For more information about using the sample configuration file, see Downloading and running the IBM® JGSS samples.
Note: Read the Code example disclaimer for important legal information.
/**
* ---------------------------------------------------------------------------------
* JAAS Login Configuration for the JGSS samples.
* ---------------------------------------------------------------------------------
*
* Code example disclaimer
* IBM grants you a nonexclusive copyright license to use all programming code
* examples from which you can generate similar function tailored to your own
* specific needs.
* All sample code is provided by IBM for illustrative purposes only.
* These examples have not been thoroughly tested under all conditions.
* IBM, therefore, cannot guarantee or imply reliability, serviceability, or
* function of these programs.
* All programs contained herein are provided to you "AS IS" without any
* warranties of any kind.
* The implied warranties of non-infringement, merchantability and fitness
* for a particular purpose are expressly disclaimed.
*
*
* Supported options:
* principal=<string>
* credsType=initiator|acceptor|both (default=initiator)
* forwardable=true|false (default=false)
* proxiable=true|false (default=false)
* useCcache=<URL_string>
* useKeytab=<URL_string>
* useDefaultCcache=true|false (default=false)
* useDefaultKeytab=true|false (default=false)
* noAddress=true|false (default=false)
*
* Default realm (which is obtained from the Kerberos config file) is
* used if the principal specified does not include a realm component.
*/
JAASClient {
com.ibm.security.auth.module.Krb5LoginModule required
useDefaultCcache=true;
};
JAASServer {
com.ibm.security.auth.module.Krb5LoginModule required
credsType=acceptor useDefaultKeytab=true
principal=gss_service/myhost.ibm.com@REALM.IBM.COM;
};