Management API Reference for server-ssl-context

Children (1)

• ssl-session

Provided Capabilities (1)

Attributes (20)

• active-session-count - The count of current active sessions.

  Type	INT
  Where is the attribute stored?	runtime
  Access Type	read-only
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "INT" }, "description" : "The count of current active sessions.", "expressions-allowed" : false, "required" : true, "nillable" : false, "stability" : "default", "access-type" : "read-only", "storage" : "runtime", "restart-required" : null, "capability-reference" : null }

• authentication-optional - Rejecting of the client certificate by the security domain will not prevent the connection. Allows a fall through to use other authentication mechanisms (like form login) when the client certificate is rejected by security domain. Has an effect only when the security domain is set.

  Type	BOOLEAN
  Default Value	false
  Is the attribute nillable?	true
  Does the attribute allow expression?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "BOOLEAN" }, "description" : "Rejecting of the client certificate by the security domain will not prevent the connection. Allows a fall through to use other authentication mechanisms (like form login) when the client certificate is rejected by security domain. Has an effect only when the security domain is set.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : false, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services", "capability-reference" : null }

• cipher-suite-filter - The filter to apply to specify the enabled cipher suites for TLSv1.2 and below.

  Type	STRING
  Default Value	DEFAULT
  Is the attribute nillable?	true
  Does the attribute allow expression?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "The filter to apply to specify the enabled cipher suites for TLSv1.2 and below.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : "DEFAULT", "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services", "capability-reference" : null }

• cipher-suite-names - The filter to apply to specify the enabled cipher suites for TLSv1.3.

  Type	STRING
  Is the attribute nillable?	true
  Does the attribute allow expression?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "The filter to apply to specify the enabled cipher suites for TLSv1.3.", "expressions-allowed" : true, "required" : false, "nillable" : true, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services", "capability-reference" : null }

• final-principal-transformer - A final principal transformer to apply for this mechanism realm.

  Type	STRING
  Is the attribute nillable?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	resource-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "A final principal transformer to apply for this mechanism realm.", "expressions-allowed" : false, "required" : false, "nillable" : true, "capability-reference" : "org.wildfly.security.principal-transformer", "min-length" : 1, "max-length" : 2147483647, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "resource-services" }

• key-manager - Reference to the key manager to use within the SSLContext.

  Type	STRING
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "Reference to the key manager to use within the SSLContext.", "expressions-allowed" : false, "required" : true, "nillable" : false, "capability-reference" : "org.wildfly.security.key-manager", "min-length" : 1, "max-length" : 2147483647, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services" }

• maximum-session-cache-size - The maximum number of SSL sessions in the cache. The default value -1 means use the JVM default value. Value zero means there is no limit.

  Type	INT
  Default Value	-1
  Is the attribute nillable?	true
  Does the attribute allow expression?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Min	-1
  Max	2147483647
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "INT" }, "description" : "The maximum number of SSL sessions in the cache. The default value -1 means use the JVM default value. Value zero means there is no limit.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : -1, "min" : -1, "max" : 2147483647, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services", "capability-reference" : null }

• need-client-auth - To require a client certificate on SSL handshake. Connection without trusted client certificate (see trust-manager) will be rejected.

  Type	BOOLEAN
  Default Value	false
  Is the attribute nillable?	true
  Does the attribute allow expression?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "BOOLEAN" }, "description" : "To require a client certificate on SSL handshake. Connection without trusted client certificate (see trust-manager) will be rejected.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : false, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services", "capability-reference" : null }

• post-realm-principal-transformer - A principal transformer to apply after the realm is selected.

  Type	STRING
  Is the attribute nillable?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	resource-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "A principal transformer to apply after the realm is selected.", "expressions-allowed" : false, "required" : false, "nillable" : true, "capability-reference" : "org.wildfly.security.principal-transformer", "min-length" : 1, "max-length" : 2147483647, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "resource-services" }

• pre-realm-principal-transformer - A principal transformer to apply before the realm is selected.

  Type	STRING
  Is the attribute nillable?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	resource-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "A principal transformer to apply before the realm is selected.", "expressions-allowed" : false, "required" : false, "nillable" : true, "capability-reference" : "org.wildfly.security.principal-transformer", "min-length" : 1, "max-length" : 2147483647, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "resource-services" }

• protocols - The enabled protocols.

  Type	LIST
  Is the attribute nillable?	true
  Does the attribute allow expression?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Allowed Values	SSLv2 SSLv3 TLSv1 TLSv1.3 TLSv1.2 SSLv2Hello TLSv1.1
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "LIST" }, "description" : "The enabled protocols.", "expressions-allowed" : true, "required" : false, "nillable" : true, "min-length" : 1, "max-length" : 2147483647, "allowed" : [ "SSLv2", "SSLv2Hello", "SSLv3", "TLSv1", "TLSv1.1", "TLSv1.2", "TLSv1.3" ], "stability" : "default", "value-type" : { "TYPE_MODEL_VALUE" : "STRING" }, "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services", "capability-reference" : null }

• provider-name - The name of the provider to use. If not specified, all providers from providers will be passed to the SSLContext.

  Type	STRING
  Is the attribute nillable?	true
  Does the attribute allow expression?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "The name of the provider to use. If not specified, all providers from providers will be passed to the SSLContext.", "expressions-allowed" : true, "required" : false, "nillable" : true, "min-length" : 1, "max-length" : 2147483647, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services", "capability-reference" : null }

• providers - The name of the providers to obtain the Provider[] to use to load the SSLContext.

  Type	STRING
  Is the attribute nillable?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "The name of the providers to obtain the Provider[] to use to load the SSLContext.", "expressions-allowed" : false, "required" : false, "nillable" : true, "capability-reference" : "org.wildfly.security.providers", "min-length" : 1, "max-length" : 2147483647, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services" }

• realm-mapper - The realm mapper to be used for SSL authentication.

  Type	STRING
  Is the attribute nillable?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	resource-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "The realm mapper to be used for SSL authentication.", "expressions-allowed" : false, "required" : false, "nillable" : true, "capability-reference" : "org.wildfly.security.realm-mapper", "min-length" : 1, "max-length" : 2147483647, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "resource-services" }

• security-domain - The security domain to use for authentication during SSL session establishment.

  Type	STRING
  Is the attribute nillable?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "The security domain to use for authentication during SSL session establishment.", "expressions-allowed" : false, "required" : false, "nillable" : true, "capability-reference" : "org.wildfly.security.security-domain", "min-length" : 1, "max-length" : 2147483647, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services" }

• session-timeout - The timeout for SSL sessions, in seconds. The default value -1 means use the JVM default value. Value zero means there is no limit.

  Type	INT
  Default Value	-1
  Is the attribute nillable?	true
  Does the attribute allow expression?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Min	-1
  Max	2147483647
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "INT" }, "description" : "The timeout for SSL sessions, in seconds. The default value -1 means use the JVM default value. Value zero means there is no limit.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : -1, "min" : -1, "max" : 2147483647, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services", "capability-reference" : null }

• trust-manager - Reference to the trust manager to use within the SSLContext.

  Type	STRING
  Is the attribute nillable?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "Reference to the trust manager to use within the SSLContext.", "expressions-allowed" : false, "required" : false, "nillable" : true, "capability-reference" : "org.wildfly.security.trust-manager", "min-length" : 1, "max-length" : 2147483647, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services" }

• use-cipher-suites-order - To honor local cipher suites preference.

  Type	BOOLEAN
  Default Value	true
  Is the attribute nillable?	true
  Does the attribute allow expression?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "BOOLEAN" }, "description" : "To honor local cipher suites preference.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : true, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services", "capability-reference" : null }

• want-client-auth - To request (but not to require) a client certificate on SSL handshake. If a security domain is referenced and supports X509 evidence, this will be set to true automatically. Ignored when need-client-auth is set.

  Type	BOOLEAN
  Default Value	false
  Is the attribute nillable?	true
  Does the attribute allow expression?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "BOOLEAN" }, "description" : "To request (but not to require) a client certificate on SSL handshake. If a security domain is referenced and supports X509 evidence, this will be set to true automatically. Ignored when need-client-auth is set.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : false, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services", "capability-reference" : null }

• wrap - Should the SSLEngine, SSLSocket, and SSLServerSocket instances returned be wrapped to protect against further modification.

  Type	BOOLEAN
  Default Value	false
  Is the attribute nillable?	true
  Does the attribute allow expression?	true
  Where is the attribute stored?	configuration
  Access Type	read-write
  Is restarted required?	all-services
  Stability Level	default
  Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "BOOLEAN" }, "description" : "Should the SSLEngine, SSLSocket, and SSLServerSocket instances returned be wrapped to protect against further modification.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : false, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "all-services", "capability-reference" : null }

Operations (2)

• add - Add the SSL context definition.

  Request Parameter	Type	Required	Expressions Allowed	Default value	Description
  authentication-optional	BOOLEAN	false	true	false	Rejecting of the client certificate by the security domain will not prevent the connection. Allows a fall through to use other authentication mechanisms (like form login) when the client certificate is rejected by security domain. Has an effect only when the security domain is set.
  cipher-suite-filter	STRING	false	true	DEFAULT	The filter to apply to specify the enabled cipher suites for TLSv1.2 and below.
  cipher-suite-names	STRING	false	true		The filter to apply to specify the enabled cipher suites for TLSv1.3.
  final-principal-transformer	STRING	false	false		A final principal transformer to apply for this mechanism realm.
  key-manager	STRING	true	false		Reference to the key manager to use within the SSLContext.
  maximum-session-cache-size	INT	false	true	-1	The maximum number of SSL sessions in the cache. The default value -1 means use the JVM default value. Value zero means there is no limit.
  need-client-auth	BOOLEAN	false	true	false	To require a client certificate on SSL handshake. Connection without trusted client certificate (see trust-manager) will be rejected.
  post-realm-principal-transformer	STRING	false	false		A principal transformer to apply after the realm is selected.
  pre-realm-principal-transformer	STRING	false	false		A principal transformer to apply before the realm is selected.
  protocols	LIST	false	true		The enabled protocols.
  provider-name	STRING	false	true		The name of the provider to use. If not specified, all providers from providers will be passed to the SSLContext.
  providers	STRING	false	false		The name of the providers to obtain the Provider[] to use to load the SSLContext.
  realm-mapper	STRING	false	false		The realm mapper to be used for SSL authentication.
  security-domain	STRING	false	false		The security domain to use for authentication during SSL session establishment.
  session-timeout	INT	false	true	-1	The timeout for SSL sessions, in seconds. The default value -1 means use the JVM default value. Value zero means there is no limit.
  trust-manager	STRING	false	false		Reference to the trust manager to use within the SSLContext.
  use-cipher-suites-order	BOOLEAN	false	true	true	To honor local cipher suites preference.
  want-client-auth	BOOLEAN	false	true	false	To request (but not to require) a client certificate on SSL handshake. If a security domain is referenced and supports X509 evidence, this will be set to true automatically. Ignored when need-client-auth is set.
  wrap	BOOLEAN	false	true	false	Should the SSLEngine, SSLSocket, and SSLServerSocket instances returned be wrapped to protect against further modification.

  Raw DMR model

  { "operation-name" : "add", "description" : "Add the SSL context definition.", "request-properties" : { "authentication-optional" : { "type" : { "TYPE_MODEL_VALUE" : "BOOLEAN" }, "description" : "Rejecting of the client certificate by the security domain will not prevent the connection. Allows a fall through to use other authentication mechanisms (like form login) when the client certificate is rejected by security domain. Has an effect only when the security domain is set.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : false, "stability" : "default" }, "cipher-suite-filter" : { "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "The filter to apply to specify the enabled cipher suites for TLSv1.2 and below.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : "DEFAULT", "stability" : "default" }, "cipher-suite-names" : { "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "The filter to apply to specify the enabled cipher suites for TLSv1.3.", "expressions-allowed" : true, "required" : false, "nillable" : true, "stability" : "default" }, "final-principal-transformer" : { "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "A final principal transformer to apply for this mechanism realm.", "expressions-allowed" : false, "required" : false, "nillable" : true, "capability-reference" : "org.wildfly.security.principal-transformer", "min-length" : 1, "max-length" : 2147483647, "stability" : "default" }, "key-manager" : { "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "Reference to the key manager to use within the SSLContext.", "expressions-allowed" : false, "required" : true, "nillable" : false, "capability-reference" : "org.wildfly.security.key-manager", "min-length" : 1, "max-length" : 2147483647, "stability" : "default" }, "maximum-session-cache-size" : { "type" : { "TYPE_MODEL_VALUE" : "INT" }, "description" : "The maximum number of SSL sessions in the cache. The default value -1 means use the JVM default value. Value zero means there is no limit.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : -1, "min" : -1, "max" : 2147483647, "stability" : "default" }, "need-client-auth" : { "type" : { "TYPE_MODEL_VALUE" : "BOOLEAN" }, "description" : "To require a client certificate on SSL handshake. Connection without trusted client certificate (see trust-manager) will be rejected.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : false, "stability" : "default" }, "post-realm-principal-transformer" : { "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "A principal transformer to apply after the realm is selected.", "expressions-allowed" : false, "required" : false, "nillable" : true, "capability-reference" : "org.wildfly.security.principal-transformer", "min-length" : 1, "max-length" : 2147483647, "stability" : "default" }, "pre-realm-principal-transformer" : { "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "A principal transformer to apply before the realm is selected.", "expressions-allowed" : false, "required" : false, "nillable" : true, "capability-reference" : "org.wildfly.security.principal-transformer", "min-length" : 1, "max-length" : 2147483647, "stability" : "default" }, "protocols" : { "type" : { "TYPE_MODEL_VALUE" : "LIST" }, "description" : "The enabled protocols.", "expressions-allowed" : true, "required" : false, "nillable" : true, "min-length" : 1, "max-length" : 2147483647, "allowed" : [ "SSLv2", "SSLv2Hello", "SSLv3", "TLSv1", "TLSv1.1", "TLSv1.2", "TLSv1.3" ], "stability" : "default", "value-type" : { "TYPE_MODEL_VALUE" : "STRING" } }, "provider-name" : { "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "The name of the provider to use. If not specified, all providers from providers will be passed to the SSLContext.", "expressions-allowed" : true, "required" : false, "nillable" : true, "min-length" : 1, "max-length" : 2147483647, "stability" : "default" }, "providers" : { "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "The name of the providers to obtain the Provider[] to use to load the SSLContext.", "expressions-allowed" : false, "required" : false, "nillable" : true, "capability-reference" : "org.wildfly.security.providers", "min-length" : 1, "max-length" : 2147483647, "stability" : "default" }, "realm-mapper" : { "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "The realm mapper to be used for SSL authentication.", "expressions-allowed" : false, "required" : false, "nillable" : true, "capability-reference" : "org.wildfly.security.realm-mapper", "min-length" : 1, "max-length" : 2147483647, "stability" : "default" }, "security-domain" : { "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "The security domain to use for authentication during SSL session establishment.", "expressions-allowed" : false, "required" : false, "nillable" : true, "capability-reference" : "org.wildfly.security.security-domain", "min-length" : 1, "max-length" : 2147483647, "stability" : "default" }, "session-timeout" : { "type" : { "TYPE_MODEL_VALUE" : "INT" }, "description" : "The timeout for SSL sessions, in seconds. The default value -1 means use the JVM default value. Value zero means there is no limit.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : -1, "min" : -1, "max" : 2147483647, "stability" : "default" }, "trust-manager" : { "type" : { "TYPE_MODEL_VALUE" : "STRING" }, "description" : "Reference to the trust manager to use within the SSLContext.", "expressions-allowed" : false, "required" : false, "nillable" : true, "capability-reference" : "org.wildfly.security.trust-manager", "min-length" : 1, "max-length" : 2147483647, "stability" : "default" }, "use-cipher-suites-order" : { "type" : { "TYPE_MODEL_VALUE" : "BOOLEAN" }, "description" : "To honor local cipher suites preference.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : true, "stability" : "default" }, "want-client-auth" : { "type" : { "TYPE_MODEL_VALUE" : "BOOLEAN" }, "description" : "To request (but not to require) a client certificate on SSL handshake. If a security domain is referenced and supports X509 evidence, this will be set to true automatically. Ignored when need-client-auth is set.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : false, "stability" : "default" }, "wrap" : { "type" : { "TYPE_MODEL_VALUE" : "BOOLEAN" }, "description" : "Should the SSLEngine, SSLSocket, and SSLServerSocket instances returned be wrapped to protect against further modification.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : false, "stability" : "default" } }, "reply-properties" : {}, "stability" : "default", "read-only" : false, "restart-required" : "resource-services", "runtime-only" : false }

• remove - Remove the SSL context definition.

  Raw DMR model

  { "operation-name" : "remove", "description" : "Remove the SSL context definition.", "request-properties" : {}, "reply-properties" : {}, "stability" : "default", "read-only" : false, "restart-required" : "resource-services", "runtime-only" : false }

Galleon Features

Galleon features are to be used when creating Galleon feature-packs.

• subsystem.elytron.server-ssl-context

          
  <feature spec="subsystem.elytron.server-ssl-context">
    <param name="server-ssl-context" value="{resource name}"/>
    <param name="authentication-optional" value="{value}"/>
    <param name="cipher-suite-filter" value="{value}"/>
    <param name="cipher-suite-names" value="{value}"/>
    <param name="final-principal-transformer" value="{value}"/>
    <param name="key-manager" value="{value}"/>
    <param name="maximum-session-cache-size" value="{value}"/>
    <param name="need-client-auth" value="{value}"/>
    <param name="post-realm-principal-transformer" value="{value}"/>
    <param name="pre-realm-principal-transformer" value="{value}"/>
    <param name="protocols" value="{value}"/>
    <param name="provider-name" value="{value}"/>
    <param name="providers" value="{value}"/>
    <param name="realm-mapper" value="{value}"/>
    <param name="security-domain" value="{value}"/>
    <param name="session-timeout" value="{value}"/>
    <param name="trust-manager" value="{value}"/>
    <param name="use-cipher-suites-order" value="{value}"/>
    <param name="want-client-auth" value="{value}"/>
    <param name="wrap" value="{value}"/>
  <feature/>
          
        

  📋