home *** CD-ROM | disk | FTP | other *** search

---

/ OS/2 Shareware BBS: 35 Internet / 35-Internet.zip / ws5teser.zip / defaultConfiguration.wsc / cells / localhost / security.xml

< prev

next >

Wrap

Extensible Markup Language  |  2002-12-05  |  9KB  |  97 lines

---

1. <?xml version="1.0" encoding="UTF-8"?>
2. <xmi:XMI xmi:version="2.0" xmlns:xmi="http://www.omg.org/XMI" xmlns:security="http://www.ibm.com/websphere/appserver/schemas/5.0/security.xmi" xmlns:ipc="http://www.ibm.com/websphere/appserver/schemas/5.0/ipc.xmi" xmlns:jaaslogin="http://www.ibm.com/websphere/appserver/schemas/5.0/jaaslogin.xmi" xmlns:properties="http://www.ibm.com/websphere/appserver/schemas/5.0/properties.xmi" xmlns:orb.securityprotocol="http://www.ibm.com/websphere/appserver/schemas/5.0/orb.securityprotocol.xmi" xmlns:ipc.ssl="http://www.ibm.com/websphere/appserver/schemas/5.0/ipc.ssl.xmi">
3.   <xmi:Documentation>
4.     <contact>{Your Contact Info}</contact>
5.   </xmi:Documentation>
6.   <security:Security xmi:id="Security_1" useLocalSecurityServer="true" useDomainQualifiedUserNames="false" enabled="false" cacheTimeout="600" issuePermissionWarning="true" activeProtocol="BOTH" enforceJava2Security="false" activeAuthMechanism="SWAMAuthentication_1" activeUserRegistry="LocalOSUserRegistry" defaultSSLSettings="SSLConfig_1">
7.     <authMechanisms xmi:type="security:SWAMAuthentication" xmi:id="SWAMAuthentication_1" OID="No OID for this mechanism" isCredentialForwardable="false" authContextImplClass="com.ibm.ISecurityLocalObjectGSSUPImpl.WSSecurityContext" authConfig="system.SWAM" simpleAuthConfig="system.SWAM" authValidationConfig="system.SWAM"/>
8.     <userRegistries xmi:type="security:LocalOSUserRegistry" xmi:id="LocalOSUserRegistry" serverId="" serverPassword="{xor}" realm=""/>
9.     <userRegistries xmi:type="security:CustomUserRegistry" xmi:id="CustomUserRegistry_1" customRegistryClassName="com.ibm.websphere.security.FileRegistrySample"/>
10.     <userRegistries xmi:type="security:LDAPUserRegistry" xmi:id="LDAPUserRegistry_1" serverId="" serverPassword="{xor}" realm="" ignoreCase="false" type="NETSCAPE" sslEnabled="false" sslConfig="DefaultSSLSettings" baseDN="" bindDN="" bindPassword="" searchTimeout="300" reuseConnection="true">
11.       <searchFilter xmi:id="LDAPSearchFilter_1" userFilter="(&(uid=%v)(objectclass=inetOrgPerson))" groupFilter="(&(cn=%v)(|(objectclass=groupOfNames)(objectclass=groupOfUniqueNames)))" userIdMap="inetOrgPerson:uid" groupIdMap="*:cn" groupMemberIdMap="groupOfNames:member;groupOfUniqueNames:uniqueMember" certificateMapMode="EXACT_DN" certificateFilter=""/>
12.       <hosts xmi:id="EndPoint_1" host="" port="389"/>
13.     </userRegistries>
14.     <applicationLoginConfig xmi:id="JAASConfiguration_1">
15.       <entries xmi:id="JAASConfigurationEntry_1" alias="ClientContainer">
16.         <loginModules xmi:id="JAASLoginModule_1" moduleClassName="com.ibm.ws.security.common.auth.module.proxy.WSLoginModuleProxy" authenticationStrategy="REQUIRED">
17.           <options xmi:id="Property_1" name="delegate" value="com.ibm.ws.security.common.auth.module.WSClientLoginModuleImpl"/>
18.         </loginModules>
19.       </entries>
20.       <entries xmi:id="JAASConfigurationEntry_2" alias="WSLogin">
21.         <loginModules xmi:id="JAASLoginModule_2" moduleClassName="com.ibm.ws.security.common.auth.module.proxy.WSLoginModuleProxy" authenticationStrategy="REQUIRED">
22.           <options xmi:id="Property_2" name="delegate" value="com.ibm.ws.security.common.auth.module.WSLoginModuleImpl"/>
23.         </loginModules>
24.       </entries>
25.       <entries xmi:id="JAASConfigurationEntry_3" alias="DefaultPrincipalMapping">
26.         <loginModules xmi:id="JAASLoginModule_3" moduleClassName="com.ibm.ws.security.common.auth.module.proxy.WSLoginModuleProxy" authenticationStrategy="REQUIRED">
27.           <options xmi:id="Property_3" name="delegate" value="com.ibm.ws.security.auth.j2c.WSPrincipalMappingLoginModule"/>
28.         </loginModules>
29.       </entries>
30.     </applicationLoginConfig>
31.     <CSI xmi:id="IIOPSecurityProtocol_1">
32.       <claims xmi:type="orb.securityprotocol:CommonSecureInterop" xmi:id="CSIv2 Inbound Configuration" stateful="true">
33.         <layers xmi:type="orb.securityprotocol:IdentityAssertionLayer" xmi:id="IdentityAssertionLayer_1">
34.           <supportedQOP xmi:type="orb.securityprotocol:IdentityAssertionQOP" xmi:id="IdentityAssertionQOP_1" enable="false"/>
35.         </layers>
36.         <layers xmi:type="orb.securityprotocol:MessageLayer" xmi:id="MessageLayer_1">
37.           <supportedQOP xmi:type="orb.securityprotocol:MessageQOP" xmi:id="MessageQOP_1" establishTrustInClient="true"/>
38.           <requiredQOP xmi:type="orb.securityprotocol:MessageQOP" xmi:id="MessageQOP_2" establishTrustInClient="false"/>
39.         </layers>
40.         <layers xmi:type="orb.securityprotocol:TransportLayer" xmi:id="TransportLayer_1">
41.           <supportedQOP xmi:type="orb.securityprotocol:TransportQOP" xmi:id="TransportQOP_1" establishTrustInClient="false" enableProtection="true" confidentiality="true" integrity="true"/>
42.           <requiredQOP xmi:type="orb.securityprotocol:TransportQOP" xmi:id="TransportQOP_2" establishTrustInClient="false" enableProtection="false" confidentiality="false" integrity="true"/>
43.           <serverAuthentication xmi:id="IIOPTransport_1" sslConfig="DefaultSSLSettings"/>
44.         </layers>
45.       </claims>
46.       <performs xmi:type="orb.securityprotocol:CommonSecureInterop" xmi:id="CSIv2 Outbound Configuration" stateful="true" sessionGCInterval="300000" sessionGCIdleTime="900000">
47.         <layers xmi:type="orb.securityprotocol:IdentityAssertionLayer" xmi:id="IdentityAssertionLayer_2">
48.           <supportedQOP xmi:type="orb.securityprotocol:IdentityAssertionQOP" xmi:id="IdentityAssertionQOP_2" enable="false"/>
49.           <requiredQOP xmi:type="orb.securityprotocol:IdentityAssertionQOP" xmi:id="IdentityAssertionQOP_3" enable="false"/>
50.         </layers>
51.         <layers xmi:type="orb.securityprotocol:MessageLayer" xmi:id="MessageLayer_2" authenticationLayerRetryCount="3">
52.           <supportedQOP xmi:type="orb.securityprotocol:MessageQOP" xmi:id="MessageQOP_3" establishTrustInClient="true"/>
53.           <requiredQOP xmi:type="orb.securityprotocol:MessageQOP" xmi:id="MessageQOP_4" establishTrustInClient="false"/>
54.         </layers>
55.         <layers xmi:type="orb.securityprotocol:TransportLayer" xmi:id="TransportLayer_2">
56.           <supportedQOP xmi:type="orb.securityprotocol:TransportQOP" xmi:id="TransportQOP_3" establishTrustInClient="false" enableProtection="true" confidentiality="true" integrity="true"/>
57.           <requiredQOP xmi:type="orb.securityprotocol:TransportQOP" xmi:id="TransportQOP_4" establishTrustInClient="false" enableProtection="false" confidentiality="false" integrity="true"/>
58.           <serverAuthentication xmi:id="IIOPTransport_2" sslConfig="DefaultSSLSettings"/>
59.         </layers>
60.       </performs>
61.     </CSI>
62.     <IBM xmi:id="IIOPSecurityProtocol_2">
63.       <claims xmi:type="orb.securityprotocol:SecureAssociationService" xmi:id="SecureAssociationService_1">
64.         <layers xmi:type="orb.securityprotocol:TransportLayer" xmi:id="TransportLayer_3">
65.           <supportedQOP xmi:type="orb.securityprotocol:TransportQOP" xmi:id="TransportQOP_5" enableProtection="true" confidentiality="true" integrity="true"/>
66.           <serverAuthentication xmi:id="IIOPTransport_3" sslConfig="DefaultSSLSettings"/>
67.         </layers>
68.       </claims>
69.       <performs xmi:type="orb.securityprotocol:SecureAssociationService" xmi:id="SecureAssociationService_2">
70.         <layers xmi:type="orb.securityprotocol:TransportLayer" xmi:id="TransportLayer_4">
71.           <supportedQOP xmi:type="orb.securityprotocol:TransportQOP" xmi:id="TransportQOP_6" enableProtection="true" confidentiality="false" integrity="false"/>
72.           <serverAuthentication xmi:id="IIOPTransport_4" sslConfig="DefaultSSLSettings"/>
73.         </layers>
74.       </performs>
75.     </IBM>
76.     <repertoire xmi:id="SSLConfig_1" alias="DefaultSSLSettings">
77.       <setting xmi:id="DefaultSSLSettings" keyFileName="${USER_INSTALL_ROOT}/etc/DummyServerKeyFile.jks" keyFilePassword="{xor}CDo9Hgw=" keyFileFormat="JKS" trustFileName="${USER_INSTALL_ROOT}/etc/DummyServerTrustFile.jks" trustFilePassword="{xor}CDo9Hgw=" trustFileFormat="JKS" clientAuthentication="false" securityLevel="HIGH" enableCryptoHardwareSupport="false">
78.         <cryptoHardware xmi:id="CryptoHardwareToken_1" tokenType="" libraryFile="" password="{xor}"/>
79.         <properties xmi:id="Property_4" name="com.ibm.ssl.protocol" value="SSLv3"/>
80.         <properties xmi:id="Property_5" name="com.ibm.ssl.contextProvider" value="IBMJSSE"/>
81.       </setting>
82.     </repertoire>
83.     <systemLoginConfig xmi:id="JAASConfiguration_2">
84.       <entries xmi:id="JAASConfigurationEntry_4" alias="SWAM">
85.         <loginModules xmi:id="JAASLoginModule_4" moduleClassName="com.ibm.ws.security.common.auth.module.proxy.WSLoginModuleProxy" authenticationStrategy="REQUIRED">
86.           <options xmi:id="Property_6" name="delegate" value="com.ibm.ws.security.server.lm.swamLoginModule"/>
87.         </loginModules>
88.       </entries>
89.       <entries xmi:id="JAASConfigurationEntry_5" alias="LTPA">
90.         <loginModules xmi:id="JAASLoginModule_5" moduleClassName="com.ibm.ws.security.common.auth.module.proxy.WSLoginModuleProxy" authenticationStrategy="REQUIRED">
91.           <options xmi:id="Property_7" name="delegate" value="com.ibm.ws.security.server.lm.ltpaLoginModule"/>
92.         </loginModules>
93.       </entries>
94.     </systemLoginConfig>
95.   </security:Security>
96. </xmi:XMI>
97.