USER {
- org.argeo.security.login.EndUserLoginModule requisite;
- org.springframework.security.authentication.jaas.SecurityContextLoginModule requisite;
+ org.argeo.cms.auth.HttpSessionLoginModule sufficient;
+ org.argeo.cms.auth.SpnegoLoginModule optional;
+ com.sun.security.auth.module.Krb5LoginModule optional;
+ org.argeo.cms.auth.UserAdminLoginModule sufficient;
};
ANONYMOUS {
- org.argeo.security.login.AnonymousLoginModule requisite;
- org.springframework.security.authentication.jaas.SecurityContextLoginModule requisite;
+ org.argeo.cms.auth.HttpSessionLoginModule sufficient;
+ org.argeo.cms.auth.AnonymousLoginModule sufficient;
};
-SYSTEM {
- org.argeo.security.login.SystemLoginModule requisite;
- org.springframework.security.authentication.jaas.SecurityContextLoginModule requisite;
+DATA_ADMIN {
+ org.argeo.cms.auth.DataAdminLoginModule requisite;
+};
+
+NODE {
+ com.sun.security.auth.module.Krb5LoginModule optional
+ keyTab="${osgi.instance.area}node/krb5.keytab"
+ useKeyTab=true
+ storeKey=true
+ debug=true;
+ org.argeo.cms.auth.DataAdminLoginModule requisite;
};
KEYRING {
- org.argeo.security.crypto.KeyringLoginModule required;
+ org.argeo.cms.auth.KeyringLoginModule required;
+};
+
+SINGLE_USER {
+ com.sun.security.auth.module.Krb5LoginModule optional
+ principal="${user.name}"
+ storeKey=true
+ useTicketCache=true
+ debug=true;
+ org.argeo.cms.auth.SingleUserLoginModule requisite;
+};
+
+Jackrabbit {
+ org.argeo.security.jackrabbit.SystemJackrabbitLoginModule requisite;
};