WildFly Management API Configuration: Difference between revisions
Jump to navigation
Jump to search
(Created page with "=Internal= * WildFly Configuration") |
No edit summary |
||
| Line 2: | Line 2: | ||
* [[WildFly Configuration#Subjects|WildFly Configuration]] | * [[WildFly Configuration#Subjects|WildFly Configuration]] | ||
=Overview= | |||
<pre> | |||
<management> | |||
<security-realms> | |||
<security-realm name="ManagementRealm"> | |||
<authentication> | |||
<local default-user="$local" skip-group-loading="true"/> | |||
<properties path="mgmt-users.properties" relative-to="jboss.server.config.dir"/> | |||
</authentication> | |||
<authorization map-groups-to-roles="false"> | |||
<properties path="mgmt-groups.properties" relative-to="jboss.server.config.dir"/> | |||
</authorization> | |||
</security-realm> | |||
<security-realm name="ApplicationRealm"> | |||
<authentication> | |||
<local default-user="$local" allowed-users="*" skip-group-loading="true"/> | |||
<properties path="application-users.properties" relative-to="jboss.server.config.dir"/> | |||
</authentication> | |||
<authorization> | |||
<properties path="application-roles.properties" relative-to="jboss.server.config.dir"/> | |||
</authorization> | |||
</security-realm> | |||
</security-realms> | |||
<audit-log> | |||
<formatters> | |||
<json-formatter name="json-formatter"/> | |||
</formatters> | |||
<handlers> | |||
<file-handler name="file" formatter="json-formatter" relative-to="jboss.server.data.dir" path="audit-log.log"/> | |||
</handlers> | |||
<logger log-boot="true" log-read-only="false" enabled="false"> | |||
<handlers> | |||
<handler name="file"/> | |||
</handlers> | |||
</logger> | |||
</audit-log> | |||
<management-interfaces> | |||
<http-interface security-realm="ManagementRealm" http-upgrade-enabled="true"> | |||
<socket-binding http="management-http"/> | |||
</http-interface> | |||
</management-interfaces> | |||
<access-control provider="simple"> | |||
<role-mapping> | |||
<role name="SuperUser"> | |||
<include> | |||
<user name="$local"/> | |||
</include> | |||
</role> | |||
</role-mapping> | |||
</access-control> | |||
</management> | |||
</pre> | |||
Revision as of 02:13, 10 February 2016
Internal
Overview
<management>
<security-realms>
<security-realm name="ManagementRealm">
<authentication>
<local default-user="$local" skip-group-loading="true"/>
<properties path="mgmt-users.properties" relative-to="jboss.server.config.dir"/>
</authentication>
<authorization map-groups-to-roles="false">
<properties path="mgmt-groups.properties" relative-to="jboss.server.config.dir"/>
</authorization>
</security-realm>
<security-realm name="ApplicationRealm">
<authentication>
<local default-user="$local" allowed-users="*" skip-group-loading="true"/>
<properties path="application-users.properties" relative-to="jboss.server.config.dir"/>
</authentication>
<authorization>
<properties path="application-roles.properties" relative-to="jboss.server.config.dir"/>
</authorization>
</security-realm>
</security-realms>
<audit-log>
<formatters>
<json-formatter name="json-formatter"/>
</formatters>
<handlers>
<file-handler name="file" formatter="json-formatter" relative-to="jboss.server.data.dir" path="audit-log.log"/>
</handlers>
<logger log-boot="true" log-read-only="false" enabled="false">
<handlers>
<handler name="file"/>
</handlers>
</logger>
</audit-log>
<management-interfaces>
<http-interface security-realm="ManagementRealm" http-upgrade-enabled="true">
<socket-binding http="management-http"/>
</http-interface>
</management-interfaces>
<access-control provider="simple">
<role-mapping>
<role name="SuperUser">
<include>
<user name="$local"/>
</include>
</role>
</role-mapping>
</access-control>
</management>