[jboss-cvs] JBossAS SVN: r93295 - tags/JBPAPP_5_0_0_FCS/build.
jboss-cvs-commits at lists.jboss.org
jboss-cvs-commits at lists.jboss.org
Tue Sep 8 15:22:27 EDT 2009
Author: fnasser at redhat.com
Date: 2009-09-08 15:22:26 -0400 (Tue, 08 Sep 2009)
New Revision: 93295
Modified:
tags/JBPAPP_5_0_0_FCS/build/jbossas-5-disableauth.patch
Log:
r93287 | smarlow at redhat.com: JBPAPP-2657 jbossas-5-disableauth.patch needs to be reversible with the patch -R
Modified: tags/JBPAPP_5_0_0_FCS/build/jbossas-5-disableauth.patch
===================================================================
--- tags/JBPAPP_5_0_0_FCS/build/jbossas-5-disableauth.patch 2009-09-08 19:08:17 UTC (rev 93294)
+++ tags/JBPAPP_5_0_0_FCS/build/jbossas-5-disableauth.patch 2009-09-08 19:22:26 UTC (rev 93295)
@@ -1,6 +1,35 @@
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/all/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml ./server/all/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml
---- ./server/all/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/all/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml 2009-06-29 16:47:04.000000000 -0400
+diff -Naur ./server/all/conf/login-config.xml ./server/all/conf/login-config.xml
+--- ./server/all/conf/login-config.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/all/conf/login-config.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -100,8 +100,9 @@
+ <authentication>
+ <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
+ flag="required">
+- <module-option name="usersProperties">props/jmx-console-users.properties</module-option>
+- <module-option name="rolesProperties">props/jmx-console-roles.properties</module-option>
++ <module-option name="usersProperties">props/jbossws-users.properties</module-option>
++ <module-option name="rolesProperties">props/jbossws-roles.properties</module-option>
++ <module-option name="unauthenticatedIdentity">anonymous</module-option>
+ </login-module>
+ </authentication>
+ </application-policy>
+diff -Naur ./server/all/conf/props/jbossws-users.properties ./server/all/conf/props/jbossws-users.properties
+--- ./server/all/conf/props/jbossws-users.properties 2009-09-08 13:43:11.000000000 -0400
++++ ./server/all/conf/props/jbossws-users.properties 2009-09-08 13:44:31.000000000 -0400
+@@ -1,2 +1,2 @@
+ # A sample users.properties file for use with the UsersRolesLoginModule
+-# kermit=thefrog
++kermit=thefrog
+diff -Naur ./server/all/conf/props/jmx-console-users.properties ./server/all/conf/props/jmx-console-users.properties
+--- ./server/all/conf/props/jmx-console-users.properties 2009-09-08 13:43:11.000000000 -0400
++++ ./server/all/conf/props/jmx-console-users.properties 2009-09-08 13:44:31.000000000 -0400
+@@ -1,2 +1,2 @@
+ # A sample users.properties file for use with the UsersRolesLoginModule
+-# admin=admin
++admin=admin
+diff -Naur ./server/all/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml ./server/all/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml
+--- ./server/all/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/all/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -203,9 +203,6 @@
role HttpInvoker to access the HTTP invoker servlets
</description>
@@ -11,9 +40,62 @@
<http-method>GET</http-method>
<http-method>POST</http-method>
</web-resource-collection>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/all/deploy/jmx-console.war/WEB-INF/jboss-web.xml ./server/all/deploy/jmx-console.war/WEB-INF/jboss-web.xml
---- ./server/all/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/all/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-05-26 16:15:38.000000000 -0400
+diff -Naur ./server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml ./server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml
+--- ./server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -6,8 +6,9 @@
+
+ <jboss-web>
+
+- <!-- A security domain that restricts access -->
+- <security-domain>java:/jaas/jmx-console</security-domain>
++ <!-- A security domain that restricts access
++ <security-domain>java:/jaas/JBossWS</security-domain>
++ -->
+
+ <context-root>jbossws</context-root>
+
+diff -Naur ./server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml ./server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml
+--- ./server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -32,21 +32,22 @@
+ <url-pattern>/pclink</url-pattern>
+ </servlet-mapping>
+
+- <!-- A security constraint that restricts access -->
++ <!-- A security constraint that restricts access
+ <security-constraint>
+ <web-resource-collection>
+ <web-resource-name>ContextServlet</web-resource-name>
+ <description>An example security config that only allows users with the
+- role 'JBossAdmin' to access the JBossWS console web application
++ role 'friend' to access the JBossWS console web application
+ </description>
+ <url-pattern>/*</url-pattern>
+ <http-method>GET</http-method>
+ <http-method>POST</http-method>
+ </web-resource-collection>
+ <auth-constraint>
+- <role-name>JBossAdmin</role-name>
++ <role-name>friend</role-name>
+ </auth-constraint>
+ </security-constraint>
++ -->
+
+ <login-config>
+ <auth-method>BASIC</auth-method>
+@@ -54,7 +55,7 @@
+ </login-config>
+
+ <security-role>
+- <role-name>JBossAdmin</role-name>
++ <role-name>friend</role-name>
+ </security-role>
+
+ <!--
+diff -Naur ./server/all/deploy/jmx-console.war/WEB-INF/jboss-web.xml ./server/all/deploy/jmx-console.war/WEB-INF/jboss-web.xml
+--- ./server/all/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/all/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -6,6 +6,6 @@
<!-- Uncomment the security-domain to enable security. You will
need to edit the htmladaptor login configuration to setup the
@@ -22,9 +104,9 @@
<security-domain>java:/jaas/jmx-console</security-domain>
+ -->
</jboss-web>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/all/deploy/jmx-console.war/WEB-INF/web.xml ./server/all/deploy/jmx-console.war/WEB-INF/web.xml
---- ./server/all/deploy/jmx-console.war/WEB-INF/web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/all/deploy/jmx-console.war/WEB-INF/web.xml 2009-05-26 16:15:38.000000000 -0400
+diff -Naur ./server/all/deploy/jmx-console.war/WEB-INF/web.xml ./server/all/deploy/jmx-console.war/WEB-INF/web.xml
+--- ./server/all/deploy/jmx-console.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/all/deploy/jmx-console.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -97,7 +97,6 @@
to users with the role JBossAdmin. Edit the roles to what you want and
uncomment the WEB-INF/jboss-web.xml/security-domain element to enable
@@ -41,9 +123,9 @@
<login-config>
<auth-method>BASIC</auth-method>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/all/deploy/jmx-invoker-service.xml ./server/all/deploy/jmx-invoker-service.xml
---- ./server/all/deploy/jmx-invoker-service.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/all/deploy/jmx-invoker-service.xml 2009-07-01 13:38:06.000000000 -0400
+diff -Naur ./server/all/deploy/jmx-invoker-service.xml ./server/all/deploy/jmx-invoker-service.xml
+--- ./server/all/deploy/jmx-invoker-service.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/all/deploy/jmx-invoker-service.xml 2009-09-08 13:44:31.000000000 -0400
@@ -111,9 +111,10 @@
<return-type>java.lang.Object</return-type>
<descriptors>
@@ -56,9 +138,9 @@
<!-- Interceptor that deals with non-serializable results -->
<interceptor code="org.jboss.jmx.connector.invoker.SerializableInterceptor"
policyClass="StripModelMBeanInfoPolicy"/>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml
---- ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml 2009-05-26 16:18:02.000000000 -0400
+diff -Naur ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml
+--- ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -9,8 +9,8 @@
<!-- Uncomment the security-domain to enable security. You will
need to edit the htmladaptor login configuration to setup the
@@ -69,9 +151,9 @@
<!-- The war depends on the -->
<depends>jboss.admin:service=PluginManager</depends>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml
---- ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml 2009-05-26 16:18:02.000000000 -0400
+diff -Naur ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml
+--- ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/all/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -339,7 +339,6 @@
to users with the role JBossAdmin. Edit the roles to what you want and
uncomment the WEB-INF/jboss-web.xml/security-domain element to enable
@@ -88,9 +170,124 @@
<login-config>
<auth-method>BASIC</auth-method>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/default/deploy/jmx-console.war/WEB-INF/jboss-web.xml ./server/default/deploy/jmx-console.war/WEB-INF/jboss-web.xml
---- ./server/default/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/default/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-07-01 13:38:32.000000000 -0400
+diff -Naur ./server/all/deploy/profileservice-jboss-beans.xml ./server/all/deploy/profileservice-jboss-beans.xml
+--- ./server/all/deploy/profileservice-jboss-beans.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/all/deploy/profileservice-jboss-beans.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -174,7 +174,7 @@
+ <!-- Server side security interceptor stack -->
+ <property name="serverProxyInterceptors">
+ <list>
+- <!-- comment this list to disable auth checks for the profileservice -->
++ <!-- uncomment to enable auth checks for the profileservice
+ <bean class="org.jboss.aspects.security.AuthenticationInterceptor">
+ <constructor>
+ <parameter>
+@@ -195,6 +195,7 @@
+ </parameter>
+ </constructor>
+ </bean>
++ -->
+ </list>
+ </property>
+ <depends>ConnectorMBean</depends>
+diff -Naur ./server/default/conf/login-config.xml ./server/default/conf/login-config.xml
+--- ./server/default/conf/login-config.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/default/conf/login-config.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -100,8 +100,9 @@
+ <authentication>
+ <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
+ flag="required">
+- <module-option name="usersProperties">props/jmx-console-users.properties</module-option>
+- <module-option name="rolesProperties">props/jmx-console-roles.properties</module-option>
++ <module-option name="usersProperties">props/jbossws-users.properties</module-option>
++ <module-option name="rolesProperties">props/jbossws-roles.properties</module-option>
++ <module-option name="unauthenticatedIdentity">anonymous</module-option>
+ </login-module>
+ </authentication>
+ </application-policy>
+diff -Naur ./server/default/conf/props/jbossws-users.properties ./server/default/conf/props/jbossws-users.properties
+--- ./server/default/conf/props/jbossws-users.properties 2009-09-08 13:43:11.000000000 -0400
++++ ./server/default/conf/props/jbossws-users.properties 2009-09-08 13:44:31.000000000 -0400
+@@ -1,2 +1,2 @@
+ # A sample users.properties file for use with the UsersRolesLoginModule
+-# kermit=thefrog
++kermit=thefrog
+diff -Naur ./server/default/conf/props/jmx-console-users.properties ./server/default/conf/props/jmx-console-users.properties
+--- ./server/default/conf/props/jmx-console-users.properties 2009-09-08 13:43:11.000000000 -0400
++++ ./server/default/conf/props/jmx-console-users.properties 2009-09-08 13:44:31.000000000 -0400
+@@ -1,2 +1,2 @@
+ # A sample users.properties file for use with the UsersRolesLoginModule
+-# admin=admin
++admin=admin
+diff -Naur ./server/default/deploy/http-invoker.sar/invoker.war/WEB-INF/web.xml ./server/default/deploy/http-invoker.sar/invoker.war/WEB-INF/web.xml
+--- ./server/default/deploy/http-invoker.sar/invoker.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/default/deploy/http-invoker.sar/invoker.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -156,9 +156,6 @@
+ role HttpInvoker to access the HTTP invoker servlets
+ </description>
+ <url-pattern>/restricted/*</url-pattern>
+- <url-pattern>/JNDIFactory/*</url-pattern>
+- <url-pattern>/EJBInvokerServlet/*</url-pattern>
+- <url-pattern>/JMXInvokerServlet/*</url-pattern>
+ <http-method>GET</http-method>
+ <http-method>POST</http-method>
+ </web-resource-collection>
+diff -Naur ./server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml ./server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml
+--- ./server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -6,8 +6,9 @@
+
+ <jboss-web>
+
+- <!-- A security domain that restricts access -->
+- <security-domain>java:/jaas/jmx-console</security-domain>
++ <!-- A security domain that restricts access
++ <security-domain>java:/jaas/JBossWS</security-domain>
++ -->
+
+ <context-root>jbossws</context-root>
+
+diff -Naur ./server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml ./server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml
+--- ./server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -32,21 +32,22 @@
+ <url-pattern>/pclink</url-pattern>
+ </servlet-mapping>
+
+- <!-- A security constraint that restricts access -->
++ <!-- A security constraint that restricts access
+ <security-constraint>
+ <web-resource-collection>
+ <web-resource-name>ContextServlet</web-resource-name>
+ <description>An example security config that only allows users with the
+- role 'JBossAdmin' to access the JBossWS console web application
++ role 'friend' to access the JBossWS console web application
+ </description>
+ <url-pattern>/*</url-pattern>
+ <http-method>GET</http-method>
+ <http-method>POST</http-method>
+ </web-resource-collection>
+ <auth-constraint>
+- <role-name>JBossAdmin</role-name>
++ <role-name>friend</role-name>
+ </auth-constraint>
+ </security-constraint>
++ -->
+
+ <login-config>
+ <auth-method>BASIC</auth-method>
+@@ -54,7 +55,7 @@
+ </login-config>
+
+ <security-role>
+- <role-name>JBossAdmin</role-name>
++ <role-name>friend</role-name>
+ </security-role>
+
+ <!--
+diff -Naur ./server/default/deploy/jmx-console.war/WEB-INF/jboss-web.xml ./server/default/deploy/jmx-console.war/WEB-INF/jboss-web.xml
+--- ./server/default/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/default/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -6,6 +6,6 @@
<!-- Uncomment the security-domain to enable security. You will
need to edit the htmladaptor login configuration to setup the
@@ -99,9 +296,9 @@
<security-domain>java:/jaas/jmx-console</security-domain>
+ -->
</jboss-web>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/default/deploy/jmx-console.war/WEB-INF/web.xml ./server/default/deploy/jmx-console.war/WEB-INF/web.xml
---- ./server/default/deploy/jmx-console.war/WEB-INF/web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/default/deploy/jmx-console.war/WEB-INF/web.xml 2009-07-01 13:38:32.000000000 -0400
+diff -Naur ./server/default/deploy/jmx-console.war/WEB-INF/web.xml ./server/default/deploy/jmx-console.war/WEB-INF/web.xml
+--- ./server/default/deploy/jmx-console.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/default/deploy/jmx-console.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -97,7 +97,6 @@
to users with the role JBossAdmin. Edit the roles to what you want and
uncomment the WEB-INF/jboss-web.xml/security-domain element to enable
@@ -118,9 +315,9 @@
<login-config>
<auth-method>BASIC</auth-method>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/default/deploy/jmx-invoker-service.xml ./server/default/deploy/jmx-invoker-service.xml
---- ./server/default/deploy/jmx-invoker-service.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/default/deploy/jmx-invoker-service.xml 2009-07-01 13:38:32.000000000 -0400
+diff -Naur ./server/default/deploy/jmx-invoker-service.xml ./server/default/deploy/jmx-invoker-service.xml
+--- ./server/default/deploy/jmx-invoker-service.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/default/deploy/jmx-invoker-service.xml 2009-09-08 13:44:31.000000000 -0400
@@ -111,9 +111,10 @@
<return-type>java.lang.Object</return-type>
<descriptors>
@@ -133,9 +330,9 @@
<!-- Interceptor that deals with non-serializable results -->
<interceptor code="org.jboss.jmx.connector.invoker.SerializableInterceptor"
policyClass="StripModelMBeanInfoPolicy"/>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml
---- ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml 2009-07-01 13:38:32.000000000 -0400
+diff -Naur ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml
+--- ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -9,8 +9,8 @@
<!-- Uncomment the security-domain to enable security. You will
need to edit the htmladaptor login configuration to setup the
@@ -146,9 +343,9 @@
<!-- The war depends on the -->
<depends>jboss.admin:service=PluginManager</depends>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml
---- ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml 2009-07-01 13:38:32.000000000 -0400
+diff -Naur ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml
+--- ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/default/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -339,7 +339,6 @@
to users with the role JBossAdmin. Edit the roles to what you want and
uncomment the WEB-INF/jboss-web.xml/security-domain element to enable
@@ -165,8 +362,58 @@
<login-config>
<auth-method>BASIC</auth-method>
---- ./server/production/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/production/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml 2009-07-01 13:38:33.000000000 -0400
+diff -Naur ./server/default/deploy/profileservice-jboss-beans.xml ./server/default/deploy/profileservice-jboss-beans.xml
+--- ./server/default/deploy/profileservice-jboss-beans.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/default/deploy/profileservice-jboss-beans.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -174,7 +174,7 @@
+ <!-- Server side security interceptor stack -->
+ <property name="serverProxyInterceptors">
+ <list>
+- <!-- comment this list to disable auth checks for the profileservice -->
++ <!-- uncomment to enable auth checks for the profileservice
+ <bean class="org.jboss.aspects.security.AuthenticationInterceptor">
+ <constructor>
+ <parameter>
+@@ -195,6 +195,7 @@
+ </parameter>
+ </constructor>
+ </bean>
++ -->
+ </list>
+ </property>
+ <depends>ConnectorMBean</depends>
+diff -Naur ./server/production/conf/login-config.xml ./server/production/conf/login-config.xml
+--- ./server/production/conf/login-config.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/production/conf/login-config.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -100,8 +100,9 @@
+ <authentication>
+ <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
+ flag="required">
+- <module-option name="usersProperties">props/jmx-console-users.properties</module-option>
+- <module-option name="rolesProperties">props/jmx-console-roles.properties</module-option>
++ <module-option name="usersProperties">props/jbossws-users.properties</module-option>
++ <module-option name="rolesProperties">props/jbossws-roles.properties</module-option>
++ <module-option name="unauthenticatedIdentity">anonymous</module-option>
+ </login-module>
+ </authentication>
+ </application-policy>
+diff -Naur ./server/production/conf/props/jbossws-users.properties ./server/production/conf/props/jbossws-users.properties
+--- ./server/production/conf/props/jbossws-users.properties 2009-09-08 13:43:11.000000000 -0400
++++ ./server/production/conf/props/jbossws-users.properties 2009-09-08 13:44:31.000000000 -0400
+@@ -1,2 +1,2 @@
+ # A sample users.properties file for use with the UsersRolesLoginModule
+-# kermit=thefrog
++kermit=thefrog
+diff -Naur ./server/production/conf/props/jmx-console-users.properties ./server/production/conf/props/jmx-console-users.properties
+--- ./server/production/conf/props/jmx-console-users.properties 2009-09-08 13:43:11.000000000 -0400
++++ ./server/production/conf/props/jmx-console-users.properties 2009-09-08 13:44:31.000000000 -0400
+@@ -1,2 +1,2 @@
+ # A sample users.properties file for use with the UsersRolesLoginModule
+-# admin=admin
++admin=admin
+diff -Naur ./server/production/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml ./server/production/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml
+--- ./server/production/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/production/deploy/httpha-invoker.sar/invoker.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -203,9 +203,6 @@
role HttpInvoker to access the HTTP invoker servlets
</description>
@@ -177,9 +424,62 @@
<http-method>GET</http-method>
<http-method>POST</http-method>
</web-resource-collection>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/production/deploy/jmx-console.war/WEB-INF/jboss-web.xml ./server/production/deploy/jmx-console.war/WEB-INF/jboss-web.xml
---- ./server/production/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/production/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-07-01 13:38:33.000000000 -0400
+diff -Naur ./server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml ./server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml
+--- ./server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -6,8 +6,9 @@
+
+ <jboss-web>
+
+- <!-- A security domain that restricts access -->
+- <security-domain>java:/jaas/jmx-console</security-domain>
++ <!-- A security domain that restricts access
++ <security-domain>java:/jaas/JBossWS</security-domain>
++ -->
+
+ <context-root>jbossws</context-root>
+
+diff -Naur ./server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml ./server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml
+--- ./server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -32,21 +32,22 @@
+ <url-pattern>/pclink</url-pattern>
+ </servlet-mapping>
+
+- <!-- A security constraint that restricts access -->
++ <!-- A security constraint that restricts access
+ <security-constraint>
+ <web-resource-collection>
+ <web-resource-name>ContextServlet</web-resource-name>
+ <description>An example security config that only allows users with the
+- role 'JBossAdmin' to access the JBossWS console web application
++ role 'friend' to access the JBossWS console web application
+ </description>
+ <url-pattern>/*</url-pattern>
+ <http-method>GET</http-method>
+ <http-method>POST</http-method>
+ </web-resource-collection>
+ <auth-constraint>
+- <role-name>JBossAdmin</role-name>
++ <role-name>friend</role-name>
+ </auth-constraint>
+ </security-constraint>
++ -->
+
+ <login-config>
+ <auth-method>BASIC</auth-method>
+@@ -54,7 +55,7 @@
+ </login-config>
+
+ <security-role>
+- <role-name>JBossAdmin</role-name>
++ <role-name>friend</role-name>
+ </security-role>
+
+ <!--
+diff -Naur ./server/production/deploy/jmx-console.war/WEB-INF/jboss-web.xml ./server/production/deploy/jmx-console.war/WEB-INF/jboss-web.xml
+--- ./server/production/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/production/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -6,6 +6,6 @@
<!-- Uncomment the security-domain to enable security. You will
need to edit the htmladaptor login configuration to setup the
@@ -188,9 +488,9 @@
<security-domain>java:/jaas/jmx-console</security-domain>
+ -->
</jboss-web>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/production/deploy/jmx-console.war/WEB-INF/web.xml ./server/production/deploy/jmx-console.war/WEB-INF/web.xml
---- ./server/production/deploy/jmx-console.war/WEB-INF/web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/production/deploy/jmx-console.war/WEB-INF/web.xml 2009-07-01 13:38:33.000000000 -0400
+diff -Naur ./server/production/deploy/jmx-console.war/WEB-INF/web.xml ./server/production/deploy/jmx-console.war/WEB-INF/web.xml
+--- ./server/production/deploy/jmx-console.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/production/deploy/jmx-console.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -97,7 +97,6 @@
to users with the role JBossAdmin. Edit the roles to what you want and
uncomment the WEB-INF/jboss-web.xml/security-domain element to enable
@@ -207,9 +507,9 @@
<login-config>
<auth-method>BASIC</auth-method>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/production/deploy/jmx-invoker-service.xml ./server/production/deploy/jmx-invoker-service.xml
---- ./server/production/deploy/jmx-invoker-service.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/production/deploy/jmx-invoker-service.xml 2009-07-01 13:38:32.000000000 -0400
+diff -Naur ./server/production/deploy/jmx-invoker-service.xml ./server/production/deploy/jmx-invoker-service.xml
+--- ./server/production/deploy/jmx-invoker-service.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/production/deploy/jmx-invoker-service.xml 2009-09-08 13:44:31.000000000 -0400
@@ -111,9 +111,10 @@
<return-type>java.lang.Object</return-type>
<descriptors>
@@ -222,9 +522,9 @@
<!-- Interceptor that deals with non-serializable results -->
<interceptor code="org.jboss.jmx.connector.invoker.SerializableInterceptor"
policyClass="StripModelMBeanInfoPolicy"/>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml
---- ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml 2009-07-01 13:38:33.000000000 -0400
+diff -Naur ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml
+--- ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -9,8 +9,8 @@
<!-- Uncomment the security-domain to enable security. You will
need to edit the htmladaptor login configuration to setup the
@@ -235,9 +535,9 @@
<!-- The war depends on the -->
<depends>jboss.admin:service=PluginManager</depends>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml
---- ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml 2009-07-01 13:38:33.000000000 -0400
+diff -Naur ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml
+--- ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/production/deploy/management/console-mgr.sar/web-console.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -339,7 +339,6 @@
to users with the role JBossAdmin. Edit the roles to what you want and
uncomment the WEB-INF/jboss-web.xml/security-domain element to enable
@@ -254,54 +554,111 @@
<login-config>
<auth-method>BASIC</auth-method>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/standard/deploy/jmx-console.war/WEB-INF/jboss-web.xml ./server/standard/deploy/jmx-console.war/WEB-INF/jboss-web.xml
---- ./server/standard/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/standard/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-07-01 13:38:37.000000000 -0400
-@@ -6,6 +6,6 @@
- <!-- Uncomment the security-domain to enable security. You will
- need to edit the htmladaptor login configuration to setup the
- login modules used to authentication users.
-- -->
- <security-domain>java:/jaas/jmx-console</security-domain>
-+ -->
- </jboss-web>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/standard/deploy/jmx-console.war/WEB-INF/web.xml ./server/standard/deploy/jmx-console.war/WEB-INF/web.xml
---- ./server/standard/deploy/jmx-console.war/WEB-INF/web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/standard/deploy/jmx-console.war/WEB-INF/web.xml 2009-07-01 13:38:35.000000000 -0400
-@@ -97,7 +97,6 @@
- to users with the role JBossAdmin. Edit the roles to what you want and
- uncomment the WEB-INF/jboss-web.xml/security-domain element to enable
- secured access to the HTML JMX console.
-- -->
+diff -Naur ./server/production/deploy/profileservice-jboss-beans.xml ./server/production/deploy/profileservice-jboss-beans.xml
+--- ./server/production/deploy/profileservice-jboss-beans.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/production/deploy/profileservice-jboss-beans.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -174,7 +174,7 @@
+ <!-- Server side security interceptor stack -->
+ <property name="serverProxyInterceptors">
+ <list>
+- <!-- comment this list to disable auth checks for the profileservice -->
++ <!-- uncomment to enable auth checks for the profileservice
+ <bean class="org.jboss.aspects.security.AuthenticationInterceptor">
+ <constructor>
+ <parameter>
+@@ -195,6 +195,7 @@
+ </parameter>
+ </constructor>
+ </bean>
++ -->
+ </list>
+ </property>
+ <depends>ConnectorMBean</depends>
+diff -Naur ./server/standard/conf/login-config.xml ./server/standard/conf/login-config.xml
+--- ./server/standard/conf/login-config.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/standard/conf/login-config.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -86,8 +86,9 @@
+ <authentication>
+ <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
+ flag="required">
+- <module-option name="usersProperties">props/jmx-console-users.properties</module-option>
+- <module-option name="rolesProperties">props/jmx-console-roles.properties</module-option>
++ <module-option name="usersProperties">props/jbossws-users.properties</module-option>
++ <module-option name="rolesProperties">props/jbossws-roles.properties</module-option>
++ <module-option name="unauthenticatedIdentity">anonymous</module-option>
+ </login-module>
+ </authentication>
+ </application-policy>
+diff -Naur ./server/standard/conf/props/jbossws-users.properties ./server/standard/conf/props/jbossws-users.properties
+--- ./server/standard/conf/props/jbossws-users.properties 2009-09-08 13:43:11.000000000 -0400
++++ ./server/standard/conf/props/jbossws-users.properties 2009-09-08 13:44:31.000000000 -0400
+@@ -1,2 +1,2 @@
+ # A sample users.properties file for use with the UsersRolesLoginModule
+-# kermit=thefrog
++kermit=thefrog
+diff -Naur ./server/standard/conf/props/jmx-console-users.properties ./server/standard/conf/props/jmx-console-users.properties
+--- ./server/standard/conf/props/jmx-console-users.properties 2009-09-08 13:43:11.000000000 -0400
++++ ./server/standard/conf/props/jmx-console-users.properties 2009-09-08 13:44:31.000000000 -0400
+@@ -1,2 +1,2 @@
+ # A sample users.properties file for use with the UsersRolesLoginModule
+-# admin=admin
++admin=admin
+diff -Naur ./server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml ./server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml
+--- ./server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -6,8 +6,9 @@
+
+ <jboss-web>
+
+- <!-- A security domain that restricts access -->
+- <security-domain>java:/jaas/jmx-console</security-domain>
++ <!-- A security domain that restricts access
++ <security-domain>java:/jaas/JBossWS</security-domain>
++ -->
+
+ <context-root>jbossws</context-root>
+
+diff -Naur ./server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml ./server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml
+--- ./server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -32,21 +32,22 @@
+ <url-pattern>/pclink</url-pattern>
+ </servlet-mapping>
+
+- <!-- A security constraint that restricts access -->
++ <!-- A security constraint that restricts access
<security-constraint>
<web-resource-collection>
- <web-resource-name>HtmlAdaptor</web-resource-name>
-@@ -112,6 +111,7 @@
- <role-name>JBossAdmin</role-name>
+ <web-resource-name>ContextServlet</web-resource-name>
+ <description>An example security config that only allows users with the
+- role 'JBossAdmin' to access the JBossWS console web application
++ role 'friend' to access the JBossWS console web application
+ </description>
+ <url-pattern>/*</url-pattern>
+ <http-method>GET</http-method>
+ <http-method>POST</http-method>
+ </web-resource-collection>
+ <auth-constraint>
+- <role-name>JBossAdmin</role-name>
++ <role-name>friend</role-name>
</auth-constraint>
</security-constraint>
+ -->
<login-config>
<auth-method>BASIC</auth-method>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/standard/deploy/jmx-invoker-service.xml ./server/standard/deploy/jmx-invoker-service.xml
---- ./server/standard/deploy/jmx-invoker-service.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/standard/deploy/jmx-invoker-service.xml 2009-07-01 13:38:37.000000000 -0400
-@@ -111,9 +111,10 @@
- <return-type>java.lang.Object</return-type>
- <descriptors>
- <interceptors>
-- <!-- Interceptor to require authenticated users -->
-+ <!-- Uncomment to require authenticated users
- <interceptor code="org.jboss.jmx.connector.invoker.AuthenticationInterceptor"
- securityDomain="java:/jaas/jmx-console"/>
-+ -->
- <!-- Interceptor that deals with non-serializable results -->
- <interceptor code="org.jboss.jmx.connector.invoker.SerializableInterceptor"
- policyClass="StripModelMBeanInfoPolicy"/>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/web/deploy/jmx-console.war/WEB-INF/jboss-web.xml ./server/web/deploy/jmx-console.war/WEB-INF/jboss-web.xml
---- ./server/web/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/web/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-07-01 13:38:33.000000000 -0400
+@@ -54,7 +55,7 @@
+ </login-config>
+
+ <security-role>
+- <role-name>JBossAdmin</role-name>
++ <role-name>friend</role-name>
+ </security-role>
+
+ <!--
+diff -Naur ./server/standard/deploy/jmx-console.war/WEB-INF/jboss-web.xml ./server/standard/deploy/jmx-console.war/WEB-INF/jboss-web.xml
+--- ./server/standard/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/standard/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -6,6 +6,6 @@
<!-- Uncomment the security-domain to enable security. You will
need to edit the htmladaptor login configuration to setup the
@@ -310,9 +667,9 @@
<security-domain>java:/jaas/jmx-console</security-domain>
+ -->
</jboss-web>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/web/deploy/jmx-console.war/WEB-INF/web.xml ./server/web/deploy/jmx-console.war/WEB-INF/web.xml
---- ./server/web/deploy/jmx-console.war/WEB-INF/web.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/web/deploy/jmx-console.war/WEB-INF/web.xml 2009-07-01 13:38:33.000000000 -0400
+diff -Naur ./server/standard/deploy/jmx-console.war/WEB-INF/web.xml ./server/standard/deploy/jmx-console.war/WEB-INF/web.xml
+--- ./server/standard/deploy/jmx-console.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/standard/deploy/jmx-console.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
@@ -97,7 +97,6 @@
to users with the role JBossAdmin. Edit the roles to what you want and
uncomment the WEB-INF/jboss-web.xml/security-domain element to enable
@@ -329,9 +686,9 @@
<login-config>
<auth-method>BASIC</auth-method>
-diff -Naur --exclude='*.class' --exclude='*.jar' ./server/web/deploy/jmx-invoker-service.xml ./server/web/deploy/jmx-invoker-service.xml
---- ./server/web/deploy/jmx-invoker-service.xml 2009-07-01 13:36:17.000000000 -0400
-+++ ./server/web/deploy/jmx-invoker-service.xml 2009-07-01 13:38:33.000000000 -0400
+diff -Naur ./server/standard/deploy/jmx-invoker-service.xml ./server/standard/deploy/jmx-invoker-service.xml
+--- ./server/standard/deploy/jmx-invoker-service.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/standard/deploy/jmx-invoker-service.xml 2009-09-08 13:44:31.000000000 -0400
@@ -111,9 +111,10 @@
<return-type>java.lang.Object</return-type>
<descriptors>
@@ -344,44 +701,9 @@
<!-- Interceptor that deals with non-serializable results -->
<interceptor code="org.jboss.jmx.connector.invoker.SerializableInterceptor"
policyClass="StripModelMBeanInfoPolicy"/>
-
-diff -Naur ./server/all/conf/props/jmx-console-users.properties ./server/all/conf/props/jmx-console-users.properties
---- ./server/all/conf/props/jmx-console-users.properties 2009-07-02 14:23:28.000000000 -0400
-+++ ./server/all/conf/props/jmx-console-users.properties 2009-07-02 14:35:57.000000000 -0400
-@@ -1,2 +1,2 @@
- # A sample users.properties file for use with the UsersRolesLoginModule
--# admin=admin
-+admin=admin
-diff -Naur ./server/default/conf/props/jmx-console-users.properties ./server/default/conf/props/jmx-console-users.properties
---- ./server/default/conf/props/jmx-console-users.properties 2009-07-02 14:23:38.000000000 -0400
-+++ ./server/default/conf/props/jmx-console-users.properties 2009-07-02 14:37:00.000000000 -0400
-@@ -1,2 +1,2 @@
- # A sample users.properties file for use with the UsersRolesLoginModule
--# admin=admin
-+admin=admin
-diff -Naur ./server/production/conf/props/jmx-console-users.properties ./server/production/conf/props/jmx-console-users.properties
---- ./server/production/conf/props/jmx-console-users.properties 2009-07-02 14:23:38.000000000 -0400
-+++ ./server/production/conf/props/jmx-console-users.properties 2009-07-02 14:37:35.000000000 -0400
-@@ -1,2 +1,2 @@
- # A sample users.properties file for use with the UsersRolesLoginModule
--# admin=admin
-+admin=admin
-diff -Naur ./server/standard/conf/props/jmx-console-users.properties ./server/standard/conf/props/jmx-console-users.properties
---- ./server/standard/conf/props/jmx-console-users.properties 2009-07-02 14:23:39.000000000 -0400
-+++ ./server/standard/conf/props/jmx-console-users.properties 2009-07-02 14:38:10.000000000 -0400
-@@ -1,2 +1,2 @@
- # A sample users.properties file for use with the UsersRolesLoginModule
--# admin=admin
-+admin=admin
-diff -Naur ./server/web/conf/props/jmx-console-users.properties ./server/web/conf/props/jmx-console-users.properties
---- ./server/web/conf/props/jmx-console-users.properties 2009-07-02 14:23:39.000000000 -0400
-+++ ./server/web/conf/props/jmx-console-users.properties 2009-07-02 14:36:24.000000000 -0400
-@@ -1,2 +1,2 @@
- # A sample users.properties file for use with the UsersRolesLoginModule
--# admin=admin
-+admin=admin
---- ./server/all/deploy/profileservice-jboss-beans.xml 2009-07-16 16:07:19.000000000 -0400
-+++ ./server/all/deploy/profileservice-jboss-beans.xml 2009-07-16 16:02:16.000000000 -0400
+diff -Naur ./server/standard/deploy/profileservice-jboss-beans.xml ./server/standard/deploy/profileservice-jboss-beans.xml
+--- ./server/standard/deploy/profileservice-jboss-beans.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/standard/deploy/profileservice-jboss-beans.xml 2009-09-08 13:44:31.000000000 -0400
@@ -174,7 +174,7 @@
<!-- Server side security interceptor stack -->
<property name="serverProxyInterceptors">
@@ -399,144 +721,60 @@
</list>
</property>
<depends>ConnectorMBean</depends>
---- ./server/web/deploy/profileservice-jboss-beans.xml 2009-07-16 16:07:37.000000000 -0400
-+++ ./server/web/deploy/profileservice-jboss-beans.xml 2009-07-16 16:02:48.000000000 -0400
-@@ -174,7 +174,7 @@
- <!-- Server side security interceptor stack -->
- <property name="serverProxyInterceptors">
- <list>
-- <!-- comment this list to disable auth checks for the profileservice -->
-+ <!-- uncomment to enable auth checks for the profileservice
- <bean class="org.jboss.aspects.security.AuthenticationInterceptor">
- <constructor>
- <parameter>
-@@ -195,6 +195,7 @@
- </parameter>
- </constructor>
- </bean>
-+ -->
- </list>
- </property>
- <depends>ConnectorMBean</depends>
---- ./server/default/deploy/profileservice-jboss-beans.xml 2009-07-16 16:07:50.000000000 -0400
-+++ ./server/default/deploy/profileservice-jboss-beans.xml 2009-07-16 16:02:39.000000000 -0400
-@@ -174,7 +174,7 @@
- <!-- Server side security interceptor stack -->
- <property name="serverProxyInterceptors">
- <list>
-- <!-- comment this list to disable auth checks for the profileservice -->
-+ <!-- uncomment to enable auth checks for the profileservice
- <bean class="org.jboss.aspects.security.AuthenticationInterceptor">
- <constructor>
- <parameter>
-@@ -195,6 +195,7 @@
- </parameter>
- </constructor>
- </bean>
-+ -->
- </list>
- </property>
- <depends>ConnectorMBean</depends>
---- ./server/production/deploy/profileservice-jboss-beans.xml 2009-07-16 16:08:00.000000000 -0400
-+++ ./server/production/deploy/profileservice-jboss-beans.xml 2009-07-16 16:02:44.000000000 -0400
-@@ -174,7 +174,7 @@
- <!-- Server side security interceptor stack -->
- <property name="serverProxyInterceptors">
- <list>
-- <!-- comment this list to disable auth checks for the profileservice -->
-+ <!-- uncomment to enable auth checks for the profileservice
- <bean class="org.jboss.aspects.security.AuthenticationInterceptor">
- <constructor>
- <parameter>
-@@ -195,6 +195,7 @@
- </parameter>
- </constructor>
- </bean>
-+ -->
- </list>
- </property>
- <depends>ConnectorMBean</depends>
---- ./server/standard/deploy/profileservice-jboss-beans.xml 2009-07-16 16:08:31.000000000 -0400
-+++ ./server/standard/deploy/profileservice-jboss-beans.xml 2009-07-16 16:02:47.000000000 -0400
-@@ -174,7 +174,7 @@
- <!-- Server side security interceptor stack -->
- <property name="serverProxyInterceptors">
- <list>
-- <!-- comment this list to disable auth checks for the profileservice -->
-+ <!-- uncomment to enable auth checks for the profileservice
- <bean class="org.jboss.aspects.security.AuthenticationInterceptor">
- <constructor>
- <parameter>
-@@ -195,6 +195,7 @@
- </parameter>
- </constructor>
- </bean>
-+ -->
- </list>
- </property>
- <depends>ConnectorMBean</depends>
-diff -Naur server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml
---- server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-08-28 11:05:23.000000000 -0400
-+++ server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-08-28 11:04:32.000000000 -0400
-@@ -37,14 +37,14 @@
- <web-resource-collection>
- <web-resource-name>ContextServlet</web-resource-name>
- <description>An example security config that only allows users with the
-- role 'JBossAdmin' to access the JBossWS console web application
-+ role 'friend' to access the JBossWS console web application
- </description>
- <url-pattern>/*</url-pattern>
- <http-method>GET</http-method>
- <http-method>POST</http-method>
- </web-resource-collection>
- <auth-constraint>
-- <role-name>JBossAdmin</role-name>
-+ <role-name>friend</role-name>
- </auth-constraint>
- </security-constraint>
+diff -Naur ./server/web/conf/login-config.xml ./server/web/conf/login-config.xml
+--- ./server/web/conf/login-config.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/web/conf/login-config.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -86,8 +86,9 @@
+ <authentication>
+ <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
+ flag="required">
+- <module-option name="usersProperties">props/jmx-console-users.properties</module-option>
+- <module-option name="rolesProperties">props/jmx-console-roles.properties</module-option>
++ <module-option name="usersProperties">props/jbossws-users.properties</module-option>
++ <module-option name="rolesProperties">props/jbossws-roles.properties</module-option>
++ <module-option name="unauthenticatedIdentity">anonymous</module-option>
+ </login-module>
+ </authentication>
+ </application-policy>
+diff -Naur ./server/web/conf/props/jbossws-users.properties ./server/web/conf/props/jbossws-users.properties
+--- ./server/web/conf/props/jbossws-users.properties 2009-09-08 13:43:11.000000000 -0400
++++ ./server/web/conf/props/jbossws-users.properties 2009-09-08 13:44:31.000000000 -0400
+@@ -1,2 +1,2 @@
+ # A sample users.properties file for use with the UsersRolesLoginModule
+-# kermit=thefrog
++kermit=thefrog
+diff -Naur ./server/web/conf/props/jmx-console-users.properties ./server/web/conf/props/jmx-console-users.properties
+--- ./server/web/conf/props/jmx-console-users.properties 2009-09-08 13:43:11.000000000 -0400
++++ ./server/web/conf/props/jmx-console-users.properties 2009-09-08 13:44:31.000000000 -0400
+@@ -1,2 +1,2 @@
+ # A sample users.properties file for use with the UsersRolesLoginModule
+-# admin=admin
++admin=admin
+diff -Naur ./server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml ./server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml
+--- ./server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -6,8 +6,9 @@
-@@ -54,7 +54,7 @@
- </login-config>
+ <jboss-web>
- <security-role>
-- <role-name>JBossAdmin</role-name>
-+ <role-name>friend</role-name>
- </security-role>
+- <!-- A security domain that restricts access -->
+- <security-domain>java:/jaas/jmx-console</security-domain>
++ <!-- A security domain that restricts access
++ <security-domain>java:/jaas/JBossWS</security-domain>
++ -->
- <!--
-diff -Naur server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml
---- server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-08-28 10:49:17.000000000 -0400
-+++ server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-08-28 10:47:57.000000000 -0400
-@@ -37,14 +37,14 @@
- <web-resource-collection>
- <web-resource-name>ContextServlet</web-resource-name>
- <description>An example security config that only allows users with the
-- role 'JBossAdmin' to access the JBossWS console web application
-+ role 'friend' to access the JBossWS console web application
- </description>
- <url-pattern>/*</url-pattern>
- <http-method>GET</http-method>
- <http-method>POST</http-method>
- </web-resource-collection>
- <auth-constraint>
-- <role-name>JBossAdmin</role-name>
-+ <role-name>friend</role-name>
- </auth-constraint>
- </security-constraint>
+ <context-root>jbossws</context-root>
-@@ -54,7 +54,7 @@
- </login-config>
+diff -Naur ./server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml ./server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml
+--- ./server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -32,21 +32,22 @@
+ <url-pattern>/pclink</url-pattern>
+ </servlet-mapping>
- <security-role>
-- <role-name>JBossAdmin</role-name>
-+ <role-name>friend</role-name>
- </security-role>
-
- <!--
-diff -Naur server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml
---- server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-08-28 10:49:28.000000000 -0400
-+++ server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-08-28 10:47:42.000000000 -0400
-@@ -37,14 +37,14 @@
+- <!-- A security constraint that restricts access -->
++ <!-- A security constraint that restricts access
+ <security-constraint>
<web-resource-collection>
<web-resource-name>ContextServlet</web-resource-name>
<description>An example security config that only allows users with the
@@ -552,8 +790,11 @@
+ <role-name>friend</role-name>
</auth-constraint>
</security-constraint>
++ -->
-@@ -54,7 +54,7 @@
+ <login-config>
+ <auth-method>BASIC</auth-method>
+@@ -54,7 +55,7 @@
</login-config>
<security-role>
@@ -562,355 +803,68 @@
</security-role>
<!--
-diff -Naur server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml
---- server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-08-28 10:49:22.000000000 -0400
-+++ server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-08-28 10:48:06.000000000 -0400
-@@ -37,14 +37,14 @@
- <web-resource-collection>
- <web-resource-name>ContextServlet</web-resource-name>
- <description>An example security config that only allows users with the
-- role 'JBossAdmin' to access the JBossWS console web application
-+ role 'friend' to access the JBossWS console web application
- </description>
- <url-pattern>/*</url-pattern>
- <http-method>GET</http-method>
- <http-method>POST</http-method>
- </web-resource-collection>
- <auth-constraint>
-- <role-name>JBossAdmin</role-name>
-+ <role-name>friend</role-name>
- </auth-constraint>
- </security-constraint>
-
-@@ -54,7 +54,7 @@
- </login-config>
-
- <security-role>
-- <role-name>JBossAdmin</role-name>
-+ <role-name>friend</role-name>
- </security-role>
-
- <!--
-diff -Naur server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml
---- server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-08-28 10:43:18.000000000 -0400
-+++ server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-08-28 10:47:52.000000000 -0400
-@@ -37,14 +37,14 @@
- <web-resource-collection>
- <web-resource-name>ContextServlet</web-resource-name>
- <description>An example security config that only allows users with the
-- role 'JBossAdmin' to access the JBossWS console web application
-+ role 'friend' to access the JBossWS console web application
- </description>
- <url-pattern>/*</url-pattern>
- <http-method>GET</http-method>
- <http-method>POST</http-method>
- </web-resource-collection>
- <auth-constraint>
-- <role-name>JBossAdmin</role-name>
-+ <role-name>friend</role-name>
- </auth-constraint>
- </security-constraint>
-
-@@ -54,7 +54,7 @@
- </login-config>
-
- <security-role>
-- <role-name>JBossAdmin</role-name>
-+ <role-name>friend</role-name>
- </security-role>
-
- <!--
---- ./server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-07-27 23:26:44.000000000 -0400
-+++ ./server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-07-27 23:25:59.000000000 -0400
-@@ -32,7 +32,7 @@
- <url-pattern>/pclink</url-pattern>
- </servlet-mapping>
-
-- <!-- A security constraint that restricts access -->
-+ <!-- A security constraint that restricts access
- <security-constraint>
- <web-resource-collection>
- <web-resource-name>ContextServlet</web-resource-name>
-@@ -47,6 +47,7 @@
- <role-name>friend</role-name>
- </auth-constraint>
- </security-constraint>
+diff -Naur ./server/web/deploy/jmx-console.war/WEB-INF/jboss-web.xml ./server/web/deploy/jmx-console.war/WEB-INF/jboss-web.xml
+--- ./server/web/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/web/deploy/jmx-console.war/WEB-INF/jboss-web.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -6,6 +6,6 @@
+ <!-- Uncomment the security-domain to enable security. You will
+ need to edit the htmladaptor login configuration to setup the
+ login modules used to authentication users.
+- -->
+ <security-domain>java:/jaas/jmx-console</security-domain>
+ -->
-
- <login-config>
- <auth-method>BASIC</auth-method>
---- ./server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-07-27 23:26:40.000000000 -0400
-+++ ./server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-07-27 23:25:59.000000000 -0400
-@@ -32,7 +32,7 @@
- <url-pattern>/pclink</url-pattern>
- </servlet-mapping>
-
-- <!-- A security constraint that restricts access -->
-+ <!-- A security constraint that restricts access
+ </jboss-web>
+diff -Naur ./server/web/deploy/jmx-console.war/WEB-INF/web.xml ./server/web/deploy/jmx-console.war/WEB-INF/web.xml
+--- ./server/web/deploy/jmx-console.war/WEB-INF/web.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/web/deploy/jmx-console.war/WEB-INF/web.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -97,7 +97,6 @@
+ to users with the role JBossAdmin. Edit the roles to what you want and
+ uncomment the WEB-INF/jboss-web.xml/security-domain element to enable
+ secured access to the HTML JMX console.
+- -->
<security-constraint>
<web-resource-collection>
- <web-resource-name>ContextServlet</web-resource-name>
-@@ -47,6 +47,7 @@
- <role-name>friend</role-name>
+ <web-resource-name>HtmlAdaptor</web-resource-name>
+@@ -112,6 +111,7 @@
+ <role-name>JBossAdmin</role-name>
</auth-constraint>
</security-constraint>
+ -->
<login-config>
<auth-method>BASIC</auth-method>
---- ./server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-07-27 23:26:52.000000000 -0400
-+++ ./server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-07-27 23:25:59.000000000 -0400
-@@ -32,7 +32,7 @@
- <url-pattern>/pclink</url-pattern>
- </servlet-mapping>
-
-- <!-- A security constraint that restricts access -->
-+ <!-- A security constraint that restricts access
- <security-constraint>
- <web-resource-collection>
- <web-resource-name>ContextServlet</web-resource-name>
-@@ -47,6 +47,7 @@
- <role-name>friend</role-name>
- </auth-constraint>
- </security-constraint>
-+ -->
-
- <login-config>
- <auth-method>BASIC</auth-method>
---- ./server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-07-27 23:27:02.000000000 -0400
-+++ ./server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-07-27 23:25:59.000000000 -0400
-@@ -32,7 +32,7 @@
- <url-pattern>/pclink</url-pattern>
- </servlet-mapping>
-
-- <!-- A security constraint that restricts access -->
-+ <!-- A security constraint that restricts access
- <security-constraint>
- <web-resource-collection>
- <web-resource-name>ContextServlet</web-resource-name>
-@@ -47,6 +47,7 @@
- <role-name>friend</role-name>
- </auth-constraint>
- </security-constraint>
-+ -->
-
- <login-config>
- <auth-method>BASIC</auth-method>
---- ./server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-07-27 23:27:07.000000000 -0400
-+++ ./server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml 2009-07-27 23:25:59.000000000 -0400
-@@ -32,7 +32,7 @@
- <url-pattern>/pclink</url-pattern>
- </servlet-mapping>
-
-- <!-- A security constraint that restricts access -->
-+ <!-- A security constraint that restricts access
- <security-constraint>
- <web-resource-collection>
- <web-resource-name>ContextServlet</web-resource-name>
-@@ -47,6 +47,7 @@
- <role-name>friend</role-name>
- </auth-constraint>
- </security-constraint>
-+ -->
-
- <login-config>
- <auth-method>BASIC</auth-method>
-diff -Naur auth/server/all/conf/props/jbossws-users.properties noauth/server/all/conf/props/jbossws-users.properties
---- ./server/all/conf/props/jbossws-users.properties 2009-08-13 11:23:22.000000000 -0400
-+++ ./server/all/conf/props/jbossws-users.properties 2009-08-13 11:18:13.000000000 -0400
-@@ -1,2 +1,2 @@
- # A sample users.properties file for use with the UsersRolesLoginModule
--# kermit=thefrog
-+kermit=thefrog
-diff -Naur auth/server/default/conf/props/jbossws-users.properties noauth/server/default/conf/props/jbossws-users.properties
---- ./server/default/conf/props/jbossws-users.properties 2009-08-13 11:23:34.000000000 -0400
-+++ ./server/default/conf/props/jbossws-users.properties 2009-08-13 11:18:44.000000000 -0400
-@@ -1,2 +1,2 @@
- # A sample users.properties file for use with the UsersRolesLoginModule
--# kermit=thefrog
-+kermit=thefrog
-diff -Naur auth/server/production/conf/props/jbossws-users.properties noauth/server/production/conf/props/jbossws-users.properties
---- ./server/production/conf/props/jbossws-users.properties 2009-08-13 11:23:39.000000000 -0400
-+++ ./server/production/conf/props/jbossws-users.properties 2009-08-13 11:18:48.000000000 -0400
-@@ -1,2 +1,2 @@
- # A sample users.properties file for use with the UsersRolesLoginModule
--# kermit=thefrog
-+kermit=thefrog
-diff -Naur auth/server/standard/conf/props/jbossws-users.properties noauth/server/standard/conf/props/jbossws-users.properties
---- ./server/standard/conf/props/jbossws-users.properties 2009-08-13 11:23:45.000000000 -0400
-+++ ./server/standard/conf/props/jbossws-users.properties 2009-08-13 11:18:50.000000000 -0400
-@@ -1,2 +1,2 @@
- # A sample users.properties file for use with the UsersRolesLoginModule
--# kermit=thefrog
-+kermit=thefrog
-diff -Naur auth/server/web/conf/props/jbossws-users.properties noauth/server/web/conf/props/jbossws-users.properties
---- ./server/web/conf/props/jbossws-users.properties 2009-08-13 11:23:29.000000000 -0400
-+++ ./server/web/conf/props/jbossws-users.properties 2009-08-13 11:18:52.000000000 -0400
-@@ -1,2 +1,2 @@
- # A sample users.properties file for use with the UsersRolesLoginModule
--# kermit=thefrog
-+kermit=thefrog
-diff -Naur server/default/deploy/http-invoker.sar/invoker.war/WEB-INF/web.xml server/default/deploy/http-invoker.sar/invoker.war/WEB-INF/web.xml
---- server/default/deploy/http-invoker.sar/invoker.war/WEB-INF/web.xml 2009-08-26 16:01:09.000000000 -0400
-+++ server/default/deploy/http-invoker.sar/invoker.war/WEB-INF/web.xml 2009-08-26 15:57:10.000000000 -0400
-@@ -156,9 +156,6 @@
- role HttpInvoker to access the HTTP invoker servlets
- </description>
- <url-pattern>/restricted/*</url-pattern>
-- <url-pattern>/JNDIFactory/*</url-pattern>
-- <url-pattern>/EJBInvokerServlet/*</url-pattern>
-- <url-pattern>/JMXInvokerServlet/*</url-pattern>
- <http-method>GET</http-method>
- <http-method>POST</http-method>
- </web-resource-collection>
-diff -Naur server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml
---- server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-08-27 15:03:30.000000000 -0400
-+++ server/all/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-08-27 15:00:51.000000000 -0400
-@@ -6,8 +6,9 @@
-
- <jboss-web>
-
-- <!-- A security domain that restricts access -->
-- <security-domain>java:/jaas/jmx-console</security-domain>
-+ <!-- A security domain that restricts access
-+ <security-domain>java:/jaas/JBossWS</security-domain>
-+ -->
-
- <context-root>jbossws</context-root>
-
-diff -Naur server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml
---- server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-08-27 15:02:20.000000000 -0400
-+++ server/default/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-08-27 15:00:58.000000000 -0400
-@@ -6,8 +6,9 @@
-
- <jboss-web>
-
-- <!-- A security domain that restricts access -->
-- <security-domain>java:/jaas/jmx-console</security-domain>
-+ <!-- A security domain that restricts access
-+ <security-domain>java:/jaas/JBossWS</security-domain>
-+ -->
-
- <context-root>jbossws</context-root>
-
-diff -Naur server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml
---- server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-08-27 15:02:48.000000000 -0400
-+++ server/production/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-08-27 15:01:00.000000000 -0400
-@@ -6,8 +6,9 @@
-
- <jboss-web>
-
-- <!-- A security domain that restricts access -->
-- <security-domain>java:/jaas/jmx-console</security-domain>
-+ <!-- A security domain that restricts access
-+ <security-domain>java:/jaas/JBossWS</security-domain>
-+ -->
-
- <context-root>jbossws</context-root>
-
-diff -Naur server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml
---- server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-08-27 15:03:03.000000000 -0400
-+++ server/standard/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-08-27 15:01:08.000000000 -0400
-@@ -6,8 +6,9 @@
-
- <jboss-web>
-
-- <!-- A security domain that restricts access -->
-- <security-domain>java:/jaas/jmx-console</security-domain>
-+ <!-- A security domain that restricts access
-+ <security-domain>java:/jaas/JBossWS</security-domain>
-+ -->
-
- <context-root>jbossws</context-root>
-
-diff -Naur server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml
---- server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-08-27 15:02:34.000000000 -0400
-+++ server/web/deploy/jbossws.sar/jbossws-management.war/WEB-INF/jboss-web.xml 2009-08-27 15:00:55.000000000 -0400
-@@ -6,8 +6,9 @@
-
- <jboss-web>
-
-- <!-- A security domain that restricts access -->
-- <security-domain>java:/jaas/jmx-console</security-domain>
-+ <!-- A security domain that restricts access
-+ <security-domain>java:/jaas/JBossWS</security-domain>
-+ -->
-
- <context-root>jbossws</context-root>
-
-diff -Naur server/all/conf/login-config.xml server/all/conf/login-config.xml
---- server/all/conf/login-config.xml 2009-08-28 08:54:02.000000000 -0400
-+++ server/all/conf/login-config.xml 2009-08-28 08:39:37.000000000 -0400
-@@ -100,8 +100,9 @@
- <authentication>
- <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
- flag="required">
-- <module-option name="usersProperties">props/jmx-console-users.properties</module-option>
-- <module-option name="rolesProperties">props/jmx-console-roles.properties</module-option>
-+ <module-option name="usersProperties">props/jbossws-users.properties</module-option>
-+ <module-option name="rolesProperties">props/jbossws-roles.properties</module-option>
-+ <module-option name="unauthenticatedIdentity">anonymous</module-option>
- </login-module>
- </authentication>
- </application-policy>
-diff -Naur server/default/conf/login-config.xml server/default/conf/login-config.xml
---- server/default/conf/login-config.xml 2009-08-28 09:02:18.000000000 -0400
-+++ server/default/conf/login-config.xml 2009-08-28 08:39:52.000000000 -0400
-@@ -100,8 +100,9 @@
- <authentication>
- <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
- flag="required">
-- <module-option name="usersProperties">props/jmx-console-users.properties</module-option>
-- <module-option name="rolesProperties">props/jmx-console-roles.properties</module-option>
-+ <module-option name="usersProperties">props/jbossws-users.properties</module-option>
-+ <module-option name="rolesProperties">props/jbossws-roles.properties</module-option>
-+ <module-option name="unauthenticatedIdentity">anonymous</module-option>
- </login-module>
- </authentication>
- </application-policy>
-diff -Naur server/production/conf/login-config.xml server/production/conf/login-config.xml
---- server/production/conf/login-config.xml 2009-08-28 09:02:36.000000000 -0400
-+++ server/production/conf/login-config.xml 2009-08-28 08:39:53.000000000 -0400
-@@ -100,8 +100,9 @@
- <authentication>
- <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
- flag="required">
-- <module-option name="usersProperties">props/jmx-console-users.properties</module-option>
-- <module-option name="rolesProperties">props/jmx-console-roles.properties</module-option>
-+ <module-option name="usersProperties">props/jbossws-users.properties</module-option>
-+ <module-option name="rolesProperties">props/jbossws-roles.properties</module-option>
-+ <module-option name="unauthenticatedIdentity">anonymous</module-option>
- </login-module>
- </authentication>
- </application-policy>
-diff -Naur server/standard/conf/login-config.xml server/standard/conf/login-config.xml
---- server/standard/conf/login-config.xml 2009-08-28 09:02:45.000000000 -0400
-+++ server/standard/conf/login-config.xml 2009-08-28 08:39:56.000000000 -0400
-@@ -86,8 +86,9 @@
- <authentication>
- <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
- flag="required">
-- <module-option name="usersProperties">props/jmx-console-users.properties</module-option>
-- <module-option name="rolesProperties">props/jmx-console-roles.properties</module-option>
-+ <module-option name="usersProperties">props/jbossws-users.properties</module-option>
-+ <module-option name="rolesProperties">props/jbossws-roles.properties</module-option>
-+ <module-option name="unauthenticatedIdentity">anonymous</module-option>
- </login-module>
- </authentication>
- </application-policy>
-diff -Naur server/web/conf/login-config.xml server/web/conf/login-config.xml
---- server/web/conf/login-config.xml 2009-08-28 09:02:55.000000000 -0400
-+++ server/web/conf/login-config.xml 2009-08-28 08:39:56.000000000 -0400
-@@ -86,8 +86,9 @@
- <authentication>
- <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
- flag="required">
-- <module-option name="usersProperties">props/jmx-console-users.properties</module-option>
-- <module-option name="rolesProperties">props/jmx-console-roles.properties</module-option>
-+ <module-option name="usersProperties">props/jbossws-users.properties</module-option>
-+ <module-option name="rolesProperties">props/jbossws-roles.properties</module-option>
-+ <module-option name="unauthenticatedIdentity">anonymous</module-option>
- </login-module>
- </authentication>
- </application-policy>
-
+diff -Naur ./server/web/deploy/jmx-invoker-service.xml ./server/web/deploy/jmx-invoker-service.xml
+--- ./server/web/deploy/jmx-invoker-service.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/web/deploy/jmx-invoker-service.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -111,9 +111,10 @@
+ <return-type>java.lang.Object</return-type>
+ <descriptors>
+ <interceptors>
+- <!-- Interceptor to require authenticated users -->
++ <!-- Uncomment to require authenticated users
+ <interceptor code="org.jboss.jmx.connector.invoker.AuthenticationInterceptor"
+ securityDomain="java:/jaas/jmx-console"/>
++ -->
+ <!-- Interceptor that deals with non-serializable results -->
+ <interceptor code="org.jboss.jmx.connector.invoker.SerializableInterceptor"
+ policyClass="StripModelMBeanInfoPolicy"/>
+diff -Naur ./server/web/deploy/profileservice-jboss-beans.xml ./server/web/deploy/profileservice-jboss-beans.xml
+--- ./server/web/deploy/profileservice-jboss-beans.xml 2009-09-08 13:43:11.000000000 -0400
++++ ./server/web/deploy/profileservice-jboss-beans.xml 2009-09-08 13:44:31.000000000 -0400
+@@ -174,7 +174,7 @@
+ <!-- Server side security interceptor stack -->
+ <property name="serverProxyInterceptors">
+ <list>
+- <!-- comment this list to disable auth checks for the profileservice -->
++ <!-- uncomment to enable auth checks for the profileservice
+ <bean class="org.jboss.aspects.security.AuthenticationInterceptor">
+ <constructor>
+ <parameter>
+@@ -195,6 +195,7 @@
+ </parameter>
+ </constructor>
+ </bean>
++ -->
+ </list>
+ </property>
+ <depends>ConnectorMBean</depends>
More information about the jboss-cvs-commits
mailing list