[jboss-cvs] JBossAS SVN: r81327 - in trunk: testsuite and 11 other directories.
jboss-cvs-commits at lists.jboss.org
jboss-cvs-commits at lists.jboss.org
Wed Nov 19 17:09:20 EST 2008
Author: anil.saldhana at jboss.com
Date: 2008-11-19 17:09:20 -0500 (Wed, 19 Nov 2008)
New Revision: 81327
Added:
trunk/testsuite/src/main/org/jboss/test/jacc/test/allstarrole/
trunk/testsuite/src/main/org/jboss/test/jacc/test/allstarrole/AllStarRoleJaccPolicy.java
trunk/testsuite/src/main/org/jboss/test/jacc/test/allstarrole/JBAS1824AllStarRoleJaccTestCase.java
trunk/testsuite/src/resources/security/jacc/allStarRole/
trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/
trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/classes/
trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/classes/roles.properties
trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/classes/users.properties
trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/jboss-web.xml
trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/web.xml
trunk/testsuite/src/resources/security/jacc/allStarRole/index.html
trunk/testsuite/src/resources/test-configs/jacc-security-allstarrole/
trunk/testsuite/src/resources/test-configs/jacc-security-allstarrole/deployers/
trunk/testsuite/src/resources/test-configs/jacc-security-allstarrole/deployers/jacc-jboss-beans.xml
Modified:
trunk/server/src/main/org/jboss/web/WebPermissionMapping.java
trunk/testsuite/build.xml
trunk/testsuite/imports/sections/security.xml
trunk/testsuite/imports/server-config.xml
Log:
JBAS-6130: jacc all star role mode should allow configurable bypass
Modified: trunk/server/src/main/org/jboss/web/WebPermissionMapping.java
===================================================================
--- trunk/server/src/main/org/jboss/web/WebPermissionMapping.java 2008-11-19 22:05:41 UTC (rev 81326)
+++ trunk/server/src/main/org/jboss/web/WebPermissionMapping.java 2008-11-19 22:09:20 UTC (rev 81327)
@@ -21,21 +21,23 @@
*/
package org.jboss.web;
-import java.util.Iterator;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.Collection;
import java.util.HashMap;
import java.util.HashSet;
-import java.util.Arrays;
+import java.util.Iterator;
import java.util.List;
import java.util.Map;
import java.util.Set;
-import java.util.ArrayList;
-import java.util.Collection;
+
import javax.security.jacc.PolicyConfiguration;
import javax.security.jacc.PolicyContextException;
import javax.security.jacc.WebResourcePermission;
+import javax.security.jacc.WebRoleRefPermission;
import javax.security.jacc.WebUserDataPermission;
-import javax.security.jacc.WebRoleRefPermission;
+import org.jboss.logging.Logger;
import org.jboss.metadata.javaee.spec.SecurityRoleMetaData;
import org.jboss.metadata.javaee.spec.SecurityRoleRefMetaData;
import org.jboss.metadata.javaee.spec.SecurityRoleRefsMetaData;
@@ -43,12 +45,9 @@
import org.jboss.metadata.web.jboss.JBossServletsMetaData;
import org.jboss.metadata.web.jboss.JBossWebMetaData;
import org.jboss.metadata.web.spec.SecurityConstraintMetaData;
-import org.jboss.metadata.web.spec.ServletMetaData;
-import org.jboss.metadata.web.spec.ServletsMetaData;
import org.jboss.metadata.web.spec.TransportGuaranteeType;
import org.jboss.metadata.web.spec.WebResourceCollectionMetaData;
import org.jboss.metadata.web.spec.WebResourceCollectionsMetaData;
-import org.jboss.logging.Logger;
//$Id$
@@ -135,11 +134,17 @@
{
if( role.equals("*") )
{
- // The wildcard ref maps to all declared security-role names
- for(SecurityRoleMetaData srmd : metaData.getSecurityRoles())
- {
- role = srmd.getRoleName();
- mappedRoles.add(role);
+ //JBAS-1824: Allow "*" to provide configurable authorization bypass
+ if(metaData.isJaccAllStoreRole())
+ mappedRoles.add("*");
+ else
+ {
+ // The wildcard ref maps to all declared security-role names
+ for(SecurityRoleMetaData srmd : metaData.getSecurityRoles())
+ {
+ role = srmd.getRoleName();
+ mappedRoles.add(role);
+ }
}
}
else
@@ -194,16 +199,28 @@
{
Map.Entry<String, Set<String>> roleMethods = roles.next();
String role = (String) roleMethods.getKey();
- Set<String> methods = roleMethods.getValue();
- httpMethods = new String[methods.size()];
- methods.toArray(httpMethods);
- WebResourcePermission wrp = new WebResourcePermission(qurl, httpMethods);
+ WebResourcePermission wrp;
+ if("*".equals(role))
+ {
+ //JBAS-1824: <role-name>*</role-name>
+ wrp = new WebResourcePermission(qurl, (String)null);
+ }
+ else
+ {
+ Set<String> methods = roleMethods.getValue();
+ httpMethods = new String[methods.size()];
+ methods.toArray(httpMethods);
+ wrp = new WebResourcePermission(qurl, httpMethods);
+ }
pc.addToRole(role, wrp);
//JACC 1.1: create !(httpmethods) in unchecked perms
- WebResourcePermission wrpUnchecked = new WebResourcePermission(info.pattern,
- "!" + getCommaSeparatedString(httpMethods));
- pc.addToUncheckedPolicy(wrpUnchecked);
+ if(httpMethods != null)
+ {
+ WebResourcePermission wrpUnchecked = new WebResourcePermission(info.pattern,
+ "!" + getCommaSeparatedString(httpMethods));
+ pc.addToUncheckedPolicy(wrpUnchecked);
+ }
}
// Create the unchecked permissions
@@ -245,9 +262,12 @@
else
{
//JACC 1.1: Transport is CONFIDENTIAL/INTEGRAL, add a !(http methods)
- WebUserDataPermission wudpNonNull = new WebUserDataPermission(info.pattern,
- "!" + getCommaSeparatedString(httpMethods));
- pc.addToUncheckedPolicy(wudpNonNull);
+ if(httpMethods != null)
+ {
+ WebUserDataPermission wudpNonNull = new WebUserDataPermission(info.pattern,
+ "!" + getCommaSeparatedString(httpMethods));
+ pc.addToUncheckedPolicy(wudpNonNull);
+ }
}
}
}
Modified: trunk/testsuite/build.xml
===================================================================
--- trunk/testsuite/build.xml 2008-11-19 22:05:41 UTC (rev 81326)
+++ trunk/testsuite/build.xml 2008-11-19 22:09:20 UTC (rev 81327)
@@ -681,6 +681,10 @@
<patternset id="jacc.excludes">
<exclude name="**/test/jacc/test/*"/>
</patternset>
+ <patternset id="jacc.allstarrole.includes">
+ <include name="org/jboss/test/jacc/test/allstarrole/*TestCase.class"/>
+ </patternset>
+
<patternset id="ldap.includes">
<include name="**/test/security/test/opends/*TestCase.class"/>
</patternset>
@@ -956,6 +960,7 @@
<antcall target="tests-binding-manager"/>
<antcall target="tests-jacc-security"/>
<antcall target="tests-jacc-securitymgr"/>
+ <antcall target="tests-jacc-security-allstarrole"/>
<!--
<antcall target="tests-security-jaspi-unit"/>
-->
@@ -1796,6 +1801,48 @@
<server:stop name="jacc-securitymgr"/>
</target>
+ <target name="tests-jacc-security-allstarrole"
+ description="Tests run against a jboss server with JACC configured + security manager">
+ <!-- Create the security manager enabled jacc -->
+ <create-config baseconf="default" newconf="jacc-security-allstarrole" newconf-src="jacc">
+ <patternset>
+ <include name="conf/**"/>
+ <include name="deployers/**"/>
+ <include name="deploy/**"/>
+ <include name="lib/**"/>
+ </patternset>
+ </create-config>
+
+ <!-- Use the test policy provider -->
+ <copy todir="${jboss.dist}/server/jacc-security-allstarrole/deployers" file="${build.resources}/test-configs/jacc-security-allstarrole/deployers/jacc-jboss-beans.xml" overwrite="true"/>
+ <!-- Copy the jacc allStarRolePolicyProvider jar -->
+ <copy todir="${jboss.dist}/server/jacc-security-allstarrole/lib" file="${build.lib}/jacc-allStarRolePolicyProvider.jar"/>
+
+ <server:start name="jacc-security-allstarrole"/>
+
+ <mkdir dir="${build.reports}"/>
+ <mkdir dir="${build.testlog}"/>
+
+ <property name="jbosstest.secure" value="true"/>
+ <property name="jboss.security.jacc" value="true" />
+ <property name="java.security.auth.login.config"
+ value="${build.resources}/security/auth.conf"/>
+ <propertyset id="jacc-tests-props">
+ <propertyref prefix="java.security.auth"/>
+ </propertyset>
+
+ <propertyset id="jacc-tests-props">
+ <propertyref prefix="java.security.auth"/>
+ <propertyref prefix="jboss.security"/>
+ </propertyset>
+
+ <run-junit junit.patternset="jacc.allstarrole.includes"
+ junit.configuration="JACC+allstarrole"
+ junit.syspropertyset="jacc-tests-props" />
+
+ <server:stop name="jacc-security-allstarrole"/>
+ </target>
+
<!--
| JSR196 Based Unit Tests
-->
Modified: trunk/testsuite/imports/sections/security.xml
===================================================================
--- trunk/testsuite/imports/sections/security.xml 2008-11-19 22:05:41 UTC (rev 81326)
+++ trunk/testsuite/imports/sections/security.xml 2008-11-19 22:09:20 UTC (rev 81327)
@@ -482,5 +482,28 @@
</fileset>
</jar>
+ <!-- JBAS-1824:All Star Role jacc(create WebResourcePerm(url,null) -->
+ <war warfile="${build.lib}/jacc-allstarrole.war"
+ webxml="${build.resources}/security/jacc/allStarRole/WEB-INF/web.xml">
+ <fileset dir="${build.resources}/security/jacc/allStarRole">
+ <include name="*html"/>
+ <include name="WEB-INF/classes/*"/>
+ <include name="WEB-INF/jboss-web.xml"/>
+ </fileset>
+ </war>
+ <war warfile="${build.lib}/jacc-allstarrole-noconfig.war"
+ webxml="${build.resources}/security/jacc/allStarRole/WEB-INF/web.xml">
+ <fileset dir="${build.resources}/security/jacc/allStarRole/">
+ <include name="*html"/>
+ </fileset>
+ </war>
+ <!--jacc-allStarRolePolicyProvider.jar -->
+ <jar destfile="${build.lib}/jacc-allStarRolePolicyProvider.jar">
+ <fileset dir="${build.classes}">
+ <include name="org/jboss/test/jacc/test/allstarrole/*olicy*"/>
+ <include name="org/jboss/test/jacc/test/policy/*olicy*"/>
+ </fileset>
+ </jar>
+
</target>
</project>
Modified: trunk/testsuite/imports/server-config.xml
===================================================================
--- trunk/testsuite/imports/server-config.xml 2008-11-19 22:05:41 UTC (rev 81326)
+++ trunk/testsuite/imports/server-config.xml 2008-11-19 22:09:20 UTC (rev 81327)
@@ -168,6 +168,14 @@
<sysproperty key="java.net.preferIPv4Stack" value="true" />
<sysproperty key="java.endorsed.dirs" value="${jboss.dist}/lib/endorsed" />
</server>
+ <server name="jacc-security-allstarrole" host="${node0}">
+ <jvmarg value="-Xms128m" />
+ <jvmarg value="-Xmx256m" />
+ <jvmarg value="-XX:MaxPermSize=512m" />
+ <jvmarg value="${jpda.cmdline}" />
+ <sysproperty key="java.net.preferIPv4Stack" value="true" />
+ <sysproperty key="java.endorsed.dirs" value="${jboss.dist}/lib/endorsed" />
+ </server>
<server name="jaspi" host="${node0}"/>
<server name="tomcat-ssl" host="${node0}">
<jvmarg value="${jpda.cmdline}" />
Added: trunk/testsuite/src/main/org/jboss/test/jacc/test/allstarrole/AllStarRoleJaccPolicy.java
===================================================================
--- trunk/testsuite/src/main/org/jboss/test/jacc/test/allstarrole/AllStarRoleJaccPolicy.java (rev 0)
+++ trunk/testsuite/src/main/org/jboss/test/jacc/test/allstarrole/AllStarRoleJaccPolicy.java 2008-11-19 22:09:20 UTC (rev 81327)
@@ -0,0 +1,82 @@
+/*
+ * JBoss, Home of Professional Open Source
+ * Copyright 2006, JBoss Inc., and individual contributors as indicated
+ * by the @authors tag. See the copyright.txt in the distribution for a
+ * full listing of individual contributors.
+ *
+ * This is free software; you can redistribute it and/or modify it
+ * under the terms of the GNU Lesser General Public License as
+ * published by the Free Software Foundation; either version 2.1 of
+ * the License, or (at your option) any later version.
+ *
+ * This software is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public
+ * License along with this software; if not, write to the Free
+ * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
+ * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
+ */
+package org.jboss.test.jacc.test.allstarrole;
+
+import java.security.Permission;
+import java.security.Permissions;
+import java.security.Policy;
+import java.security.ProtectionDomain;
+
+import javax.security.jacc.PolicyContextException;
+import javax.security.jacc.WebResourcePermission;
+
+import org.jboss.security.jacc.DelegatingPolicy;
+
+//$Id$
+
+/**
+ * JBAS-1824: Jacc Policy Provider for testing that bypasses authorization checks
+ * for <role-name>*</role-name>
+ *
+ * This policy is an extension of DelegatingPolicy and only checks for the
+ * presence of WebResourcePermission(url, null) for role-name '*'
+ * @author <a href="mailto:Anil.Saldhana at jboss.org">Anil Saldhana</a>
+ * @since Feb 16, 2007
+ * @version $Revision$
+ */
+public class AllStarRoleJaccPolicy extends DelegatingPolicy
+{
+ public AllStarRoleJaccPolicy()
+ {
+ super();
+ }
+
+ public AllStarRoleJaccPolicy(Policy delegate)
+ {
+ super(delegate);
+ }
+
+ public boolean implies(ProtectionDomain domain, Permission permission)
+ {
+ boolean implied = false;
+
+ if (permission instanceof WebResourcePermission == false)
+ {
+ // Let DelegatingPolicy handle the check
+ implied = super.implies(domain, permission);
+ }
+ else
+ {
+ try
+ {
+ Permissions perms = this.getPermissionsForRole("*");
+ if(perms != null)
+ implied = perms.implies(new WebResourcePermission("/*",(String)null));
+ }
+ catch (PolicyContextException e)
+ {
+ throw new RuntimeException(e);
+ }
+ }
+ return implied;
+ }
+}
Added: trunk/testsuite/src/main/org/jboss/test/jacc/test/allstarrole/JBAS1824AllStarRoleJaccTestCase.java
===================================================================
--- trunk/testsuite/src/main/org/jboss/test/jacc/test/allstarrole/JBAS1824AllStarRoleJaccTestCase.java (rev 0)
+++ trunk/testsuite/src/main/org/jboss/test/jacc/test/allstarrole/JBAS1824AllStarRoleJaccTestCase.java 2008-11-19 22:09:20 UTC (rev 81327)
@@ -0,0 +1,90 @@
+/*
+ * JBoss, Home of Professional Open Source
+ * Copyright 2006, JBoss Inc., and individual contributors as indicated
+ * by the @authors tag. See the copyright.txt in the distribution for a
+ * full listing of individual contributors.
+ *
+ * This is free software; you can redistribute it and/or modify it
+ * under the terms of the GNU Lesser General Public License as
+ * published by the Free Software Foundation; either version 2.1 of
+ * the License, or (at your option) any later version.
+ *
+ * This software is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public
+ * License along with this software; if not, write to the Free
+ * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
+ * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
+ */
+package org.jboss.test.jacc.test.allstarrole;
+
+import java.net.HttpURLConnection;
+import java.net.URL;
+
+import junit.framework.Test;
+import junit.framework.TestSuite;
+
+import org.jboss.test.JBossTestCase;
+import org.jboss.test.JBossTestSetup;
+import org.jboss.test.util.web.HttpUtils;
+
+//$Id$
+
+/**
+ * JBAS-1824: <role-name>*</role-name> should create WebResourcePermission(url,null)
+ * if requested.
+ * @author <a href="mailto:Anil.Saldhana at jboss.org">Anil Saldhana</a>
+ * @since Feb 16, 2007
+ * @version $Revision$
+ */
+public class JBAS1824AllStarRoleJaccTestCase extends JBossTestCase
+{
+ private String baseURLAuth = HttpUtils.getBaseURL("jduke", "theduke");
+
+ public JBAS1824AllStarRoleJaccTestCase(String name)
+ {
+ super(name);
+ }
+
+ public void testSuccessfulAuthorizationBypass() throws Exception
+ {
+ //Try a successful access
+ HttpUtils.accessURL(new URL(baseURLAuth + "/jacc-allstarrole/index.html"));
+ }
+
+ public void testUnsuccessfulAuthorizationBypass() throws Exception
+ {
+ //Try a unsuccessful access
+ HttpUtils.accessURL(new URL(baseURLAuth + "/jacc-allstarrole-noconfig/index.html")
+ , "JBossTest Servlets", HttpURLConnection.HTTP_FORBIDDEN);
+ }
+
+ public static Test suite() throws Exception
+ {
+ TestSuite suite = new TestSuite();
+ suite.addTest(new TestSuite(JBAS1824AllStarRoleJaccTestCase.class));
+
+ // Create an initializer for the test suite
+ Test wrapper = new JBossTestSetup(suite)
+ {
+ protected void setUp() throws Exception
+ {
+ super.setUp();
+ deploy("jacc-allstarrole.war");
+ deploy("jacc-allstarrole-noconfig.war");
+ // Make sure the security cache is clear
+ flushAuthCache();
+ }
+ protected void tearDown() throws Exception
+ {
+ undeploy("jacc-allstarrole-noconfig.war");
+ undeploy("jacc-allstarrole.war");
+ super.tearDown();
+ }
+ };
+ return wrapper;
+ }
+}
Added: trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/classes/roles.properties
===================================================================
--- trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/classes/roles.properties (rev 0)
+++ trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/classes/roles.properties 2008-11-19 22:09:20 UTC (rev 81327)
@@ -0,0 +1,19 @@
+scott=Echo
+stark=Java,Coder
+stark.CallerPrincipal=callerStark
+
+starksm.Roles=ProjectUser
+starksm.CallerPrincipal=callerStarksm
+scott.Roles=ProjectUser
+scott.CallerPrincipal=callerScott
+
+jduke=Role1,Role2,Echo
+jduke.CallerPrincipal=callerJduke
+jdukeman=Role2,Role3
+jdukeman.CallerPrincipal=callerJdukeman
+
+# Roles for the unit-tests cert alias
+unit-tests=CertUser
+unit-tests.CallerPrincipal=callerX509
+
+invoker=HttpInvoker
\ No newline at end of file
Added: trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/classes/users.properties
===================================================================
--- trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/classes/users.properties (rev 0)
+++ trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/classes/users.properties 2008-11-19 22:09:20 UTC (rev 81327)
@@ -0,0 +1,8 @@
+scott=echoman
+stark=javaman
+jduke=theduke
+jdukeman=anotherduke
+# Old http-invoker login
+invoker=invoker
+# jmx-console login
+admin=admin
\ No newline at end of file
Added: trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/jboss-web.xml
===================================================================
--- trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/jboss-web.xml (rev 0)
+++ trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/jboss-web.xml 2008-11-19 22:09:20 UTC (rev 81327)
@@ -0,0 +1,9 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE jboss-web PUBLIC
+ "-//JBoss//DTD Web Application 2.4//EN"
+ "http://www.jboss.org/j2ee/dtd/jboss-web_4_2.dtd">
+
+<jboss-web>
+ <security-domain>java:/jaas/userinrole</security-domain>
+ <jacc-star-role-allow>true</jacc-star-role-allow>
+</jboss-web>
Added: trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/web.xml
===================================================================
--- trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/web.xml (rev 0)
+++ trunk/testsuite/src/resources/security/jacc/allStarRole/WEB-INF/web.xml 2008-11-19 22:09:20 UTC (rev 81327)
@@ -0,0 +1,35 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<web-app xmlns="http://java.sun.com/xml/ns/j2ee"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd" version="2.4">
+
+ <description>JBAS-1824:All Star Role Jacc</description>
+ <security-constraint>
+ <web-resource-collection>
+ <web-resource-name>Any Authenticated User</web-resource-name>
+ <url-pattern>/*</url-pattern>
+ </web-resource-collection>
+ <auth-constraint>
+ <role-name>*</role-name>
+ </auth-constraint>
+ </security-constraint>
+
+ <security-constraint>
+ <web-resource-collection>
+ <web-resource-name>ResourceUser Required</web-resource-name>
+ <url-pattern>/restricted/*</url-pattern>
+ </web-resource-collection>
+ <auth-constraint>
+ <role-name>ResourceUser</role-name>
+ </auth-constraint>
+ </security-constraint>
+
+ <security-role>
+ <role-name>ResourceUser</role-name>
+ </security-role>
+
+ <login-config>
+ <auth-method>BASIC</auth-method>
+ <realm-name>JBossTest Servlets</realm-name>
+ </login-config>
+</web-app>
Added: trunk/testsuite/src/resources/security/jacc/allStarRole/index.html
===================================================================
--- trunk/testsuite/src/resources/security/jacc/allStarRole/index.html (rev 0)
+++ trunk/testsuite/src/resources/security/jacc/allStarRole/index.html 2008-11-19 22:09:20 UTC (rev 81327)
@@ -0,0 +1 @@
+Test Page.
Added: trunk/testsuite/src/resources/test-configs/jacc-security-allstarrole/deployers/jacc-jboss-beans.xml
===================================================================
--- trunk/testsuite/src/resources/test-configs/jacc-security-allstarrole/deployers/jacc-jboss-beans.xml (rev 0)
+++ trunk/testsuite/src/resources/test-configs/jacc-security-allstarrole/deployers/jacc-jboss-beans.xml 2008-11-19 22:09:20 UTC (rev 81327)
@@ -0,0 +1,15 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+ JACC configuration
+ $Id: jacc-jboss-beans.xml 76417 2008-07-29 12:57:48Z adrian at jboss.org $
+-->
+<deployment xmlns="urn:jboss:bean-deployer:2.0">
+ <bean name="JaccPolicyProvider"
+ class="org.jboss.test.jacc.test.allstarrole.AllStarRoleJaccPolicy">
+ </bean>
+
+ <bean class="org.jboss.security.jacc.SecurityService"
+ name="JaccSecurityService">
+ <property name="policy"><inject bean="JaccPolicyProvider" property="policyProxy"/></property>
+ </bean>
+</deployment>
More information about the jboss-cvs-commits
mailing list