schemaorg_apache_xmlbeans.src.geronimo-security-1.2.xsd Maven / Gradle / Ivy
The newest version!
This is a partial XML Schema Definition for common security
elements. This schema will never be used directly but its elements
are used in geronimo-application-client-2.0.xsd,
geronimo-connector-1.2.xsd, geronimo-web-2.0.1.xsd,
geronimo-tomcat-2.0.1.xsd, and geronimo-jetty-2.0.2.xsd. All the schemas
or plans using elements of this schema must specify the top level
element with one of the namespace specified as
"http://geronimo.apache.org/xml/ns/j2ee/security-1.2". The default
location for this document is
http://geronimo.apache.org/schemas-1.2/geronimo-security-1.2.xsd.
Import Geronimo enterprise application deployment plans. The
imported plan includes complex types abstract-securityType
required by this plan schema.
The element security is used to map security roles setting for
applications. If this element is present, all the web and EJB
modules must make the appropriate access checks as outlined by
the JACC specifications. Essentially, it configures the
security-realms to be used by applications.
The element default-principal provides the principal to be used
during unauthorized access.
Security entries
If this element is present, all web and EJB modules MUST make
the appropriate access checks as outlined in the JACC spec.
Extension of abstract-securityType element defined in
geronimo-application-2.0.xsd.
Language specific description of security
element.
The element default-principal provides the
principal to be used during unauthorized access.
The element role-mappings provides the mapping
information for roles defined in deployment
descriptors and security realms available.
Set doas-current-caller attribute to "true" if the
work is to be performed as the calling Subject
instead of as application server. The default value
for doas-current-caller is false.
Set this attribute to "true" if the installed JACC
policy contexts will use PolicyContextHandlers.
Used by the the Deployer to assign method
permissions for all of the unspecified methods,
either by assigning them to security roles, or by
marking them as unchecked. If the value of
default-role is empty, then the unspecified methods
are marked unchecked
The reference to XML schema's lang attribute. This
is used to define the language for this descriptor.
Language specific description for default principle.
The principal element defines the to be used for
default principal, mapped using simple mapping
principal.
The login-domain-principal element defines the to be
used for default principal, mapped using login
domain specific mapping.
The realm-principal element defines the to be used
for default principal, mapped using login domain and
realm specific mapping.
The named-username-password-credential element defines
named credential to be used on per-user authentication
bases.
The name for this credential.
The username for this credential.
The password for this credential.
The set of principals used to map the roles defined in
deployment descriptors.
The language specific description of the role.
The realm-principal element defines the to be used for
default principal, mapped using login domain and realm
specific mapping.
The login-domain-principal element defines the to be
used for default principal, mapped using login domain
specific mapping.
The principal element defines the to be used for default
principal, mapped using simple mapping principal.
The distinguished-name element defines the client
certification authentication.
The role-name element defines the name for this role.
Extends loginDomainPrincipalType defined later in this
schema.
The realm-name attribute maps to the Geronimo
security realm.
Extends principalType defined later in this schema.
The domain-name attribute maps to the
login-domain-name set for the JAAS login module.
The language specific description for this principal.
The class attribute provides the fully qualified class name
of the principal class. The default Geronimo principal
classes are
org.apache.geronimo.security.realm.providers.GeronimoUserPrincipal
and
org.apache.geronimo.security.realm.providers.GeronimoGroupPrincipal
The name attribute provides the unique name for this
principal.
Set this attribute to "true" if this principal is to be used
as the run-as principal for this role.
Language specific description of distinguished name
The name of the distinguished name provided in client
certificate.
Set this attribute to "true" if this principal is to be used
as the run-as principal for this role.
© 2015 - 2025 Weber Informatics LLC | Privacy Policy