br>
I have no clue if it has to be included or not in the
servlet-distribution. <br>
<br>
Do you know if we should include it?
<br>
<br>
Regards,<br>
Yeray<br>
<br>
[1] <a class="moz-txt-link-freetext" href="https://issues.jboss.org/browse/WFLY-10421">https://issues.jboss.org/browse/WFLY-10421</a><br>
</body>
</html>