BASIC認証の設定

Java Jboss Glassfish

とりあえず、めも。

web.xml
    <security-constraint>
        <web-resource-collection>
            <web-resource-name>Webadmin</web-resource-name>
            <url-pattern>*.json</url-pattern>
        </web-resource-collection>
        <auth-constraint>
            <role-name>WebadminRole</role-name>
        </auth-constraint>
    </security-constraint>
    
    <login-config>
        <auth-method>BASIC</auth-method>
        <realm-name>WebadminRealm</realm-name>
    </login-config>
    
    <security-role>
        <role-name>WebadminRole</role-name>
    </security-role>

JBoss AS 7

jboss-web.xml
<?xml version="1.0"?>
<jboss-web>
    <!-- standalone.xmlの<security-domain>のname属性 -->
    <security-domain>java:/jaas/WebadminDomain</security-domain>
</jboss-web>
standalone.xml
        <subsystem xmlns="urn:jboss:domain:security:1.1">

           (snip)
                <!-- 以下を追加 -->
                <!-- name属性の値は、jboss-web.xmlの値 -->
                <security-domain name="WebadminDomain" cache-type="default">
                    <authentication>
                        <login-module code="RealmUsersRoles" flag="required">
                            <module-option name="usersProperties" value="${jboss.server.config.dir}/application-users.properties"/>
                            <module-option name="rolesProperties" value="${jboss.server.config.dir}/application-roles.properties"/>
                            <!-- web.xmlの<login-config>のrealm-nameの値 -->
                            <module-option name="realm" value="WebadminRealm"/>
                            <module-option name="password-stacking" value="useFirstPass"/>
                        </login-module>
                    </authentication>
                </security-domain>
            </security-domains>
        </subsystem>
application-users.properties, application-roles.properties


bin/add-user.shでユーザを追加する。レルムはWebadminRealm, RoleはWebadminRole

Glassfish 3.1.1

glassfish-web.xml
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE glassfish-web-app PUBLIC "-//GlassFish.org//DTD GlassFish Application Server 3.1 Servlet 3.0//EN" 
                                   "http://glassfish.org/dtds/glassfish-web-app_3_0-1.dtd">
<glassfish-web-app error-url="">
  <security-role-mapping>
    <role-name>WebadminRole</role-name>
    <principal-name>admin</principal-name>
  </security-role-mapping>
  <class-loader delegate="true"/>
  <jsp-config>
    <property name="keepgenerated" value="true">
      <description>Keep a copy of the generated servlet class' java code.</description>
    </property>
  </jsp-config>
</glassfish-web-app>
管理コンソールで設定


セキュリティのレルムからfileを選択


ユーザを管理 を選択


ユーザ"admin"を追加