21.7.6. JBossWS

To disable authentication for JBossWS, comment out the <security-constraint> block in the $JBOSS_HOME/server/PROFILE/deploy/jbossws.sar/jbossws-management.war/WEB-INF/web.xml file as shown in Example 21.13, “JBossWS securite-constraint Commented out”.

Example 21.13. JBossWS securite-constraint Commented out

<!--
<security-constraint>
<web-resource-collection>
<web-resource-name>ContextServlet</web-resource-name>
<description>
An example security config that only allows users with the role 'friend' to access the JBossWS console web application
</description>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>friend</role-name>
</auth-constraint>
</security-constraint>
-->