Installing the Agent Filter for an Application Protected by the JBoss Application Server 4.x/5.x Agent (Sun OpenSSO Enterprise Policy Agent 3.0 Guide for JBoss Application Server 4.x/5.x)

Sun OpenSSO Enterprise Policy Agent 3.0 Guide for JBoss Application Server 4.x/5.x

Installing the Agent Filter for an Application Protected by the JBoss Application Server 4.x/5.x Agent

You install the agent filter by modifying the deployment descriptor of each application that you want to protect with the JBoss Application Server 4.x/5.x agent.

To Install the Agent Filter for an Application Protected by the JBoss Application Server 4.x/5.x Agent

Ensure that the application you want to protect is not currently deployed on JBoss Application Server.

If the application is deployed, undeploy it before continuing.

Backup the application's web.xml file before you modify the deployment descriptor.

The backup copy can be useful if you need to uninstall the agent later.

Edit the deployment descriptors in the application's web.xml file as follows:

Set the <DOCTYPE> element as shown in the following example:
```
<!DOCTYPE web-app version="2.4"
xmlns="http://java.sun.com/xml/ns/j2ee"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee
http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd">
```
Note: JBoss Application Server supports the Java Servlet specification version 2.4. Version 2.4 is fully backward compatible with version 2.3. Therefore, all existing servlets should work without modification or recompilation.

Add the <filter> elements to the deployment descriptor.

Specify the agent filter as the first <filter> element and the agent filter mapping as the first <filter-mapping> element. For example:

<web-app>
...
    <filter>
        <filter-name>Agent</filter-name>
        <filter-class>com.sun.identity.agents.filter.AmAgentFilter</filter-class>
    </filter>
    <filter-mapping>
        <filter-name>Agent</filter-name>
        <url-pattern>/*</url-pattern>
        <dispatcher>REQUEST</dispatcher>
        <dispatcher>INCLUDE</dispatcher>
        <dispatcher>FORWARD</dispatcher>
        <dispatcher>ERROR</dispatcher>
    </filter-mapping>
...
</web-app>

In the applications's jboss-web.xml and jboss.xml files, specify the value of the security-domain element as AMRealm. For example:
```
<security-domain>java:/jaas/AMRealm</security-domain>
```

Restart the JBoss Application Server instance.

Deploy (or redeploy) the application on the JBoss Application Server web container.

The agent filter is then added for the application.

Next Steps

You can also protect an application with Java EE declarative security. To learn more about protecting your application with Java EE declarative security, consider Deploying the Java EE Policy Agent Sample Application.