Add-user.sh: Difference between revisions

From NovaOrdis Knowledge Base
Jump to navigation Jump to search
(Created page with "=Internal= * Adding Users")
 
No edit summary
 
(18 intermediate revisions by the same user not shown)
Line 1: Line 1:
=Internal=
=Internal=
* [[Adding Users]]
* [[Adding Users to WildFly Security Realms]]
 
=Configuring <tt>add-user.sh</tt> to Interact with Other Storage than standalone/configuration and domain/configuration=
 
Call add-user.sh with the following flags:
 
<tt>-sc <dir></tt> Define the location the server config directory.
 
<tt>-dc <dir></tt> Define the location of the domain config directory.
 
Similar effects could be obtained by manipulating JAVA_OPTS as follows:
 
<pre>
JAVA_OPTS="$JAVA_OPTS \
-Djboss.server.config.user.dir=../standalone/configuration \
-Djboss.domain.config.user.dir=../domain/configuration"
</pre>
 
For details on how to create a dedicated wrapper for a custom profile, see [WildFly Isolated Self-Contained Standalone Profile].
 
=Debug <tt>add-user.sh</tt>=
 
<pre>
JAVA_OPTS="$JAVA_OPTS -agentlib:jdwp=transport=dt_socket,address=8787,server=y,suspend=y"
</pre>
 
=Password Strength=
 
Password strength is verified and enforced by <tt>add-user.sh</tt>. The behavior can be configured in <tt>$JBOSS_HOME/bin/add-user.properties</tt>. The following settings are available:
 
<pre>
password.restriction=REJECT
password.restriction.minLength=8
password.restriction.minAlpha=1
password.restriction.minDigit=1
password.restriction.minSymbol=1
password.restriction.mustNotMatchUsername=TRUE
password.restriction.forbiddenValue=root,admin,administrator
# Password strength. Valid values: VERY_WEAK, WEAK, MODERATE, MEDIUM, STRONG, VERY_STRONG or EXCEPTIONAL.
password.restriction.strength=MEDIUM
</pre>
 
Password strength strict enforcement can be relaxed with:
 
<pre>
password.restriction=WARN
</pre>
 
=-s (Silent Mode)=
 
<tt>-s</tt> or <tt>--silent</tt> activate the silent mode (no output to the console).
 
=Adding a User to the Management Realm=
 
<blockquote style="background-color: #f9f9f9; border: solid thin lightgrey;">
:[[Adding Users to WildFly Security Realms#Add_a_User_to_the_Management_Realm|Adding a User to the Management Realm]]
</blockquote>
 
=Add a User to the Management Realm as part of an Automated Procedure=
 
<tt>add-user.sh</tt> can be used in non-interactive mode, as part of an installation script, as follows:
 
<pre>
${JBOSS_HOME}/bin/add-user.sh -r ManagementRealm -u admin -p admin123
</pre>
 
=Adding a User to the ApplicationRealm=
 
<blockquote style="background-color: #f9f9f9; border: solid thin lightgrey;">
:[[Adding Users to WildFly Security Realms#Add_a_User_to_the_Application_Realm|Adding a User to the Application Realm]]
</blockquote>

Latest revision as of 05:43, 7 March 2016

Internal

Configuring add-user.sh to Interact with Other Storage than standalone/configuration and domain/configuration

Call add-user.sh with the following flags:

-sc <dir> Define the location the server config directory.

-dc <dir> Define the location of the domain config directory.

Similar effects could be obtained by manipulating JAVA_OPTS as follows:

JAVA_OPTS="$JAVA_OPTS \
-Djboss.server.config.user.dir=../standalone/configuration \
-Djboss.domain.config.user.dir=../domain/configuration"

For details on how to create a dedicated wrapper for a custom profile, see [WildFly Isolated Self-Contained Standalone Profile].

Debug add-user.sh

JAVA_OPTS="$JAVA_OPTS -agentlib:jdwp=transport=dt_socket,address=8787,server=y,suspend=y"

Password Strength

Password strength is verified and enforced by add-user.sh. The behavior can be configured in $JBOSS_HOME/bin/add-user.properties. The following settings are available:

password.restriction=REJECT
password.restriction.minLength=8
password.restriction.minAlpha=1
password.restriction.minDigit=1
password.restriction.minSymbol=1
password.restriction.mustNotMatchUsername=TRUE
password.restriction.forbiddenValue=root,admin,administrator
# Password strength. Valid values: VERY_WEAK, WEAK, MODERATE, MEDIUM, STRONG, VERY_STRONG or EXCEPTIONAL.
password.restriction.strength=MEDIUM

Password strength strict enforcement can be relaxed with:

password.restriction=WARN

-s (Silent Mode)

-s or --silent activate the silent mode (no output to the console).

Adding a User to the Management Realm

Adding a User to the Management Realm

Add a User to the Management Realm as part of an Automated Procedure

add-user.sh can be used in non-interactive mode, as part of an installation script, as follows:

${JBOSS_HOME}/bin/add-user.sh -r ManagementRealm -u admin -p admin123

Adding a User to the ApplicationRealm

Adding a User to the Application Realm