NonStop Servlets for JavaServer Pages (NSJSP) 6.1 System Administrator's Guide
Security Considerations
NonStop Servlets for JavaServer Pages (NSJSP) 6.1 System Administrator’s Guide—596210-006
8-22
Realms
Attributes in the JAASRealm
Table 8-5 lists the attributes that can be used in the JAASRealm.
Configuring Authentication Using JAASRealm
To configure authentication using JAASRealm and the NonStopLoginModule, complete
the following steps:
1. Open the servlet.config file in <NSJSP_HOME>/conf and complete the
following steps:
a. Comment the following entry in the servlet.config file by inserting a # at
the beginning of the line:
set NSJSP_JAAS_CONFIG -Dnsjsp.jaas.login.config=none.
b. Uncomment the following entry by removing # in the beginning of the entry:
set NSJSP_JAAS_CONFIG -Djava.security.auth.login.config==
$env(JAAS_CONFIG_FILE
2. Configure security constraints in the web application deployment descriptor
(web.xml) to allow access to application resources for users belonging to
Table 8-5. JAASRealm Attributes
Attribute Description
appName Specifies the name of the application as configured in your
login configuration file.
userClassNames Specifies a comma-separated list of the names of classes
that you have created for your user Principals.
roleClassNames Specifies a comma-separated list of the names of the
classes that you have created for your role Principals.
useContextClassLoader Instructs the JAASRealm to use the context class loader for
loading the user-specified LoginModule class and
associated Principal classes. The default value is true. To
load classes using the container's classloader, specify
false. If the NonStopLoginModule is used, this value can
be set to false since the class is available with the
container class loader.
digest Specifies the digest algorithm used to store passwords in
non-plain text formats. Valid values are those accepted for
the algorithm name by the
java.security.MessageDigest class. If not specified,
passwords are stored in plain text.