Re: [jboss-as7-dev] Security Subsystem management use cases

From: "Marcus Moyses" <mmoyses(a)redhat.com&gt; To: "Andrig Miller" <anmiller(a)redhat.com&gt; Cc: "Heiko Braun" <hbraun(a)redhat.com&gt;, &quot;jboss-as7-dev(a)lists.jboss.org Development" <jboss-as7-dev(a)lists.jboss.org&gt; Sent: Thursday, May 12, 2011 11:56:35 AM Subject: Re: [jboss-as7-dev] Security Subsystem management use cases My latest pull request (should be merged soon) adds 2 new operations to a security domain: list-cached-principals and flush-cache. As Anil said the construct for the JSSE security domains is already included in AS7 and they are currently part of the <security-domain> element. As we already have an operation to add security domains I think we are covered for there. On 05/12/2011 10:33 AM, Andrig Miller wrote: > > ----- Original Message ----- >> From: "Heiko Braun&quot;&lt;hbraun(a)redhat.com&gt; >> To: "Andrig Miller&quot;&lt;anmiller(a)redhat.com&gt; >> Cc: "Marcus Moyses&quot;&lt;mmoyses(a)redhat.com&gt;, >> &quot;jboss-as7-dev(a)lists.jboss.org >> Development&quot;&lt;jboss-as7-dev(a)lists.jboss.org&gt; >> Sent: Thursday, May 12, 2011 2:05:53 AM >> Subject: Re: [jboss-as7-dev] Security Subsystem management use >> cases >> >> >> >> >> >> On May 11, 2011, at 5:38 PM, Andrig Miller wrote: >> >>> What about the JAAS security domain configuration as shown by >>> Mastercard in their JBoss World presentation? I'm sure there are >>> many other things. >> >> Can you elaborate on that? > I'm not the expert on this, but in Mastercard's presentation, they > showed a configuration of a JAAS security domain, where they could > remove the username/password information, and externalize the > security configuration outside of the deployed applications, and > use PicketLink STS. > > Anil, should probably talk about this. > > This is in EAP 5.1, and should obviously be carried over. > > Andy -- Marcus Moyses JBoss Core Developer JBoss by Red Hat