maguro 2005/10/27 15:10:13
Modified: modules/itests/src/scenarios/001 openejb-jar.xml
Log:
Updated configurations to handle realm->login-domain->principal hierarchy.
Revision Changes Path
1.14 +9 -19 openejb/modules/itests/src/scenarios/001/openejb-jar.xml
Index: openejb-jar.xml
===================================================================
RCS file:
/scm/openejb/openejb/modules/itests/src/scenarios/001/openejb-jar.xml,v
retrieving revision 1.13
retrieving revision 1.14
diff -u -r1.13 -r1.14
--- openejb-jar.xml 28 Sep 2005 22:14:24 -0000 1.13
+++ openejb-jar.xml 27 Oct 2005 19:10:13 -0000 1.14
@@ -2,7 +2,7 @@
<openejb-jar
xmlns="http://www.openejb.org/xml/ns/openejb-jar-2.0";
- xmlns:sec="http://geronimo.apache.org/xml/ns/security-1.0";
+ xmlns:sec="http://geronimo.apache.org/xml/ns/security-1.1";
configId="org/openejb/scenario001"
parentId="org/openejb/Security">
@@ -92,39 +92,29 @@
</enterprise-beans>
<sec:security default-role="UNASSIGNED" doas-current-caller="true">
- <sec:default-principal realm-name="public-properties-realm">
+ <sec:default-principal>
<sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoUserPrincipal"
name="guest"/>
</sec:default-principal>
<sec:role-mappings>
<sec:role role-name="UNASSIGNED">
- <sec:realm realm-name="public-properties-realm">
- <sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoUserPrincipal"
name="guest" designated-run-as="true"/>
- </sec:realm>
+ <sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoUserPrincipal"
name="guest" designated-run-as="true"/>
</sec:role>
<sec:role role-name="LOW">
- <sec:realm realm-name="public-properties-realm">
- <sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoGroupPrincipal"
name="acct" designated-run-as="true"/>
- </sec:realm>
+ <sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoGroupPrincipal"
name="acct" designated-run-as="true"/>
<sec:distinguished-name name="CN=Duke, OU=Java Software,
O=Sun Microsystems\, Inc., L=Palo Alto, ST=CA, C=US"/>
</sec:role>
<sec:role role-name="MEDIUM">
- <sec:realm realm-name="public-properties-realm">
- <sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoGroupPrincipal"
name="it"/>
- <sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoUserPrincipal"
name="george" designated-run-as="true"/>
- </sec:realm>
+ <sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoGroupPrincipal"
name="it"/>
+ <sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoUserPrincipal"
name="george" designated-run-as="true"/>
</sec:role>
<sec:role role-name="HIGH">
- <sec:realm realm-name="public-properties-realm">
- <sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoGroupPrincipal"
name="mgmt" designated-run-as="true"/>
- </sec:realm>
- <sec:realm realm-name="black-properties-realm">
- <sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoUserPrincipal"
name="dain"/>
- <sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoUserPrincipal"
name="david"/>
- </sec:realm>
+ <sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoGroupPrincipal"
name="mgmt" designated-run-as="true"/>
+ <sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoUserPrincipal"
name="dain"/>
+ <sec:principal
class="org.apache.geronimo.security.realm.providers.GeronimoUserPrincipal"
name="david"/>
</sec:role>
</sec:role-mappings>
</sec:security>
