Contains a context parameter name.
none - contains data
Contains a context parameter value.
none - contains data
Configures port unification.
The following table describes subelements for the port-unification element.
Table 1–120 port-unification Subelements
Element |
Required |
Description |
---|---|---|
zero or one |
Configures the protocol finder. |
The following table describes attributes for the port-unification element.
Table 1–121 port-unification Attributes
Attribute |
Default |
Description |
---|---|---|
name |
none |
Specifies a unique name for the port-unification. |
none |
Specifies the class name of the port-unification implementation. |
Contains the principal of the servlet or EJB client.
none - contains data
Maps an EIS principal to a principal defined in the GlassFish Server domain.
none
The following table describes attributes for the principal-map element.
Table 1–122 principal-map Attributes
Attribute |
Default |
Description |
---|---|---|
none |
Specifies an EIS principal. |
|
none |
Specifies a principal defined in the GlassFish Server domain. |
Configures a profiler for use with the GlassFish Server. For more information about profilers, see the Oracle GlassFish Server 3.0.1 Application Development Guide.
The following table describes subelements for the profiler element.
Table 1–123 profiler Subelements
Element |
Required |
Description |
---|---|---|
zero or more |
Contains profiler-specific JVM command line options. |
|
zero or more |
Specifies a property or a variable. |
Subelements of a profiler element can occur in any order.
The following table describes attributes for the profiler element.
Table 1–124 profiler Attributes
Attribute |
Default |
Description |
---|---|---|
none |
Specifies the name of the profiler. |
|
none |
(optional) Specifies the classpath for the profiler. |
|
none |
(optional) Specifies the native library path for the profiler. |
|
enabled |
true |
(optional) Determines whether the profiler is enabled. |
Specifies a property. A property adds configuration information to its parent element that is one or both of the following:
Optional with respect to the GlassFish Server
Needed by a system or object that the GlassFish Server doesn’t have knowledge of, such as an LDAP server or a Java class
For example, an auth-realm element can include property subelements:
<auth-realm name="file" classname="com.sun.enterprise.security.auth.realm.file.FileRealm"> <property name="file" value="domain-dir/config/keyfile"/> <property name="jaas-context" value="fileRealm"/> </auth-realm>
Which properties an auth-realm element uses depends on the value of the auth-realm element’s name attribute. The file realm uses file and jaas-context properties. Other realms use different properties.
admin-object-resource, admin-service, appclient-module, application, audit-module, auth-realm, config, connector-connection-pool, connector-module, connector-resource, custom-resource, das-config, domain, ejb-container, ejb-module, ejb-timer-service, engine, extension-module, external-jndi-resource, http-service, iiop-listener, j2ee-application, jacc-provider, java-config, jdbc-connection-pool, jdbc-resource, jms-host, jms-service, jmx-connector, lifecycle-module, log-service, mail-resource, manager-properties, mdb-container, module-log-levels, module-monitoring-levels, monitoring-service, orb, profiler, provider-config, resource-adapter-config, security-service, server, session-properties, store-properties, thread-pool, transaction-service, virtual-server, web-container, , web-module
none
The following table describes attributes for the property element.
Table 1–125 property Attributes
Attribute |
Default |
Description |
---|---|---|
none |
Specifies the name of the property or variable. |
|
none |
Specifies the value of the property or variable. |
|
none |
(optional) Specifies a text description of this element. |
Configures a network protocol. A protocol can be defined in one of the following ways according to its subelements:
http — Defines HTTP or HTTPS protocol.
protocol-chain-instance-handler — Defines a custom protocol as a chain of protocol-filter links.
port-unification — Defines a composite protocol, which can consist of several protocol definitions. Port unification makes it possible for a single network-listener to host several protocols at the same time. For example, HTTP and IIOP can work simultaneously on port 8080.
The following table describes subelements for the protocol element.
Table 1–126 protocol Subelements
Element |
Required |
Description |
---|---|---|
zero or one |
Configures HTTP parameters. |
|
zero or one |
Configures port unification. |
|
zero or one |
Configures a protocol chain instance handler. |
|
zero or one |
Configures a protocol filter. |
|
zero or one |
Defines SSL parameters. |
The following table describes attributes for the protocol element.
Table 1–127 protocol Attributes
Attribute |
Default |
Description |
---|---|---|
name |
none |
Specifies a unique name for the protocol. |
false |
(optional) Determines whether the network-listener that references this protocol runs SSL. To turn SSL2 or SSL3 on or off and set ciphers, use an ssl subelement. |
Configures a protocol chain.
protocol-chain-instance-handler
none
The following table describes attributes for the protocol-chain element.
Table 1–128 protocol-chain Attributes
Attribute |
Default |
Description |
---|---|---|
name |
none |
Specifies a unique name for the protocol chain. |
none |
Specifies the class name of the protocol chain implementation. |
|
STATELESS |
Specifies the type of protocol chain. |
Configures a protocol chain instance handler.
The following table describes subelements for the protocol-chain-instance-handler element.
Table 1–129 protocol-chain-instance-handler Subelements
Element |
Required |
Description |
---|---|---|
one or more |
Configures a protocol chain. |
The following table describes attributes for the protocol-chain-instance-handler element.
Table 1–130 protocol-chain-instance-handler Attributes
Attribute |
Default |
Description |
---|---|---|
name |
none |
Specifies a unique name for the protocol chain instance handler. |
none |
Specifies the class name of the protocol chain instance handler implementation. |
Configures a protocol filter.
none
The following table describes attributes for the protocol-filter element.
Table 1–131 protocol-filter Attributes
Attribute |
Default |
Description |
---|---|---|
name |
none |
Specifies a unique name for the protocol filter. |
none |
Specifies the class name of the protocol filter implementation. |
Configures a protocol finder.
none
The following table describes attributes for the protocol-finder element.
Table 1–132 protocol-finder Attributes
Attribute |
Default |
Description |
---|---|---|
name |
none |
Specifies a unique name for the protocol finder. |
none |
Specifies the class name of the protocol finder implementation. |
|
protocol |
none |
Specifies the name of the protocol associated with this protocol finder.
|
Contains protocols.
The following table describes subelements for the protocols element.
Table 1–133 protocols Subelements
Element |
Required |
Description |
---|---|---|
one or more |
Configures a protocol. |
Specifies a configuration for one message security provider.
Although the request-policy and response-policy subelements are optional, the provider-config element does nothing if they are not specified.
Use property subelements to configure provider-specific properties. Property values are passed to the provider when its initialize method is called.
The following table describes subelements for the provider-config element.
Table 1–134 provider-config Subelements
Element |
Required |
Description |
---|---|---|
zero or one |
Defines the authentication policy requirements of the authentication provider’s request processing. |
|
zero or one |
Defines the authentication policy requirements of the authentication provider’s response processing. |
|
zero or more |
Specifies a property or a variable. |
The following table describes attributes for the provider-config element.
Table 1–135 provider-config Attributes
Attribute |
Default |
Description |
---|---|---|
none |
Specifies a unique identifier for this provider-config element. |
|
none |
Specifies whether the provider is a client, server, or client-server authentication provider. |
|
none |
Specifies the Java implementation class of the provider. Client authentication providers must implement the com.sun.enterprise.security.jauth.ClientAuthModule interface. Server authentication providers must implement the com.sun.enterprise.security.jauth.ServerAuthModule interface. Client-server providers must implement both interfaces. |
The following table describes properties for the provider-config element.
Table 1–136 provider-config Properties
Property |
Default |
Description |
---|---|---|
domain-dir/config/wss-server-config-1.0.xml |
Specifies the location of the message security configuration file. To point to a configuration file in the domain-dir/config directory, use the system property ${com.sun.aas.instanceRoot}/config/, for example: ${com.sun.aas.instanceRoot}/config/wss-server-config-1.0.xml See system-property. |
|
false |
If true, enables dumping of server provider debug messages to the server log. |
|
false |
If true, signals the provider runtime to collect the user name and password from the CallbackHandler for each request. If false, the user name and password for wsse:UsernameToken(s) is collected once, during module initialization. This property is only applicable for a ClientAuthModule. |
|
s1as |
Specifies the encryption key used by the provider. The key is identified by its keystore alias. |
|
s1as |
Specifies the signature key used by the provider. The key is identified by its keystore alias. |