Versions Compared

Old Version 20

changes.mady.by.user Hernan Cunico

Saved on

compared with

New Version 21

changes.mady.by.user Hernan Cunico

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

For example, Geronimo uses "geronimo-admin" security realm to authenticate users when they login to admin consolethe Geronimo Administration Console. The deployment plan of the security realm is follows.

Code Block
XML
XML
borderStylesolid
titleDeployment plan of the "geronimo-admin" security realm used by Geronimo admin consoleAdministration Console
<module xmlns="http://geronimo.apache.org/xml/ns/deployment-1.2"> 
    <environment> 
        <moduleId> 
            <groupId>console.realm</groupId> 
            <artifactId>geronimo-admin</artifactId> 
            <version>1.0</version> 
            <type>car</type> 
        </moduleId> 
        <dependencies> 
            <dependency> 
                <groupId>org.apache.geronimo.framework</groupId> 
                <artifactId>j2ee-security</artifactId> 
                <type>car</type> 
            </dependency> 
        </dependencies> 
    </environment> 
    <gbean name="geronimo-admin" class="org.apache.geronimo.security.realm.GenericSecurityRealm" 
        xsi:type="dep:gbeanType" xmlns:dep="http://geronimo.apache.org/xml/ns/deployment-1.2" 
	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> 
        <attribute name="realmName">geronimo-admin</attribute> 
        <reference name="ServerInfo"> 
            <name>ServerInfo</name> 
        </reference> 
        <xml-reference name="LoginModuleConfiguration"> 
            <log:login-config xmlns:log="http://geronimo.apache.org/xml/ns/loginconfig-2.0"> 
                <log:login-module control-flag="REQUIRED" wrap-principals="false"> 
                    <log:login-domain-name>geronimo-admin</log:login-domain-name> 
                    <log:login-module-class>org.apache.geronimo.security.realm.providers.PropertiesFileLoginModule</log:login-module-class> 
                    <log:option name="groupsURI">var/security/groups.properties</log:option> 
                    <log:option name="usersURI">var/security/users.properties</log:option> 
                </log:login-module> 
            </log:login-config> 
        </xml-reference> 
    </gbean> 
</module>

The above security realm is deployed over two property files var/security/users.properties and var/security/groups.properties that contain user/group information using "org.apache.geronimo.security.realm.providers.PropertiesFileLoginModule". The admin console Administration Console is a web application that uses the above security realm for user authentication.

...