1. Security System Properties
The following describes security system properties.
1.1. Standard Java SE & Jakarta EETM Security System Properties
The following is a list of Standard Java SE & Jakarta EETM security system properties.
-
java.security.manager
Description
Option to use the Java SE SecurityManager to improve the security of the JEUS server through code protection. The use of this property can hurt JEUS server performance.
By default, SecurityManager is not used by JEUS.
-
jeus.security.enable.default.manager
Description
Prevents the JEUS JVM process from shutting down when System.exit method is called.
If -Djeus.security.enable.default.manager=true is set, the JEUS Security Manager extension of Java Security Manager, not JDK, is applied. The JEUS JVM process does not shut down when System.exit method is called from the application program.
Default
false
-
java.security.policy
Description
Path to the Java SE policy file used by SecurityManager.
Default
JAVA_HOME/lib/security/java.security
-
jakarta.security.jacc.policy.provider
Description
JACC Policy implementation class name.
Default
jeus.security.impl.jacc.JACCPolicyWrapper
-
jakarta.security.jacc.PolicyConfigurationFactory.provider
Description
JACC PolicyConfigurationFactory implementation class name.
Default
jeus.security.impl.jacc.JACCPolicyConfigurationFactoryImpl
1.2. JEUS Security System Properties
The following is a list of JEUS security system properties.
-
jeus.security.enable
Description
Option to install the security server when starting JEUS.
Default
true
-
jeus.security.default.configDir
Description
Configuration root directory used by the security system.
Default
JEUS_HOME/domains/<domain-name>/config/security
-
jeus.security.default.domainName
Description
Default domain name.
Default
SYSTEM_DOMAIN
-
jeus.security.installer.classname
Description
SecurityInstaller implementation class name.
Default
jeus.security.impl.installer.JeusSecurityDomainInstaller
-
jeus.security.jacc.principalRoleMapper
Description
Name of the class that implements jeus.security.impl.aznrep.JACCPrincipalRoleMapper. This class handles principal-role mapping for the JACC Provider.
Default
jeus.security.impl.jacc.JACCDefaultPrincipalRoleMapper
-
jeus.security.keypath
Description
Location of the security.key file.
Default
Configured internally in JEUS.
-
jeus.security.master
Description
Master password.
Default
It is recommended that the master password be inputted into a prompt.
-
jeus.net.logListenPort
Description
Option to generate logs for ports when creating a server socket.
jeus.security.enable.default.manager=true must be set to enable this option.
Default
true
-
jeus.net.logConnectInfo
Description
Option to create logs for the host and port when accessing a socket.
jeus.security.enable.default.manager=true must be set to enable this option.
Default
false
-
jeus.net.logListenStack
Description
Option to create logs for Thread Stack Trace when creating a server socket.
jeus.security.enable.default.manager=true must be set to enable this option.
Default
false
-
jeus.net.logConnectStack
Description
Option to create logs for Thread Stack Trace when accessing a socket.
jeus.security.enable.default.manager=true must be set to enable this option.
Default
false
-
jeus.security.keylength
Description
Key length used for an encryption algorithm such as AES, DES, DESede, SEED, and Blowfish. If the length is set to 256, a 256-bit key is used for an entire system.
Default
256
-
jeus.security.timeout
Description
Duration for the security system to get the response after sending a request. (unit: ms)
Default
20 * 1000
-
jeus.security.jaspic.auth-config-factory
Description
Class name of JASPIC(JSR-196) AuthConfigFactory AuthConfigFactory to use in JEUS.
Default
jeus.servlet.security.jaspic.JEUSAuthConfigFactory
-
jeus.security.authentication.secureMode
Description
Secure authentication mode.
If set to false, the seed value operates as an empty string.
Default
true
-
jeus.security.auth-server-url
Description
Authentication URL that is used for performing authentication in JEUS through an external server.