Details
Description
In production you want to replace the toy properties login realm with something else such as an ldap realm. However the admin console has a hardwired dependency on the properties-login gbean.
We should make the reference from PropertiesLoginManager multi-valued and scan through it for properties login modules so you can edit any such properties files.
Workaround for replacing server-security-config with something with a real security realm is to include the properties login module as a dummy, not used in a security realm:
<!-- bug workaround -->
<gbean name="properties-login"
class="org.apache.geronimo.security.jaas.LoginModuleGBean">
<attribute name="loginModuleClass">org.apache.geronimo.security.realm.providers.PropertiesFileLoginModule</attribute>
<attribute name="options">
usersURI=var/security/users.properties
groupsURI=var/security/groups.properties
</attribute>
<attribute name="loginDomainName">geronimo-admin</attribute>
</gbean>