WildFly Full 24 Model Reference

Deprecated Since 1.7.0

The security-realm configuration is deprecated and may be removed or moved in future versions.

Configuration to use LDAP as the user repository.

Attributes (8)

advanced-filter The fully defined filter to be used to search for the user based on their entered user ID. The filter should contain a variable in the form {0} - this will be replaced with the username supplied by the user.

Attribute	Value
Type	STRING
Nillable	true
Expressions Allowed	true
Storage	configuration
Access Type	read-write
Restart Required	resource-services

allow-empty-passwords Should empty passwords be accepted from the user being authenticated.

Attribute	Value
Default Value	false
Type	BOOLEAN
Nillable	true
Expressions Allowed	true
Storage	configuration
Access Type	read-write
Restart Required	resource-services

base-dn The base distinguished name to commence the search for the user.

Attribute	Value
Type	STRING
Nillable	false
Expressions Allowed	true
Storage	configuration
Access Type	read-write
Restart Required	resource-services

connection The name of the connection to use to connect to LDAP.

Attribute	Value
Type	STRING
Nillable	false
Expressions Allowed	false
Storage	configuration
Access Type	read-write
Restart Required	resource-services

recursive Whether the search should be recursive.

Attribute	Value
Default Value	false
Type	BOOLEAN
Nillable	true
Expressions Allowed	true
Storage	configuration
Access Type	read-write
Restart Required	resource-services

user-dn The name of the attribute which is the user's distinguished name.

Attribute	Value
Default Value	dn
Type	STRING
Nillable	true
Expressions Allowed	true
Storage	configuration
Access Type	read-write
Restart Required	resource-services

username-attribute The name of the attribute to search for the user. This filter will then perform a simple search where the username entered by the user matches the attribute specified here.

Attribute	Value
Type	STRING
Nillable	true
Expressions Allowed	true
Storage	configuration
Access Type	read-write
Restart Required	resource-services

username-load The name of the attribute that should be loaded from the authenticated users LDAP entry to replace the username that they supplied, e.g. convert an e-mail address to an ID or correct the case entered.

Attribute	Value
Type	STRING
Nillable	true
Expressions Allowed	true
Storage	configuration
Access Type	read-write
Restart Required	resource-services

Operations (2)

add Adds a configuration to use LDAP as the user repository.

Request Parameter	Type	Required	Expressions Allowed	Default value	Description
advanced-filter	STRING	true	true		The fully defined filter to be used to search for the user based on their entered user ID. The filter should contain a variable in the form {0} - this will be replaced with the username supplied by the user.
allow-empty-passwords	BOOLEAN	false	true	false	Should empty passwords be accepted from the user being authenticated.
base-dn	STRING	true	true		The base distinguished name to commence the search for the user.
connection	STRING	true	false		The name of the connection to use to connect to LDAP.
recursive	BOOLEAN	false	true	false	Whether the search should be recursive.
user-dn	STRING	false	true	dn	The name of the attribute which is the user's distinguished name.
username-attribute	STRING	true	true		The name of the attribute to search for the user. This filter will then perform a simple search where the username entered by the user matches the attribute specified here.
username-load	STRING	false	true		The name of the attribute that should be loaded from the authenticated users LDAP entry to replace the username that they supplied, e.g. convert an e-mail address to an ID or correct the case entered.

remove Removes a configuration to use LDAP as the user repository.