WildFly Full 24 Model Reference

  1. home
  2. subsystem=security
Deprecated Since 1.3.0
The Security subsystem is deprecated and may be removed, significantly revised, or limited to managed domain legacy server use in future versions.

The configuration of the security subsystem.

Children (7)

  • elytron-key-manager The configuration of an Elytron-compatible key manager that is exported from a legacy JSSE domain.
  • elytron-key-store The configuration of an Elytron-compatible key store that is exported from a legacy JSSE domain.
  • elytron-realm The configuration of an Elytron-compatible realm that delegates authentication decisions to a legacy security domain.
  • elytron-trust-manager The configuration of an Elytron-compatible trust manager that is exported from a legacy JSSE domain.
  • elytron-trust-store The configuration of an Elytron-compatible trust store that is exported from a legacy JSSE domain.
  • security-domain Configures a security domain. Authentication, authorization, ACL, mapping, auditing and identity trust are configured here.
  • vault Security Vault for attributes.
    • classic Security Vault for attributes.

Provided capabilities(3)

Attributes (2)

  • deep-copy-subject-mode Sets the copy mode of subjects done by the security managers to be deep copies that makes copies of the subject principals and credentials if they are cloneable. It should be set to true if subject include mutable content that can be corrupted when multiple threads have the same identity and cache flushes/logout clearing the subject in one thread results in subject references affecting other threads.
    • Attribute Value
    Default Value false
    Type BOOLEAN
    Nillable true
    Expressions Allowed true
    Storage configuration
    Access Type read-write
    Restart Required no-services
  • initialize-jacc Indicates if this subsystem should be in charge of initializing Jakarta Authorization related services.
    • Attribute Value
    Default Value true
    Type BOOLEAN
    Nillable true
    Expressions Allowed true
    Storage configuration
    Access Type read-write
    Restart Required jvm

Operations (2)

  • add Adds the security subsystem.
    Request Parameter Type Required Expressions Allowed Default value Description
    deep-copy-subject-mode BOOLEAN false true false Sets the copy mode of subjects done by the security managers to be deep copies that makes copies of the subject principals and credentials if they are cloneable. It should be set to true if subject include mutable content that can be corrupted when multiple threads have the same identity and cache flushes/logout clearing the subject in one thread results in subject references affecting other threads.
    initialize-jacc BOOLEAN false true true Indicates if this subsystem should be in charge of initializing Jakarta Authorization related services.
  • remove Removes the security subsystem.