Pointers or Example standalone XML for Database Auth

17 views
Skip to first unread message

Holger

unread,
Jul 15, 2024, 6:15:54 AMJul 15
to WildFly
Hi, again with a (likely) basic problem.
I was hoping someone could provide an Example or parts of a standalone(-full).xml with a configured JDBC config.
I have to create an authentication/authorisation scheme from an existing Database.
Up to this point i had used basic auth against user created with the add-users.bat.
What i did was to create an aggregate Realm:
<aggregate-realm name="sec-policy" authentication-realm="DB_SEC_JDBC_REALM" authorization-realm="DB_SEC_JDBC_REALM"/>
Added the JDBC Realm with a combined query and mapping:
<jdbc-realm name="DB_SEC_JDBC_REALM">
                    <principal-query sql="SELECT u.username, r.rolle, u.password FROM user u  JOIN rolle r ON r.user_id = u.id" data-source="Test_DB">
                        <attribute-mapping>
                            <attribute to="User" index="1"/>
                            <attribute to="Roles" index="2"/>
                        </attribute-mapping>
                        <simple-digest-mapper password-index="3"/>
                    </principal-query>
                </jdbc-realm>

But i still have the identity realm for the local user
<identity-realm name="local" identity="$local"/>
This I'd want to be removed an require auth even from local users.

I'm sure I missing information, but the documentation at https://docs.wildfly.org/27/WildFly_Elytron_Security.html#comparing-legacy-approaches-to-elytron-approaches does not help me much as I am not seeing what I'm missing.
Thanks once again for reading.

Reply all
Reply to author
Forward
0 new messages