WildFly 17.0 Model Reference

  1. WildFly 17.0
  2. subsystem=elytron
  3. authentication-configuration

An individual authentication configuration definition.

Provided capabilities(1)

Name Dynamic Other provider points
org.wildfly.security.authentication-configuration true

none

Attributes (14)

  • anonymous Enables anonymous authentication.
    • Attribute Value
    Default Value false
    Type BOOLEAN
    Nillable true
    Expressions Allowed true
    Storage configuration
    Access Type read-write
    Restart Required all-services
  • authentication-name The authentication name to use.
    • Attribute Value
    Type STRING
    Nillable true
    Expressions Allowed true
    Storage configuration
    Access Type read-write
    Restart Required all-services
  • authorization-name The authorization name to use.
    • Attribute Value
    Type STRING
    Nillable true
    Expressions Allowed true
    Storage configuration
    Access Type read-write
    Restart Required all-services
  • credential-reference The reference to credential stored in CredentialStore under defined alias or clear text password.
    • Attribute Value
    Type OBJECT
    Nillable true
    Expressions Allowed false
    Storage configuration
    Access Type read-write
    Restart Required all-services
  • extends A previously defined authentication configuration to extend.
    • Attribute Value
    Capability reference
    Type STRING
    Nillable true
    Expressions Allowed false
    Storage configuration
    Access Type read-write
    Restart Required all-services
  • forwarding-mode The type of security identity forwarding to use. A mode of 'authentication' forwarding forwards the principal and credential. A mode of 'authorization' forwards the authorization id, allowing for a different authentication identity.
    • Attribute Value
    Default Value authentication
    Type STRING
    Nillable true
    Expressions Allowed true
    Storage configuration
    Access Type read-write
    Restart Required all-services
    Allowed Values authentication
    authorization
  • host The host to use.
    • Attribute Value
    Type STRING
    Nillable true
    Expressions Allowed true
    Storage configuration
    Access Type read-write
    Restart Required all-services
  • kerberos-security-factory Reference to a kerberos security factory used to obtain a GSS kerberos credential
    • Attribute Value
    Capability reference
    Type STRING
    Nillable true
    Expressions Allowed false
    Storage configuration
    Access Type read-write
    Restart Required all-services
  • mechanism-properties Configuration properties for the SASL authentication mechanism.
    • Attribute Value
    Type OBJECT
    Nillable true
    Expressions Allowed false
    Storage configuration
    Access Type read-write
    Restart Required all-services
  • port The port to use.
    • Attribute Value
    Type INT
    Nillable true
    Expressions Allowed true
    Storage configuration
    Access Type read-write
    Restart Required all-services
  • protocol The protocol to use.
    • Attribute Value
    Type STRING
    Nillable true
    Expressions Allowed true
    Storage configuration
    Access Type read-write
    Restart Required all-services
  • realm The realm to use.
    • Attribute Value
    Type STRING
    Nillable true
    Expressions Allowed true
    Storage configuration
    Access Type read-write
    Restart Required all-services
  • sasl-mechanism-selector The SASL mechanism selector string.
    • Attribute Value
    Type STRING
    Nillable true
    Expressions Allowed true
    Storage configuration
    Access Type read-write
    Restart Required resource-services
  • security-domain Reference to a security domain to obtain a forwarded identity.
    • Attribute Value
    Capability reference
    Type STRING
    Nillable true
    Expressions Allowed false
    Storage configuration
    Access Type read-write
    Restart Required all-services

Operations (2)

  • add Add a new authentication configuration definition.
    Request Parameter Type Required Expressions Allowed Default value Description
    anonymous BOOLEAN false true false Enables anonymous authentication.
    authentication-name STRING false true The authentication name to use.
    authorization-name STRING false true The authorization name to use.
    credential-reference OBJECT false false The reference to credential stored in CredentialStore under defined alias or clear text password.
    extends STRING false false A previously defined authentication configuration to extend.
    forwarding-mode STRING false true authentication The type of security identity forwarding to use. A mode of 'authentication' forwarding forwards the principal and credential. A mode of 'authorization' forwards the authorization id, allowing for a different authentication identity.
    host STRING false true The host to use.
    kerberos-security-factory STRING false false Reference to a kerberos security factory used to obtain a GSS kerberos credential
    mechanism-properties OBJECT false false Configuration properties for the SASL authentication mechanism.
    port INT false true The port to use.
    protocol STRING false true The protocol to use.
    realm STRING false true The realm to use.
    sasl-mechanism-selector STRING false true The SASL mechanism selector string.
    security-domain STRING false false Reference to a security domain to obtain a forwarded identity.
  • remove Remove the authentication configuration definition.