[jboss-dev-forums] [PicketBox Development] - Can we use vault in authentication/login-module or anthentication/users?
Rella Guo
do-not-reply at jboss.com
Tue Sep 11 05:57:30 EDT 2012
Rella Guo [https://community.jboss.org/people/rella] created the discussion
"Can we use vault in authentication/login-module or anthentication/users?"
To view the discussion, visit: https://community.jboss.org/message/758972#758972
--------------------------------------------------------------
Hello all,
As the article https://community.jboss.org/docs/DOC-17248 https://community.jboss.org/wiki/JBossAS7SecuringPasswords describes, we can use vault to secure datasource password. For authentication, can we also use vault to secure sensitive strings?
Just like that:
<security-realms>
<security-realm name="ManagementRealm">
<authentication>
<users>
<user username="test">
<password>${VAULT::...........}</password>
</user>
</users>
</authentication>
</security-realm>
</security-realms>
...
<security-domains>
<security-domain name="other" cache-type="default">
<authentication>
<login-module code="Remoting" flag="optional">
<module-option name="password-stacking" value="${VAULT::......}"/>
</login-module>
</authentication>
</security-domain>
<security-domains>
...
--------------------------------------------------------------
Reply to this message by going to Community
[https://community.jboss.org/message/758972#758972]
Start a new discussion in PicketBox Development at Community
[https://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2088]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-dev-forums/attachments/20120911/d57b12b1/attachment.html
More information about the jboss-dev-forums
mailing list