...
| Code Block |
|---|
<plugins>
<plugin java_class="com.sos.scheduler.engine.plugins.jetty.JettyPlugin">
<plugin.config>
<loginService>
<logins>
<login name="testName" password="testPassword" roles="administratorSecurityLevel.all"/>
</logins>
</loginService>
</logins>
</loginService>
/plugin.config>
</plugin>
</plugins>
|
SecurityLevel.info and SecurityLevel.all are predefined roles for JobScheduler.
SecurityLevel.info allows only rights for watching but not for starting jobs, while SecurityLevel.all allows additionally the right for starting jobs.
Add a security constraint to the web.xml:
| Code Block |
|---|
<security-constraint> <web-resource-collection> <url-pattern>/*</url-pattern> </web-resource-collection> <auth-constraint> <role-name>SecurityLevel.info</role-name> <role-name>SecurityLevel.all</role-name> </plugin.config>auth-constraint> </plugin> </plugins>security-constraint> |
</span>
<span id"jetty">
Configure jetty.xml
...
The properties file config/realm.properties contains one or more user definitions, e.g.
| Code Block |
|---|
testuser: test, admin infouser: test, SecurityLevel.info alluser: test, SecurityLevel.all |
Please note: In realm.properties you can specify the password like
| Code Block |
|---|
testuseralluser: MD5:098f6bcd4621d373cade4e832627b4f6, adminSecurityLevel.all |
Hint: You can use the MD5 Key generated by JOE but you have to change it to lowercase.
...
| Code Block |
|---|
<security-constraint>
<web-resource-collection>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>admin</role-name>
<role-name>SecurityLevel.info</role-name>
<role-name>SecurityLevel.all</role-name>
</auth-constraint>
</security-constraint>
|
...