Configure the java.security file for your server
The java.security is located under the ${java.home}/lib/security/ directory.- search the 'policy.provider' string:
comment (with a '#' at the start of the line) the current line and add this one just below:
policy.provider=net.sf.jguard.security.JGuardPolicy
-
search the 'login.config.url' string:
comment (with a '#' at the start of the line) the current line(s) and add this one just below :
login.config.url.1=file:${java.home}/lib/security/jGuard.loginScheme
note that you can let uncommented your initial 'login.config.url.x' lines,
if these lines should not concern jGuard protected applications.
TIPS:- To preserve others applications, jGuard acts as a 'wrapper' for Policy operations which do not concerns webapp security. so you can let jGuard configure automatically at webapp startup, the system java Policy. In this case, jGuard will not control at the application server startup the security, but only when the first webapp with AccessFilter starts.
-
the 'login.config.url' can be configured too, via a command-line argument when application server starts (not experimented yet):
-Djava.security.auth.login.config.url.1=file:${java.home}/lib/security/jGuard.loginScheme