Manualshelf

NonStop Servlets for JavaServer Pages (NSJSP) 6.1 System Administrator's Guide

ManualsBrandsHP ManualsServerHP Integrity NonStop J-Series
361362363364365366367368369370
Security Considerations
NonStop Servlets for JavaServer Pages (NSJSP) 6.1 System Administrator’s Guide—596210-006
8-20
Realms
Example 8-3 shows the UserDatabase resource definition in the
GlobalNamingResources section. It also shows a UserDatabaseRealm definition
that uses the UserDatabase resource in the Engine element.
Attributes in the UserDatabaseRealm
Table 8-4 lists the attributes that can be used in the UserDatabaseRealm.
JAASRealm
The JAASRealm is an implementation of the Realm interface that authenticates users
through the Java Authentication and Authorization Service (JAAS) framework. For
Example 8-3. Sample UserDataBase Definition
<GlobalNamingResources>
<Resource name="
UserDatabase" auth="Container"
type="org.apache.catalina.UserDatabase"
description="User database that can be updated and saved"
factory="org.apache.catalina.users.MemoryUserDatabaseFactory"
pathname="conf/nsjsp-users.xml" />
</GlobalNamingResources>
<Engine name="NSJSP" defaultHost="localhost">
<RealmclassName="org.apache.catalina.realm.UserDatabaseRealm”
resourceName="
UserDatabase" digest="MD5" />
Table 8-4. UserDatabaseRealm Attributes
Attribute Description
resourceName Specifies the name of the resource that this Realm will use to obtain
user, password, and role information.
digest Specifies the name of the MessageDigest algorithm used to encode
user passwords stored in the database. If this attribute is not specified,
by default, user passwords are stored in plain text. For more information
on digested passwords, see Digested Passwords
on page 8-28.