It turned out that following combination:
- XMLLoginConfigMBean: configuration change(credentials)
- JBossManagedConnectionPoolMBean: flushing + pool config
- RARDeploymentMBean: url change
- ConnectionManager: switching security policy
- SecureIdentityLoginModule + DynamicLoginConfig: security definitions
makes it available to reconfigure data sources compleatly. Maybe someone finds it useful.