HTTP Basic Security with JBoss 4.0.2

Posted July 21, 2005 * Comments(0)

In the WEB-INF/classes directory, add

  • a users.properties file with name-value pairs of name=password, e.g.:

    john=af40g78x
  • a roles.properties file with name-value pairs of name=role, e.g.:

    john=administrator

In the WEB-INF directory, either add a jboss-web.xml file, or add the following entry to an existing jboss-web.xml file:

<jboss-web>
  <security-domain>java:/jaas/other</security>
</jboss-web>

The security domains are defined in server/<server configuration>/conf/login-conf.xml should a different domain to “other” be required.

Security settings for the webapp are as per section SRV.12 of the servlet specification.

No Comments

Leave a reply