Realms
The upgrade tool transfers the realms and role mapping configurations, any custom realm classes, and file-based user keyfiles for each domain. The XML tag, security-service, defines the realms and role mapping configuration. This tag is defined in sun-server_1_0.dtd and sun-domain_1_0.dtd. For Application Server 7, the tag data resides in the server.xml and for in Application Server 8.2, in domain.xml.
The upgrade tool locates the class file defined for custom realms and makes it available to the Application Server 8.2 environment. The custom realm class is defined in the class name attribute of tag auth-realm. In the security-service tag, the default-realm attribute points to the realm the server is using. It must point to one of the configured auth-realm names. The default realm is file If the class name for default-realm cannot be found, the upgrade tool will log this as an error.
The package names of the security realm implementations have been renamed from com.iplanet.ias.security.auth.realm in Application Server 7 to com.sun.enterprise.security.auth.realm in Application Server 8.2. Custom realms written using the com.iplanet.* classes must be modified.
The com.sun.enterprise.security.AuthenticationStatus class has been removed.
The com.sun.enterprise.security.auth.login.PasswordLoginModule authenticate method implementation has changed as follows:
/**
* Perform authentication decision.
* <P> Note: AuthenticationStatus and AuthenticationStatusImpl
* classes have been removed.
* Method returns silently on success and returns a LoginException
* on failure.
*
* @return void authenticate returns silently on
* successful authentication.
* @throws LoginException on authentication failure.
*
*/
abstract protected void authenticate()
throws LoginException;
- © 2010, Oracle Corporation and/or its affiliates