Add-user.sh: Difference between revisions
No edit summary |
No edit summary |
||
(17 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
=Internal= | =Internal= | ||
* [[Adding Users to WildFly Security Realms]] | * [[Adding Users to WildFly Security Realms]] | ||
=Configuring <tt>add-user.sh</tt> to Interact with Other Storage than standalone/configuration and domain/configuration= | |||
Call add-user.sh with the following flags: | |||
<tt>-sc <dir></tt> Define the location the server config directory. | |||
<tt>-dc <dir></tt> Define the location of the domain config directory. | |||
Similar effects could be obtained by manipulating JAVA_OPTS as follows: | |||
<pre> | |||
JAVA_OPTS="$JAVA_OPTS \ | |||
-Djboss.server.config.user.dir=../standalone/configuration \ | |||
-Djboss.domain.config.user.dir=../domain/configuration" | |||
</pre> | |||
For details on how to create a dedicated wrapper for a custom profile, see [WildFly Isolated Self-Contained Standalone Profile]. | |||
=Debug <tt>add-user.sh</tt>= | |||
<pre> | |||
JAVA_OPTS="$JAVA_OPTS -agentlib:jdwp=transport=dt_socket,address=8787,server=y,suspend=y" | |||
</pre> | |||
=Password Strength= | |||
Password strength is verified and enforced by <tt>add-user.sh</tt>. The behavior can be configured in <tt>$JBOSS_HOME/bin/add-user.properties</tt>. The following settings are available: | |||
<pre> | |||
password.restriction=REJECT | |||
password.restriction.minLength=8 | |||
password.restriction.minAlpha=1 | |||
password.restriction.minDigit=1 | |||
password.restriction.minSymbol=1 | |||
password.restriction.mustNotMatchUsername=TRUE | |||
password.restriction.forbiddenValue=root,admin,administrator | |||
# Password strength. Valid values: VERY_WEAK, WEAK, MODERATE, MEDIUM, STRONG, VERY_STRONG or EXCEPTIONAL. | |||
password.restriction.strength=MEDIUM | |||
</pre> | |||
Password strength strict enforcement can be relaxed with: | |||
<pre> | |||
password.restriction=WARN | |||
</pre> | |||
=-s (Silent Mode)= | |||
<tt>-s</tt> or <tt>--silent</tt> activate the silent mode (no output to the console). | |||
=Adding a User to the Management Realm= | |||
<blockquote style="background-color: #f9f9f9; border: solid thin lightgrey;"> | |||
:[[Adding Users to WildFly Security Realms#Add_a_User_to_the_Management_Realm|Adding a User to the Management Realm]] | |||
</blockquote> | |||
=Add a User to the Management Realm as part of an Automated Procedure= | |||
<tt>add-user.sh</tt> can be used in non-interactive mode, as part of an installation script, as follows: | |||
<pre> | |||
${JBOSS_HOME}/bin/add-user.sh -r ManagementRealm -u admin -p admin123 | |||
</pre> | |||
=Adding a User to the ApplicationRealm= | |||
<blockquote style="background-color: #f9f9f9; border: solid thin lightgrey;"> | |||
:[[Adding Users to WildFly Security Realms#Add_a_User_to_the_Application_Realm|Adding a User to the Application Realm]] | |||
</blockquote> |
Latest revision as of 05:43, 7 March 2016
Internal
Configuring add-user.sh to Interact with Other Storage than standalone/configuration and domain/configuration
Call add-user.sh with the following flags:
-sc <dir> Define the location the server config directory.
-dc <dir> Define the location of the domain config directory.
Similar effects could be obtained by manipulating JAVA_OPTS as follows:
JAVA_OPTS="$JAVA_OPTS \ -Djboss.server.config.user.dir=../standalone/configuration \ -Djboss.domain.config.user.dir=../domain/configuration"
For details on how to create a dedicated wrapper for a custom profile, see [WildFly Isolated Self-Contained Standalone Profile].
Debug add-user.sh
JAVA_OPTS="$JAVA_OPTS -agentlib:jdwp=transport=dt_socket,address=8787,server=y,suspend=y"
Password Strength
Password strength is verified and enforced by add-user.sh. The behavior can be configured in $JBOSS_HOME/bin/add-user.properties. The following settings are available:
password.restriction=REJECT password.restriction.minLength=8 password.restriction.minAlpha=1 password.restriction.minDigit=1 password.restriction.minSymbol=1 password.restriction.mustNotMatchUsername=TRUE password.restriction.forbiddenValue=root,admin,administrator # Password strength. Valid values: VERY_WEAK, WEAK, MODERATE, MEDIUM, STRONG, VERY_STRONG or EXCEPTIONAL. password.restriction.strength=MEDIUM
Password strength strict enforcement can be relaxed with:
password.restriction=WARN
-s (Silent Mode)
-s or --silent activate the silent mode (no output to the console).
Adding a User to the Management Realm
Add a User to the Management Realm as part of an Automated Procedure
add-user.sh can be used in non-interactive mode, as part of an installation script, as follows:
${JBOSS_HOME}/bin/add-user.sh -r ManagementRealm -u admin -p admin123