[JBPAPP-5568] Add clientAuth option to JaasSecurityDomain - JBoss Issue Tracker

XML

Word

Printable

Release Notes Text:

Hide
The JBossWS configuration management layer could not reference a JaasSecurityDomain JNDI name, which also prevented the JBossWS security layer from accessing keystores and truststores normally exposed by the Security Domain.
The JBossWS management and security layers were updated to permit alternate jboss-wsse-server.xml and jboss-wsse-client.xml files. The alternate XML files allow a JaasSecurityDomain JNDI name to be specified. The keystores and truststores for the security domain are exposed, providing greater security for JBossWS transactions.

Show
The JBossWS configuration management layer could not reference a JaasSecurityDomain JNDI name, which also prevented the JBossWS security layer from accessing keystores and truststores normally exposed by the Security Domain. The JBossWS management and security layers were updated to permit alternate jboss-wsse-server.xml and jboss-wsse-client.xml files. The alternate XML files allow a JaasSecurityDomain JNDI name to be specified. The keystores and truststores for the security domain are exposed, providing greater security for JBossWS transactions.
Release Notes Docs Status:
Documented as Resolved Issue

We need this option to centralize client authentication with socket factories that use a JSD.