Details
Description
Currently there can really only be one GeronimoLoginConfiguration and it finds out about all security realms. There are several uses for additional Configuration instances and for excluding security realms from the "default" GeronimoLoginConfiguration:
- run-as and default subject support require securiy realms to create the subjects. You might want these security realms to be only accessible through CredentialStore instances and not externally: this allows setting up privileged Subjects without a password.
- jaspi auth modules can use JAAS by supplying a Configuration instance. This will allows use of the GeronimoLoginConfiguration here.