NonStop Servlets for JavaServer Pages (NSJSP) 6.0 System Administrator's Guide
Configuring NSJSP
NonStop Servlets for JavaServer Pages (NSJSP) 6.0 System Administrator’s Guide—544548-004
3-25
MemoryRealm
password
The password you must use to log on. The password appears in clear text if the
digest attribute is not set on the <Realm> element or is encrypted appropriately as
described in Digested Passwords on page 3-39).
roles
Comma-delimited list of the role names associated with the user.
groups
Aggregation of roles form a group.
fullName
The full name of the user.
The default contents of the file NSJSP_HOME/conf/nsjsp-users.xml are shown in
Example 3-10.
MemoryRealm operates according to the following rules:
When the NSJSP server is started, it loads all the defined users and their
associated information from the nsjsp-users.xml file that is defined under
pathname. Changes to the data in this file are not recognized until the NSJSP
server is restarted.
When a user attempts to access a protected resource for the first time, the NSJSP
container calls the authenticate() method of this realm.
Once a user has been authenticated, the user (and the associated roles) is cached
within NSJSP for the duration of the user's login. For FORM-based authentication,
the duration lasts till the session times out or the session becomes invalid; for
BASIC and DIGEST authentication, the duration lasts till you close the browser.
Note. groups and fullName are optional elements.
Example 3-10. Default User File Format
<tomcat-users>
<role rolename="Tomcat" description="tomcat-role"/>
<role rolename="manager" description="Manager"/>
<role rolename="admin" description="Admin"/>
<group groupname="new" description="newgroup"
roles="admin,manager"/>
<user username="tomcat" password="tomcat" fullName="Tomcat"
groups="new" roles="Tomcat"/>
<user username="admin" password="tomcat" fullName="Admin"
roles="admin,manager"/>
</tomcat-users>