[jboss-as7-dev] Security Subsystem management use cases

Marcus Moyses mmoyses at redhat.com
Mon May 16 09:49:57 EDT 2011


Hi Heiko,
when you get a chance, please take a look at WebSecurityCERTTestCase in 
teststuite2/internals. There you will find an example of a security 
domain being created and added to the server. I believe that's the 
operation Andy mentioned. We probably need to make an UI that makes it 
more intuitive to create the domains but the logic to add security 
domains is there. Feel free to ping me if you need help understanding 
the internals of a security domain.

On 05/13/2011 07:17 AM, Heiko Braun wrote:
>
> On May 12, 2011, at 7:56 PM, Marcus Moyses wrote:
>
>> As Anil said the construct for the JSSE security domains is already included in AS7 and they are currently part of the<security-domain>  element. As we already have an operation to add security domains I think we are covered for there.
> Not sure if we are covered here. I can only tell that there is a security domain called "other" and that it's required.
> But that's about it:
>
> [domain at localhost:9999 /] /profile=default/subsystem=security:read-children-resources(child-type=security-domain, recursive=true)
> {
>      "outcome" =>  "success",
>      "result" =>  [("other" =>  {"authentication" =>  [{
>      "code" =>  "UsersRoles",
>      "flag" =>  "required"
> }]})],
>      "compensating-operation" =>  undefined
> }
>
>
> I don't know all the nitty gritty details about the security subsystem and it management use cases.
> But apart from listing the security domains, aren't there other use cases you can think of?
> What about these:
>
> - Creating new security domains? Possible? If so, how?
> - Modifications to security domains? Does that make sense?
> - [...]
>
>
> Ike
>
>
>
>
>

-- 
Marcus Moyses
JBoss Core Developer
JBoss by Red Hat



More information about the jboss-as7-dev mailing list