[jboss-cvs] JBossAS SVN: r71677 - in projects/docs/trunk/AS_5/Administration_And_Configuration_Guide: en-US and 1 other directory.

jboss-cvs-commits at lists.jboss.org jboss-cvs-commits at lists.jboss.org
Thu Apr 3 03:02:29 EDT 2008 

Author: skittoli at redhat.com
Date: 2008-04-03 03:02:29 -0400 (Thu, 03 Apr 2008)
New Revision: 71677

Modified:
   projects/docs/trunk/AS_5/Administration_And_Configuration_Guide/Makefile
   projects/docs/trunk/AS_5/Administration_And_Configuration_Guide/en-US/Security.xml
Log:
updates

Modified: projects/docs/trunk/AS_5/Administration_And_Configuration_Guide/Makefile
===================================================================
--- projects/docs/trunk/AS_5/Administration_And_Configuration_Guide/Makefile	2008-04-03 06:49:48 UTC (rev 71676)
+++ projects/docs/trunk/AS_5/Administration_And_Configuration_Guide/Makefile	2008-04-03 07:02:29 UTC (rev 71677)
@@ -7,8 +7,7 @@
 PRODUCT	= 	JBoss_Application_Server
 BRAND = JBoss
 
-#OTHER_LANGS	= de-DE es-ES fr-FR ja-JP pt-BR zh-CN
-#OTHER_LANGS	= as-IN bn-IN de-DE es-ES fr-FR gu-IN hi-IN it-IT ja-JP kn-IN ko-KR ml-IN mr-IN or-IN pa-IN pt-BR ru-RU si-LK ta-IN te-IN zh-CN zh-TW
+OTHER_LANGS	= de-DE es-ES fr-FR ja-JP pt-BR zh-CN as-IN bn-IN de-DE es-ES fr-FR gu-IN hi-IN it-IT ja-JP kn-IN ko-KR ml-IN mr-IN or-IN pa-IN pt-BR ru-RU si-LK ta-IN te-IN zh-CN zh-TW
 TRANSLATIONS	= $(XML_LANG) $(OTHER_LANGS)
 
 COMMON_CONFIG  = /usr/share/publican

Modified: projects/docs/trunk/AS_5/Administration_And_Configuration_Guide/en-US/Security.xml
===================================================================
--- projects/docs/trunk/AS_5/Administration_And_Configuration_Guide/en-US/Security.xml	2008-04-03 06:49:48 UTC (rev 71676)
+++ projects/docs/trunk/AS_5/Administration_And_Configuration_Guide/en-US/Security.xml	2008-04-03 07:02:29 UTC (rev 71677)
@@ -6,7 +6,7 @@
 	<para>The JBoss security framework default implementation is based on JAAS. It implements standard J2EE authentication and authorization but also supports extended security models with <ulink url="http://wiki.jboss.org/wiki/Edit.jsp?page=SecurityProxy">SecurityProxy?</ulink> and <ulink url="http://wiki.jboss.org/wiki/Wiki.jsp?page=SecurityAssociation">SecurityAssociation</ulink> implementations. </para>
 <para>JAAS based implementation enables pluggable authentication modules (PAMs) which is a way to integrate with existing authentication frameworks in your enterprise. </para>
 
-<section><title>Changes affecting Security in JBoss 5.x<title>
+<section><title>Changes affecting Security in JBoss 5.x</title>
 	
 <section><title>Web Layer</title>
 	<para>
@@ -14,10 +14,10 @@
 	</para>
 </section>
 
-<section><title>General Configuration<title>
+<section><title>General Configuration</title>
 		<para>
 			We are making an effort to get away from the previous <ulink url="http://wiki.jboss.org/wiki/Wiki.jsp?page=JaasSecurityManagerService">JaasSecurityManagerService</ulink> MBean service configuration in conf/jboss-service.xml. We are trying to introduce POJO beans such as the ones defined in deployers/security-deployer-beans.xml.
-		
+		</para>		
 <programlisting><![CDATA[<!-- JNDI Object Factory to establish SecurityDomainContext objects -->
 <bean name="SecurityDomainObjectFactory" class="org.jboss.security.integration.SecurityDomainObjectFactory" />
 	
@@ -28,7 +28,7 @@
  <bean name="JNDIBasedSecurityManagement"
 class="org.jboss.security.integration.JNDIBasedSecurityManagement">
  </bean>]]></programlisting>
-</para>
+
 </section>
 
 <section>
@@ -76,7 +76,9 @@
 
 </para>
 </section>
+</section>
 
+
 <section><title>Default Security Domains for the EJB and WEB deployments.</title>
 	<para>We have defined application policies "jboss-ejb-policy" and "jboss-web-policy" as the fall back security domains for the ejb and web layers. These are defined in deploy/security-policies-service.xml
 </para>
@@ -96,7 +98,9 @@
 		Open the <filename> ${JBOSS_HOME}/server/${server_configuration}/conf/login-config.xml</filename> file.
 		
 		This file sets up the configuration for the security domains available to applications running in the server. The file already has a few domains in there for some example/default resources, so you might want to look to those for inspiration. JBoss SX uses JAAS for the underlying security infrastructure, and JAAS uses a class called a "login module" to interact with a security store for authenticating credentials. This file basically hooks up a security domain (just a name really) to a JAAS login module. JBoss AS comes packed with a few different login modules which you can find more information about on the JBoss SX wiki page at JBossSX.</para>
-		
+	</listitem>
+	<listitem>
+		<para>
 		The easiest login module to start with is the <ulink url="http://wiki.jboss.org/wiki/Wiki.jsp?page=UsersRolesLoginModule">UsersRolesLoginModule</ulink>. This login module allows you to specify user names, passwords and roles in a simple property file. Obviously, this module isn't one of the more secure modules, so you probably would want to use something like LDAP to store/lookup credentials in production.
 			</para>
 		</listitem>
@@ -135,13 +139,15 @@
 		Opening the my-web-users.properties file, you will see a single entry like this: "admin=admin". When a user logs into this security domain, the login module will examine the properties data in this file for known users. The structure of the entries in this file is "username=password". Let's add a new entry to the file for your own user by pasting "chris=secure" on a new line below the "admin=admin" line in the file. Save this file.
 		
 Next, open the <filename>my-web-roles.properties</filename> file, and you should see an line like the following: "<emphasis>admin=JBossAdmin,HttpInvoker</emphasis>". The entries in this file define what roles a user has associated with their account when they login. The form of these entries is "username=Role1,Role2,..." where the username is the user you wish to assign roles to, and the Roles entries are a comma separated list of roles to assign to that user. Add a new entry to this file by pasting "chris=WebAppUser" on a new line below the "admin=...." line. Save this file. 
-	<para>
+	
 	</para>
 </listitem>
-
+</orderedlist>
 	</para>
 			
 </section>
+</section>
+
 <section>
 	<title>Securing the Web Application with Basic Authentication</title>
 <para>

More information about the jboss-cvs-commits mailing list