Management API Reference for subsystem=security

The configuration of the security subsystem.

Deprecated Since 1.3.0

The Security subsystem is deprecated and may be removed, significantly revised, or limited to managed domain legacy server use in future versions.

Children (7)

Provided Capabilities (3)

Name	Dynamic	Other provider points
org.wildfly.legacy-security.server-security-manager	false	none
org.wildfly.legacy-security.subject-factory	false	none
org.wildfly.legacy-security	false	none

Attributes (2)

deep-copy-subject-mode - Sets the copy mode of subjects done by the security managers to be deep copies that makes copies of the subject principals and credentials if they are cloneable. It should be set to true if subject include mutable content that can be corrupted when multiple threads have the same identity and cache flushes/logout clearing the subject in one thread results in subject references affecting other threads.

Type	BOOLEAN
Default Value	false
Is the attribute nillable?	true
Does the attribute allow expression?	true
Where is the attribute stored?	configuration
Access Type	read-write
Is restarted required?	no-services
Stability Level	default
Raw DMR model	{ "type" : { "TYPE_MODEL_VALUE" : "BOOLEAN" }, "description" : "Sets the copy mode of subjects done by the security managers to be deep copies that makes copies of the subject principals and credentials if they are cloneable. It should be set to true if subject include mutable content that can be corrupted when multiple threads have the same identity and cache flushes/logout clearing the subject in one thread results in subject references affecting other threads.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : false, "stability" : "default", "access-constraints" : {"sensitive" : {"misc-security" : {"type" : "security"}}}, "access-type" : "read-write", "storage" : "configuration", "restart-required" : "no-services", "capability-reference" : null }

initialize-jacc - Indicates if this subsystem should be in charge of initializing Jakarta Authorization related services.

Type	BOOLEAN
Default Value	true
Is the attribute nillable?	true
Does the attribute allow expression?	true
Where is the attribute stored?	configuration
Access Type	read-write
Is restarted required?	jvm
Stability Level	default
Raw DMR model	`{ "type" : { "TYPE_MODEL_VALUE" : "BOOLEAN" }, "description" : "Indicates if this subsystem should be in charge of initializing Jakarta Authorization related services.", "expressions-allowed" : true, "required" : false, "nillable" : true, "default" : true, "stability" : "default", "access-type" : "read-write", "storage" : "configuration", "restart-required" : "jvm", "capability-reference" : null }`

Operations (2)

add - Adds the security subsystem.

Request Parameter	Type	Required	Expressions Allowed	Default value	Description
deep-copy-subject-mode	BOOLEAN	false	true	false	Sets the copy mode of subjects done by the security managers to be deep copies that makes copies of the subject principals and credentials if they are cloneable. It should be set to true if subject include mutable content that can be corrupted when multiple threads have the same identity and cache flushes/logout clearing the subject in one thread results in subject references affecting other threads.
initialize-jacc	BOOLEAN	false	true	true	Indicates if this subsystem should be in charge of initializing Jakarta Authorization related services.

Raw DMR model


{
    "operation-name" : "add",
    "description" : "Adds the security subsystem.",
    "request-properties" : {
        "deep-copy-subject-mode" : {
            "type" : {
                "TYPE_MODEL_VALUE" : "BOOLEAN"
            },
            "description" : "Sets the copy mode of subjects done by the security managers to be deep copies that makes copies of the subject principals and credentials if they are cloneable. It should be set to true if subject include mutable content that can be corrupted when multiple threads have the same identity and cache flushes/logout clearing the subject in one thread results in subject references affecting other threads.",
            "expressions-allowed" : true,
            "required" : false,
            "nillable" : true,
            "default" : false,
            "stability" : "default"
        },
        "initialize-jacc" : {
            "type" : {
                "TYPE_MODEL_VALUE" : "BOOLEAN"
            },
            "description" : "Indicates if this subsystem should be in charge of initializing Jakarta Authorization related services.",
            "expressions-allowed" : true,
            "required" : false,
            "nillable" : true,
            "default" : true,
            "stability" : "default"
        }
    },
    "reply-properties" : {},
    "stability" : "default",
    "read-only" : false,
    "runtime-only" : false
}

remove - Removes the security subsystem.

Raw DMR model


{
    "operation-name" : "remove",
    "description" : "Removes the security subsystem.",
    "request-properties" : {},
    "reply-properties" : {},
    "stability" : "default",
    "read-only" : false,
    "restart-required" : "all-services",
    "runtime-only" : false
}

Galleon Features

Galleon features are to be used when creating Galleon feature-packs.

subsystem.security

        
<feature spec="subsystem.security">
  <param name="deep-copy-subject-mode" value="{value}"/>
  <param name="initialize-jacc" value="{value}"/>
<feature/>