Description
Configuration of a single path security setup.
Usages
Configuration options
| Key | Kind | Type | Description |
|---|
audit | VALUE | Boolean | Whether to audit this request - defaults to false, if enabled, request is audited with event type "request" |
audit-event-type | VALUE | String | Override for event-type, defaults to SecurityHandler#DEFAULT_AUDIT_EVENT_TYPE |
audit-message-format | VALUE | String | Override for audit message format, defaults to SecurityHandler#DEFAULT_AUDIT_MESSAGE_FORMAT |
authenticate | VALUE | Boolean | If called, request will go through authentication process - defaults to false (even if authorize is true) |
authentication-optional | VALUE | Boolean | If called, authentication failure will not abort request and will continue as anonymous (defaults to false) |
authenticator | VALUE | String | Use a named authenticator (as supported by security - if not defined, default authenticator is used) |
authorize | VALUE | Boolean | Enable authorization for this route |
authorizer | VALUE | String | Use a named authorizer (as supported by security - if not defined, default authorizer is used, if none defined, all is permitted) |
methods | LIST | i.h.w.s.S.PathConfigCustomMethods | HTTP methods to match when applying this configured path |
path | VALUE | String | Path to secure |
roles-allowed | LIST | String | An array of allowed roles for this path - must have a security provider supporting roles (either authentication or authorization provider) |
sockets | LIST | String | List of sockets this configuration should be applied to |
See the manifest for all available types.