infinispan-cere
Version:
Infinispan Javascript client
177 lines (173 loc) • 7.95 kB
text/xml
<host xmlns="urn:jboss:domain:4.2" name="master">
<extensions>
<extension module="org.jboss.as.jmx"/>
</extensions>
<management>
<security-realms>
<security-realm name="ManagementRealm">
<authentication>
<local default-user="$local" skip-group-loading="true"/>
<properties path="mgmt-users.properties" relative-to="jboss.domain.config.dir"/>
</authentication>
<authorization map-groups-to-roles="false">
<properties path="mgmt-groups.properties" relative-to="jboss.domain.config.dir"/>
</authorization>
</security-realm>
<security-realm name="ApplicationRealm">
<authentication>
<local default-user="$local" allowed-users="*" skip-group-loading="true"/>
<properties path="application-users.properties" relative-to="jboss.domain.config.dir"/>
<!-- JS MOD :: START :: add truststore -->
<truststore path="ca.jks" relative-to="jboss.domain.config.dir" keystore-password="secret"/>
<!-- JS MOD :: END -->
</authentication>
<authorization>
<properties path="application-roles.properties" relative-to="jboss.domain.config.dir"/>
</authorization>
<!-- JS MOD :: START :: add server identities (required if using truststore) -->
<server-identities>
<ssl>
<keystore path="server.jks" relative-to="jboss.domain.config.dir" keystore-password="secret"/>
</ssl>
</server-identities>
<!-- JS MOD :: END -->
</security-realm>
<!-- JS MOD :: START :: add trusted and untrusted realms -->
<security-realm name="Trust1Realm">
<server-identities>
<ssl>
<keystore path="trust1.jks" relative-to="jboss.domain.config.dir" keystore-password="secret"/>
</ssl>
</server-identities>
</security-realm>
<security-realm name="Trust2Realm">
<server-identities>
<ssl>
<keystore path="trust2.jks" relative-to="jboss.domain.config.dir" keystore-password="secret"/>
</ssl>
</server-identities>
</security-realm>
<security-realm name="UntrustRealm">
<server-identities>
<ssl>
<keystore path="untrust.jks" relative-to="jboss.domain.config.dir" keystore-password="secret"/>
</ssl>
</server-identities>
</security-realm>
<!-- JS MOD :: END -->
</security-realms>
<audit-log>
<formatters>
<json-formatter name="json-formatter"/>
</formatters>
<handlers>
<file-handler name="host-file" formatter="json-formatter" relative-to="jboss.domain.data.dir" path="audit-log.log"/>
<file-handler name="server-file" formatter="json-formatter" relative-to="jboss.server.data.dir" path="audit-log.log"/>
</handlers>
<logger log-boot="true" log-read-only="false" enabled="false">
<handlers>
<handler name="host-file"/>
</handlers>
</logger>
<server-logger log-boot="true" log-read-only="false" enabled="false">
<handlers>
<handler name="server-file"/>
</handlers>
</server-logger>
</audit-log>
<management-interfaces>
<native-interface security-realm="ManagementRealm">
<socket interface="management" port="${jboss.management.native.port:9999}"/>
</native-interface>
<http-interface security-realm="ManagementRealm" http-upgrade-enabled="true">
<socket interface="management" port="${jboss.management.http.port:9990}"/>
</http-interface>
</management-interfaces>
</management>
<domain-controller>
<local/>
<!-- Alternative remote domain controller configuration with a host and port -->
<!-- <remote protocol="remote" host="${jboss.domain.master.address}" port="${jboss.domain.master.port:9999}" security-realm="ManagementRealm"/> -->
</domain-controller>
<interfaces>
<interface name="management">
<inet-address value="${jboss.bind.address.management:127.0.0.1}"/>
</interface>
<interface name="public">
<inet-address value="${jboss.bind.address:127.0.0.1}"/>
</interface>
<interface name="unsecure">
<!--
~ Used for IIOP sockets in the standard configuration.
~ To secure JacORB you need to setup SSL
-->
<inet-address value="${jboss.bind.address.unsecure:127.0.0.1}"/>
</interface>
</interfaces>
<jvms>
<jvm name="default">
<heap size="64m" max-size="256m"/>
<jvm-options>
<option value="-server"/>
<!--<option value="-Djavax.net.debug=ssl,handshake"/>-->
</jvm-options>
</jvm>
</jvms>
<servers>
<!-- JS MOD :: START :: add server-local -->
<server name="server-local" group="local" auto-start="true">
</server>
<!-- JS MOD :: END -->
<server name="server-one" group="cluster">
<!--
~ Remote JPDA debugging for a specific server
~ <jvm name="default">
~ <jvm-options>
~ <option value="-agentlib:jdwp=transport=dt_socket,address=8787,server=y,suspend=n"/>
~ </jvm-options>
~ </jvm>
~
-->
<!-- JS MOD :: START :: add port offset 100 -->
<socket-bindings port-offset="100"/>
<!-- JS MOD :: END -->
</server>
<server name="server-two" group="cluster" auto-start="true">
<!--
~ server-two avoids port conflicts by incrementing the ports in
~ the default socket-group declared in the server-group
-->
<!-- JS MOD :: START :: change port offset to 110 -->
<socket-bindings port-offset="110"/>
<!-- JS MOD :: END -->
</server>
<!-- JS MOD :: START :: add servers -->
<server name="server-three" group="cluster" auto-start="true">
<socket-bindings port-offset="120"/>
</server>
<server name="server-failover-one" group="failover" auto-start="true">
<socket-bindings port-offset="200"/>
</server>
<server name="server-failover-two" group="failover" auto-start="false">
<socket-bindings port-offset="210"/>
</server>
<server name="server-failover-three" group="failover" auto-start="false">
<socket-bindings port-offset="220"/>
</server>
<server name="server-earth-one" group="earthlings" auto-start="false">
<socket-bindings port-offset="300"/>
</server>
<server name="server-moon-one" group="mooners" auto-start="false">
<socket-bindings port-offset="310"/>
</server>
<!-- JS MOD :: END -->
</servers>
<profile>
<subsystem xmlns="urn:jboss:domain:jmx:1.3">
<expose-resolved-model/>
<expose-expression-model/>
<remoting-connector/>
</subsystem>
</profile>
</host>