Configuration

swarm.cdi.development-mode

Weld comes with a special mode for application development. When the development mode is enabled, certain built-in tools, which facilitate the development of CDI applications, are available. Setting this attribute to true activates the development mode.

swarm.cdi.non-portable-mode

If true then the non-portable mode is enabled. The non-portable mode is suggested by the specification to overcome problems with legacy applications that do not use CDI SPI properly and may be rejected by more strict validation in CDI 1.1.

swarm.cdi.require-bean-descriptor

If true then implicit bean archives without bean descriptor file (beans.xml) are ignored by Weld

swarm.cdi.thread-pool-size

The number of threads to be used by the Weld thread pool. The pool is shared across all CDI-enabled deployments and used primarily for parallel Weld bootstrap.

Configuration

swarm.ee.annotation-property-replacement

Flag indicating whether Java EE annotations will have property replacements applied

swarm.ee.context-services.KEY.jndi-name

The JNDI Name to lookup the context service.

swarm.ee.context-services.KEY.use-transaction-setup-provider

Flag which indicates if the transaction setup provider should be used

swarm.ee.default-bindings-service.context-service

The JNDI name where the default EE Context Service can be found

swarm.ee.default-bindings-service.datasource

The JNDI name where the default EE Datasource can be found

swarm.ee.default-bindings-service.jms-connection-factory

The JNDI name where the default EE JMS Connection Factory can be found

swarm.ee.default-bindings-service.managed-executor-service

The JNDI name where the default EE Managed Executor Service can be found

swarm.ee.default-bindings-service.managed-scheduled-executor-service

The JNDI name where the default EE Managed Scheduled Executor Service can be found

swarm.ee.default-bindings-service.managed-thread-factory

The JNDI name where the default EE Managed Thread Factory can be found

swarm.ee.ear-subdeployments-isolated

Flag indicating whether each of the subdeployments within a .ear can access classes belonging to another subdeployment within the same .ear. A value of false means the subdeployments can see classes belonging to other subdeployments within the .ear.

swarm.ee.global-modules

A list of modules that should be made available to all deployments.

swarm.ee.jboss-descriptor-property-replacement

Flag indicating whether JBoss specific deployment descriptors will have property replacements applied

swarm.ee.managed-executor-services.KEY.context-service

The name of the context service to be used by the executor.

swarm.ee.managed-executor-services.KEY.core-threads

The minimum number of threads to be used by the executor. If left undefined the default core-size is calculated based on the number of processors. A value of zero is not advised and in some cases invalid. See the queue-length attribute for details on how this value is used to determine the queuing strategy.

swarm.ee.managed-executor-services.KEY.hung-task-threshold

The runtime, in milliseconds, for tasks to be considered hung by the managed executor service. If value is 0 tasks are never considered hung.

swarm.ee.managed-executor-services.KEY.jndi-name

The JNDI Name to lookup the managed executor service.

swarm.ee.managed-executor-services.KEY.keepalive-time

When the number of threads is greater than the core, this is the maximum time, in milliseconds, that excess idle threads will wait for new tasks before terminating.

swarm.ee.managed-executor-services.KEY.long-running-tasks

Flag which hints the duration of tasks executed by the executor.

swarm.ee.managed-executor-services.KEY.max-threads

The maximum number of threads to be used by the executor. If left undefined the value from core-size will be used. This value is ignored if an unbounded queue is used (only core-threads will be used in that case).

swarm.ee.managed-executor-services.KEY.queue-length

The executors task queue capacity. A length of 0 means direct hand-off and possible rejection will occur. An undefined length (the default), or Integer.MAX_VALUE, indicates that an unbounded queue should be used. All other values specify an exact queue size. If an unbounded queue or direct hand-off is used, a core-threads value greater than zero is required.

swarm.ee.managed-executor-services.KEY.reject-policy

The policy to be applied to aborted tasks.

swarm.ee.managed-executor-services.KEY.thread-factory

The name of the thread factory to be used by the executor.

swarm.ee.managed-scheduled-executor-services.KEY.context-service

The name of the context service to be used by the scheduled executor.

swarm.ee.managed-scheduled-executor-services.KEY.core-threads

The minimum number of threads to be used by the scheduled executor.

swarm.ee.managed-scheduled-executor-services.KEY.hung-task-threshold

The runtime, in milliseconds, for tasks to be considered hung by the scheduled executor. If 0 tasks are never considered hung.

swarm.ee.managed-scheduled-executor-services.KEY.jndi-name

The JNDI Name to lookup the managed scheduled executor service.

swarm.ee.managed-scheduled-executor-services.KEY.keepalive-time

When the number of threads is greater than the core, this is the maximum time, in milliseconds, that excess idle threads will wait for new tasks before terminating.

swarm.ee.managed-scheduled-executor-services.KEY.long-running-tasks

Flag which hints the duration of tasks executed by the scheduled executor.

swarm.ee.managed-scheduled-executor-services.KEY.reject-policy

The policy to be applied to aborted tasks.

swarm.ee.managed-scheduled-executor-services.KEY.thread-factory

The name of the thread factory to be used by the scheduled executor.

swarm.ee.managed-thread-factories.KEY.context-service

The name of the context service to be used by the managed thread factory

swarm.ee.managed-thread-factories.KEY.jndi-name

The JNDI Name to lookup the managed thread factory.

swarm.ee.managed-thread-factories.KEY.priority

The priority applied to threads created by the factory

swarm.ee.spec-descriptor-property-replacement

Flag indicating whether descriptors defined by the Java EE specification will have property replacements applied

Configuration

swarm.ejb3.allow-ejb-name-regex

If this is true then regular expressions can be used in interceptor bindings to allow interceptors to be mapped to all beans that match the regular expression

swarm.ejb3.application-security-domains.KEY.enable-jacc

Enable authorization using JACC

swarm.ejb3.application-security-domains.KEY.referencing-deployments

The deployments currently referencing this mapping

swarm.ejb3.application-security-domains.KEY.security-domain

The Elytron security domain to be used by deployments that reference the mapped security domain

swarm.ejb3.async-service.thread-pool-name

The name of the thread pool which handles asynchronous invocations

swarm.ejb3.caches.KEY.aliases

The aliases by which this cache may also be referenced

swarm.ejb3.caches.KEY.passivation-store

The passivation store used by this cache

swarm.ejb3.cluster-passivation-stores.KEY.bean-cache

The name of the cache used to store bean instances.

swarm.ejb3.cluster-passivation-stores.KEY.cache-container

The name of the cache container used for the bean and client-mappings caches

swarm.ejb3.cluster-passivation-stores.KEY.idle-timeout

The timeout in units specified by idle-timeout-unit, after which a bean will passivate

swarm.ejb3.cluster-passivation-stores.KEY.max-size

The maximum number of beans this cache should store before forcing old beans to passivate

swarm.ejb3.default-clustered-sfsb-cache

Name of the default stateful bean cache, which will be applicable to all clustered stateful EJBs, unless overridden at the deployment or bean level

swarm.ejb3.default-distinct-name

The default distinct name that is applied to every EJB deployed on this server

swarm.ejb3.default-entity-bean-instance-pool

Name of the default entity bean instance pool, which will be applicable to all entity beans, unless overridden at the deployment or bean level

swarm.ejb3.default-entity-bean-optimistic-locking

If set to true entity beans will use optimistic locking by default

swarm.ejb3.default-mdb-instance-pool

Name of the default MDB instance pool, which will be applicable to all MDBs, unless overridden at the deployment or bean level

swarm.ejb3.default-missing-method-permissions-deny-access

If this is set to true then methods on an EJB with a security domain specified or with other methods with security metadata will have an implicit @DenyAll unless other security metadata is present

swarm.ejb3.default-resource-adapter-name

Name of the default resource adapter name that will be used by MDBs, unless overridden at the deployment or bean level

swarm.ejb3.default-security-domain

The default security domain that will be used for EJBs if the bean doesn’t explicitly specify one

swarm.ejb3.default-sfsb-cache

Name of the default stateful bean cache, which will be applicable to all stateful EJBs, unless overridden at the deployment or bean level

swarm.ejb3.default-sfsb-passivation-disabled-cache

Name of the default stateful bean cache, which will be applicable to all stateful EJBs which have passivation disabled. Each deployment or EJB can optionally override this cache name.

swarm.ejb3.default-singleton-bean-access-timeout

The default access timeout for singleton beans

swarm.ejb3.default-slsb-instance-pool

Name of the default stateless bean instance pool, which will be applicable to all stateless EJBs, unless overridden at the deployment or bean level

swarm.ejb3.default-stateful-bean-access-timeout

The default access timeout for stateful beans

swarm.ejb3.disable-default-ejb-permissions

This deprecated attribute has no effect and will be removed in a future release; it may never be set to a "false" value

swarm.ejb3.enable-graceful-txn-shutdown

Enabling txn graceful shutdown will make the server wait for active EJB-related transactions to complete before suspending. For that reason, if the server is running on a cluster, the suspending cluster node may receive ejb requests until all active transactions are complete. To avoid this behavior, omit this tag.

swarm.ejb3.enable-statistics

If set to true, enable the collection of invocation statistics. Deprecated in favour of "statistics-enabled"

swarm.ejb3.file-passivation-stores.KEY.idle-timeout

The timeout in units specified by idle-timeout-unit, after which a bean will passivate

swarm.ejb3.file-passivation-stores.KEY.max-size

The maximum number of beans this cache should store before forcing old beans to passivate

swarm.ejb3.identity-service.outflow-security-domains

References to security domains to attempt to outflow any established identity to

swarm.ejb3.iiop-service.enable-by-default

If this is true EJB’s will be exposed over IIOP by default, otherwise it needs to be explicitly enabled in the deployment descriptor

swarm.ejb3.iiop-service.use-qualified-name

If true EJB names will be bound into the naming service with the application and module name prepended to the name (e.g. myapp/mymodule/MyEjb)

swarm.ejb3.in-vm-remote-interface-invocation-pass-by-value

If set to false, the parameters to invocations on remote interface of an EJB, will be passed by reference. Else, the parameters will be passed by value.

swarm.ejb3.log-system-exceptions

If this is true then all EJB system (not application) exceptions will be logged. The EJB spec mandates this behaviour, however it is not recommended as it will often result in exceptions being logged twice (once by the EJB and once by the calling code)

swarm.ejb3.mdb-delivery-groups.KEY.active

Indicates if delivery for all MDBs belonging to this group is active

swarm.ejb3.passivation-stores.KEY.bean-cache

The name of the cache used to store bean instances.

swarm.ejb3.passivation-stores.KEY.cache-container

The name of the cache container used for the bean and client-mappings caches

swarm.ejb3.passivation-stores.KEY.max-size

The maximum number of beans this cache should store before forcing old beans to passivate

swarm.ejb3.remote-service.channel-creation-options.KEY.type

The type of the channel creation option

swarm.ejb3.remote-service.channel-creation-options.KEY.value

The value for the EJB remote channel creation option

swarm.ejb3.remote-service.cluster

The name of the clustered cache container which will be used to store/access the client-mappings of the EJB remoting connector’s socket-binding on each node, in the cluster

swarm.ejb3.remote-service.connector-ref

The name of the connector on which the EJB3 remoting channel is registered

swarm.ejb3.remote-service.execute-in-worker

If this is true the EJB request will be executed in the IO subsystems worker, otherwise it will dispatch to the EJB thread pool

swarm.ejb3.remote-service.thread-pool-name

The name of the thread pool that handles remote invocations

swarm.ejb3.remoting-profiles.KEY.exclude-local-receiver

If set no local receiver is used in this profile

swarm.ejb3.remoting-profiles.KEY.local-receiver-pass-by-value

If set local receiver will pass ejb beans by value

swarm.ejb3.remoting-profiles.KEY.remoting-ejb-receivers.KEY.channel-creation-options.KEY.type

The type of the channel creation option

swarm.ejb3.remoting-profiles.KEY.remoting-ejb-receivers.KEY.channel-creation-options.KEY.value

The value for the EJB remote channel creation option

swarm.ejb3.remoting-profiles.KEY.remoting-ejb-receivers.KEY.connect-timeout

Remoting ejb receiver connect timeout

swarm.ejb3.remoting-profiles.KEY.remoting-ejb-receivers.KEY.outbound-connection-ref

Name of outbound connection that will be used by the ejb receiver

swarm.ejb3.remoting-profiles.KEY.static-ejb-discovery

Describes static discovery config for EJB’s

swarm.ejb3.statistics-enabled

If set to true, enable the collection of invocation statistics.

swarm.ejb3.strict-max-bean-instance-pools.KEY.derive-size

Specifies if and what the max pool size should be derived from. An undefined value (or the deprecated value 'none' which is converted to undefined) indicates that the explicit value of max-pool-size should be used. A value of 'from-worker-pools' indicates that the max pool size should be derived from the size of the total threads for all worker pools configured on the system. A value of 'from-cpu-count' indicates that the max pool size should be derived from the total number of processors available on the system. Note that the computation isn’t a 1:1 mapping, the values may or may not be augmented by other factors.

swarm.ejb3.strict-max-bean-instance-pools.KEY.max-pool-size

The maximum number of bean instances that the pool can hold at a given point in time

swarm.ejb3.strict-max-bean-instance-pools.KEY.timeout

The maximum amount of time to wait for a bean instance to be available from the pool

swarm.ejb3.strict-max-bean-instance-pools.KEY.timeout-unit

The instance acquisition timeout unit

swarm.ejb3.thread-pools.KEY.active-count

The approximate number of threads that are actively executing tasks.

swarm.ejb3.thread-pools.KEY.completed-task-count

The approximate total number of tasks that have completed execution.

swarm.ejb3.thread-pools.KEY.current-thread-count

The current number of threads in the pool.

swarm.ejb3.thread-pools.KEY.keepalive-time

Used to specify the amount of time that pool threads should be kept running when idle; if not specified, threads will run until the executor is shut down.

swarm.ejb3.thread-pools.KEY.largest-thread-count

The largest number of threads that have ever simultaneously been in the pool.

swarm.ejb3.thread-pools.KEY.max-threads

The maximum thread pool size.

swarm.ejb3.thread-pools.KEY.name

The name of the thread pool.

swarm.ejb3.thread-pools.KEY.queue-size

The queue size.

swarm.ejb3.thread-pools.KEY.rejected-count

The number of tasks that have been rejected.

swarm.ejb3.thread-pools.KEY.task-count

The approximate total number of tasks that have ever been scheduled for execution.

swarm.ejb3.thread-pools.KEY.thread-factory

Specifies the name of a specific thread factory to use to create worker threads. If not defined an appropriate default thread factory will be used.

swarm.ejb3.timer-service.database-data-stores.KEY.allow-execution

If this node is allowed to execute timers. If this is false then the timers will be added to the database, and another node may execute them. Note that depending on your refresh interval if you add timers with a very short delay they will not be executed until another node refreshes.

swarm.ejb3.timer-service.database-data-stores.KEY.database

The type of database that is in use. SQL can be customised per database type.

swarm.ejb3.timer-service.database-data-stores.KEY.datasource-jndi-name

The datasource that is used to persist the timers

swarm.ejb3.timer-service.database-data-stores.KEY.partition

The partition name. This should be set to a different value for every node that is sharing a database to prevent the same timer being loaded by multiple noded.

swarm.ejb3.timer-service.database-data-stores.KEY.refresh-interval

Interval between refreshing the current timer set against the underlying database. A low value means timers get picked up more quickly, but increase load on the database.

swarm.ejb3.timer-service.default-data-store

The default data store used for persistent timers

swarm.ejb3.timer-service.file-data-stores.KEY.path

The directory to store persistent timer information in

swarm.ejb3.timer-service.file-data-stores.KEY.relative-to

The relative path that is used to resolve the timer data store location

swarm.ejb3.timer-service.thread-pool-name

The name of the thread pool used to run timer service invocations

Configuration

swarm.elytron.add-prefix-role-mappers.KEY.prefix

The prefix to add to each role.

swarm.elytron.add-suffix-role-mappers.KEY.suffix

The suffix to add to each role.

swarm.elytron.aggregate-http-server-mechanism-factories.KEY.available-mechanisms

The HTTP mechanisms available from this factory instance.

swarm.elytron.aggregate-http-server-mechanism-factories.KEY.http-server-mechanism-factories

The referenced http server factories to aggregate.

swarm.elytron.aggregate-principal-decoders.KEY.principal-decoders

The referenced principal decoders to aggregate.

swarm.elytron.aggregate-principal-transformers.KEY.principal-transformers

The referenced principal transformers to aggregate.

swarm.elytron.aggregate-providers.KEY.providers

The referenced Provider[] resources to aggregate.

swarm.elytron.aggregate-realms.KEY.authentication-realm

Reference to the security realm to use for authentication steps (obtaining or validating credentials).

swarm.elytron.aggregate-realms.KEY.authorization-realm

Reference to the security realm to use for loading the identity for authorization steps (loading of the identity).

swarm.elytron.aggregate-role-mappers.KEY.role-mappers

The referenced role mappers to aggregate.

swarm.elytron.aggregate-sasl-server-factories.KEY.available-mechanisms

The SASL mechanisms available from this factory after all filtering has been applied.

swarm.elytron.aggregate-sasl-server-factories.KEY.sasl-server-factories

The referenced sasl server factories to aggregate.

swarm.elytron.aggregate-security-event-listeners.KEY.security-event-listeners

The referenced security event listener resources to aggregate.

swarm.elytron.authentication-configurations.KEY.anonymous

Enables anonymous authentication.

swarm.elytron.authentication-configurations.KEY.attribute-extends

A previously defined authentication configuration to extend.

swarm.elytron.authentication-configurations.KEY.authentication-name

The authentication name to use.

swarm.elytron.authentication-configurations.KEY.authorization-name

The authorization name to use.

swarm.elytron.authentication-configurations.KEY.credential-reference

The reference to credential stored in CredentialStore under defined alias or clear text password.

swarm.elytron.authentication-configurations.KEY.forwarding-mode

The type of security identity forwarding to use. A mode of 'authentication' forwarding forwards the principal and credential. A mode of 'authorization' forwards the authorization id, allowing for a different authentication identity.

swarm.elytron.authentication-configurations.KEY.host

The host to use.

swarm.elytron.authentication-configurations.KEY.kerberos-security-factory

Reference to a kerberos security factory used to obtain a GSS kerberos credential

swarm.elytron.authentication-configurations.KEY.mechanism-properties

Configuration properties for the SASL authentication mechanism.

swarm.elytron.authentication-configurations.KEY.port

The port to use.

swarm.elytron.authentication-configurations.KEY.protocol

The protocol to use.

swarm.elytron.authentication-configurations.KEY.realm

The realm to use.

swarm.elytron.authentication-configurations.KEY.sasl-mechanism-selector

The SASL mechanism selector string.

swarm.elytron.authentication-configurations.KEY.security-domain

Reference to a security domain to obtain a forwarded identity.

swarm.elytron.authentication-contexts.KEY.attribute-extends

A previously defined authentication context to extend.

swarm.elytron.authentication-contexts.KEY.match-rules

The match-rules for this authentication context.

swarm.elytron.caching-realms.KEY.maximum-age

The time in milliseconds that an item can stay in the cache.

swarm.elytron.caching-realms.KEY.maximum-entries

The maximum number of entries to keep in the cache.

swarm.elytron.caching-realms.KEY.realm

A reference to a cacheable security realm.

swarm.elytron.chained-principal-transformers.KEY.principal-transformers

The referenced principal transformers to chain.

swarm.elytron.client-ssl-contexts.KEY.active-session-count

The count of current active sessions.

swarm.elytron.client-ssl-contexts.KEY.cipher-suite-filter

The filter to apply to specify the enabled cipher suites.

swarm.elytron.client-ssl-contexts.KEY.key-manager

Reference to the key manager to use within the SSLContext.

swarm.elytron.client-ssl-contexts.KEY.protocols

The enabled protocols.

swarm.elytron.client-ssl-contexts.KEY.provider-name

The name of the provider to use. If not specified, all providers from providers will be passed to the SSLContext.

swarm.elytron.client-ssl-contexts.KEY.providers

The name of the providers to obtain the Provider[] to use to load the SSLContext.

swarm.elytron.client-ssl-contexts.KEY.ssl-sessions.KEY.application-buffer-size

The application buffer size as reported by the SSLSession.

swarm.elytron.client-ssl-contexts.KEY.ssl-sessions.KEY.cipher-suite

The selected cipher suite as reported by the SSLSession.

swarm.elytron.client-ssl-contexts.KEY.ssl-sessions.KEY.creation-time

The creation time as reported by the SSLSession.

swarm.elytron.client-ssl-contexts.KEY.ssl-sessions.KEY.last-accessed-time

The last accessed time as reported by the SSLSession.

swarm.elytron.client-ssl-contexts.KEY.ssl-sessions.KEY.local-certificates

The local certificates from the SSLSession.

swarm.elytron.client-ssl-contexts.KEY.ssl-sessions.KEY.local-principal

The local principal as reported by the SSLSession.

swarm.elytron.client-ssl-contexts.KEY.ssl-sessions.KEY.packet-buffer-size

The packet buffer size as reported by the SSLSession.

swarm.elytron.client-ssl-contexts.KEY.ssl-sessions.KEY.peer-certificates

The peer certificates from the SSLSession.

swarm.elytron.client-ssl-contexts.KEY.ssl-sessions.KEY.peer-host

The peer host as reported by the SSLSession.

swarm.elytron.client-ssl-contexts.KEY.ssl-sessions.KEY.peer-port

The peer port as reported by the SSLSession.

swarm.elytron.client-ssl-contexts.KEY.ssl-sessions.KEY.peer-principal

The peer principal as reported by the SSLSession.

swarm.elytron.client-ssl-contexts.KEY.ssl-sessions.KEY.protocol

The protocol as reported by the SSLSession.

swarm.elytron.client-ssl-contexts.KEY.ssl-sessions.KEY.valid

The validity of the session as reported by the SSLSession.

swarm.elytron.client-ssl-contexts.KEY.trust-manager

Reference to the trust manager to use within the SSLContext.

swarm.elytron.concatenating-principal-decoders.KEY.joiner

The string to use to join the results of the referenced principal decoders.

swarm.elytron.concatenating-principal-decoders.KEY.principal-decoders

The referenced principal decoders to concatenate.

swarm.elytron.configurable-http-server-mechanism-factories.KEY.available-mechanisms

The HTTP mechanisms available from this factory instance.

swarm.elytron.configurable-http-server-mechanism-factories.KEY.filters

Filtering to be applied to enable / disable mechanisms based on the name.

swarm.elytron.configurable-http-server-mechanism-factories.KEY.http-server-mechanism-factory

The http server factory to be wrapped.

swarm.elytron.configurable-http-server-mechanism-factories.KEY.properties

Custom properties to be passed in to the http server factory calls.

swarm.elytron.configurable-sasl-server-factories.KEY.available-mechanisms

The SASL mechanisms available from this factory after all filtering has been applied.

swarm.elytron.configurable-sasl-server-factories.KEY.filters

List of filters to be evaluated sequentially combining the results using 'or'.

swarm.elytron.configurable-sasl-server-factories.KEY.properties

Custom properties to be passed in to the sasl server factory calls.

swarm.elytron.configurable-sasl-server-factories.KEY.protocol

The protocol that should be passed into factory when creating the mechanism.

swarm.elytron.configurable-sasl-server-factories.KEY.sasl-server-factory

The sasl server factory to be wrapped.

swarm.elytron.configurable-sasl-server-factories.KEY.server-name

The server name that should be passed into factory when creating the mechanism.

swarm.elytron.constant-permission-mappers.KEY.permissions

The permissions to assign.

swarm.elytron.constant-principal-decoders.KEY.constant

The constant value the principal decoder will always return.

swarm.elytron.constant-principal-transformers.KEY.constant

The constant value this PrincipalTransformer will always return.

swarm.elytron.constant-realm-mappers.KEY.realm-name

The name of the constant realm to return.

swarm.elytron.constant-role-mappers.KEY.roles

The constant roles to be returned by this role mapper.

swarm.elytron.credential-stores.KEY.create

Specifies whether credential store should create storage when it doesn’t exist.

swarm.elytron.credential-stores.KEY.credential-reference

Credential reference to be used to create protection parameter.

swarm.elytron.credential-stores.KEY.implementation-properties

Map of credentials store implementation specific properties.

swarm.elytron.credential-stores.KEY.location

File name of credential store storage.

swarm.elytron.credential-stores.KEY.modifiable

Specifies whether credential store is modifiable.

swarm.elytron.credential-stores.KEY.other-providers

The name of the providers defined within the subsystem to obtain the Providers to search for the one that can create the required JCA objects within credential store. This is valid only for key-store based CredentialStore. If this is not specified then the global list of Providers is used instead.

swarm.elytron.credential-stores.KEY.provider-name

The name of the provider to use to instantiate the CredentialStoreSpi. If the provider is not specified then the first provider found that can create an instance of the specified 'type' will be used.

swarm.elytron.credential-stores.KEY.providers

The name of the providers defined within the subsystem to obtain the Providers to search for the one that can create the required CredentialStore type. If this is not specified then the global list of Providers is used instead.

swarm.elytron.credential-stores.KEY.relative-to

A reference to a previously defined path that the file name is relative to.

swarm.elytron.credential-stores.KEY.state

The state of the underlying service that represents this credential store at runtime.

swarm.elytron.credential-stores.KEY.type

The credential store type, e.g. KeyStoreCredentialStore.

swarm.elytron.custom-credential-security-factories.KEY.class-name

The class name of the implementation of the custom security factory.

swarm.elytron.custom-credential-security-factories.KEY.configuration

The optional key/value configuration for the custom security factory.

swarm.elytron.custom-credential-security-factories.KEY.module

The module to use to load the custom security factory.

swarm.elytron.custom-modifiable-realms.KEY.class-name

The class name of the implementation of the custom realm.

swarm.elytron.custom-modifiable-realms.KEY.configuration

The optional key/value configuration for the custom realm.

swarm.elytron.custom-modifiable-realms.KEY.module

The module to use to load the custom realm.

swarm.elytron.custom-permission-mappers.KEY.class-name

Fully qualified class name of the permission mapper

swarm.elytron.custom-permission-mappers.KEY.configuration

The optional kay/value configuration for the permission mapper

swarm.elytron.custom-permission-mappers.KEY.module

Name of the module to use to load the permission mapper

swarm.elytron.custom-principal-decoders.KEY.class-name

Fully qualified class name of the principal decoder

swarm.elytron.custom-principal-decoders.KEY.configuration

The optional kay/value configuration for the principal decoder

swarm.elytron.custom-principal-decoders.KEY.module

Name of the module to use to load the principal decoder

swarm.elytron.custom-principal-transformers.KEY.class-name

The class name of the implementation of the custom principal transformer.

swarm.elytron.custom-principal-transformers.KEY.configuration

The optional key/value configuration for the custom principal transformer.

swarm.elytron.custom-principal-transformers.KEY.module

The module to use to load the custom principal transformer.

swarm.elytron.custom-realm-mappers.KEY.class-name

Fully qualified class name of the RealmMapper

swarm.elytron.custom-realm-mappers.KEY.configuration

The optional kay/value configuration for the RealmMapper

swarm.elytron.custom-realm-mappers.KEY.module

Name of the module to use to load the RealmMapper

swarm.elytron.custom-realms.KEY.class-name

The class name of the implementation of the custom realm.

swarm.elytron.custom-realms.KEY.configuration

The optional key/value configuration for the custom realm.

swarm.elytron.custom-realms.KEY.module

The module to use to load the custom realm.

swarm.elytron.custom-role-decoders.KEY.class-name

Fully qualified class name of the RoleDecoder

swarm.elytron.custom-role-decoders.KEY.configuration

The optional kay/value configuration for the RoleDecoder

swarm.elytron.custom-role-decoders.KEY.module

Name of the module to use to load the RoleDecoder

swarm.elytron.custom-role-mappers.KEY.class-name

Fully qualified class name of the RoleMapper

swarm.elytron.custom-role-mappers.KEY.configuration

The optional key/value configuration for the RoleMapper

swarm.elytron.custom-role-mappers.KEY.module

Name of the module to use to load the RoleMapper

swarm.elytron.default-authentication-context

The default authentication context to be associated with all deployments.

swarm.elytron.dir-contexts.KEY.authentication-context

The authentication context to obtain login credentials to connect to the LDAP server. Can be omitted if authentication-level is "none" (anonymous).

swarm.elytron.dir-contexts.KEY.authentication-level

The authentication level (security level/authentication mechanism) to use. Corresponds to SECURITY_AUTHENTICATION ("java.naming.security.authentication") environment property. Allowed values: "none", "simple", sasl_mech, where sasl_mech is a space-separated list of SASL mechanism names.

swarm.elytron.dir-contexts.KEY.connection-timeout

The timeout for connecting to the LDAP server in milliseconds.

swarm.elytron.dir-contexts.KEY.credential-reference

The credential reference to authenticate and connect to the LDAP server. Can be omitted if authentication-level is "none" (anonymous).

swarm.elytron.dir-contexts.KEY.enable-connection-pooling

Indicates if connection pooling is enabled.

swarm.elytron.dir-contexts.KEY.module

Name of module that will be used as class loading base.

swarm.elytron.dir-contexts.KEY.principal

The principal to authenticate and connect to the LDAP server. Can be omitted if authentication-level is "none" (anonymous).

swarm.elytron.dir-contexts.KEY.properties

The additional connection properties for the DirContext.

swarm.elytron.dir-contexts.KEY.read-timeout

The read timeout for an LDAP operation in milliseconds.

swarm.elytron.dir-contexts.KEY.referral-mode

If referrals should be followed.

swarm.elytron.dir-contexts.KEY.ssl-context

The name of ssl-context used to secure connection to the LDAP server.

swarm.elytron.dir-contexts.KEY.url

The connection url.

swarm.elytron.disallowed-providers

A list of providers that are not allowed, and will be removed from the providers list.

swarm.elytron.file-audit-logs.KEY.attribute-synchronized

Whether every event should be immediately synchronised to disk.

swarm.elytron.file-audit-logs.KEY.format

The format to use to record the audit event.

swarm.elytron.file-audit-logs.KEY.path

Path of the file to be written.

swarm.elytron.file-audit-logs.KEY.relative-to

The relative path to the audit log.

swarm.elytron.filesystem-realms.KEY.encoded

Whether the identity names should be stored encoded (Base32) in file names.

swarm.elytron.filesystem-realms.KEY.levels

The number of levels of directory hashing to apply.

swarm.elytron.filesystem-realms.KEY.path

The path to the file containing the realm.

swarm.elytron.filesystem-realms.KEY.relative-to

The pre-defined path the path is relative to.

swarm.elytron.filtering-key-stores.KEY.alias-filter

A filter to apply to the aliases returned from the KeyStore, can either be a comma separated list of aliases to return or one of the following formats ALL:-alias1:-alias2, NONE:+alias1:+alias2

swarm.elytron.filtering-key-stores.KEY.key-store

Name of filtered KeyStore.

swarm.elytron.filtering-key-stores.KEY.state

The state of the underlying service that represents this KeyStore at runtime, if it is anything other than UP runtime operations will not be available.

swarm.elytron.final-providers

Reference to the Providers that should be registered after all existing Providers.

swarm.elytron.http-authentication-factories.KEY.available-mechanisms

The HTTP mechanisms available from this configuration after all filtering has been applied.

swarm.elytron.http-authentication-factories.KEY.http-server-mechanism-factory

The HttpServerAuthenticationMechanismFactory to associate with this resource

swarm.elytron.http-authentication-factories.KEY.mechanism-configurations

Mechanism specific configuration

swarm.elytron.http-authentication-factories.KEY.security-domain

The SecurityDomain to associate with this resource

swarm.elytron.identity-realms.KEY.attribute-name

The name of the attribute associated with this identity.

swarm.elytron.identity-realms.KEY.attribute-values

The values associated with the identities attribute.

swarm.elytron.identity-realms.KEY.identity

The identity available from the security realm.

swarm.elytron.initial-providers

Reference to the Providers that should be registered ahead of all existing Providers.

swarm.elytron.jdbc-realms.KEY.principal-query

The authentication query used to authenticate users based on specific key types.

swarm.elytron.kerberos-security-factories.KEY.debug

Should the JAAS step of obtaining the credential have debug logging enabled.

swarm.elytron.kerberos-security-factories.KEY.mechanism-names

The mechanism names the credential should be usable with. Names will be converted to OIDs and used together with OIDs from mechanism-oids attribute.

swarm.elytron.kerberos-security-factories.KEY.mechanism-oids

The mechanism OIDs the credential should be usable with. Will be used together with OIDs derived from names from mechanism-names attribute.

swarm.elytron.kerberos-security-factories.KEY.minimum-remaining-lifetime

How much lifetime (in seconds) should a cached credential have remaining before it is recreated.

swarm.elytron.kerberos-security-factories.KEY.obtain-kerberos-ticket

Should the KerberosTicket also be obtained and associated with the credential. This is required to be true where credentials are delegated to the server.

swarm.elytron.kerberos-security-factories.KEY.options

The Krb5LoginModule additional options.

swarm.elytron.kerberos-security-factories.KEY.path

The path of the KeyTab to load to obtain the credential.

swarm.elytron.kerberos-security-factories.KEY.principal

The principal represented by the KeyTab

swarm.elytron.kerberos-security-factories.KEY.relative-to

The name of another previously named path, or of one of the standard paths provided by the system. If 'relative-to' is provided, the value of the 'path' attribute is treated as relative to the path specified by this attribute.

swarm.elytron.kerberos-security-factories.KEY.request-lifetime

How much lifetime (in seconds) should be requested for newly created credentials.

swarm.elytron.kerberos-security-factories.KEY.required

Is the keytab file with adequate principal required to exist at the time the service starts?

swarm.elytron.kerberos-security-factories.KEY.server

If this for use server side or client side?

swarm.elytron.kerberos-security-factories.KEY.wrap-gss-credential

Should generated GSS credentials be wrapped to prevent improper disposal or not?

swarm.elytron.key-managers.KEY.algorithm

The name of the algorithm to use to create the underlying KeyManagerFactory.

swarm.elytron.key-managers.KEY.alias-filter

A filter to apply to the aliases returned from the KeyStore, can either be a comma separated list of aliases to return or one of the following formats ALL:-alias1:-alias2, NONE:+alias1:+alias2

swarm.elytron.key-managers.KEY.credential-reference

The credential reference to decrypt KeyStore item. (Not a password of the KeyStore.)

swarm.elytron.key-managers.KEY.key-store

Reference to the KeyStore to use to initialise the underlying KeyManagerFactory.

swarm.elytron.key-managers.KEY.provider-name

The name of the provider to use to create the underlying KeyManagerFactory.

swarm.elytron.key-managers.KEY.providers

Reference to obtain the Provider[] to use when creating the underlying KeyManagerFactory.

swarm.elytron.key-store-realms.KEY.key-store

Reference to the KeyStore that should be used to back this security realm.

swarm.elytron.key-stores.KEY.alias-filter

A filter to apply to the aliases returned from the KeyStore, can either be a comma separated list of aliases to return or one of the following formats ALL:-alias1:-alias2, NONE:+alias1:+alias2

swarm.elytron.key-stores.KEY.attribute-synchronized

The time this KeyStore was last loaded or saved. Note: Some providers may continue to apply updates after the KeyStore was loaded within the application server.

swarm.elytron.key-stores.KEY.credential-reference

The reference to credential stored in CredentialStore under defined alias or clear text password.

swarm.elytron.key-stores.KEY.loaded-provider

Information about the provider that was used for this KeyStore.

swarm.elytron.key-stores.KEY.modified

Indicates if the in-memory representation of the KeyStore has been changed since it was last loaded or stored. Note: For some providers updates may be immediate without further load or store calls.

swarm.elytron.key-stores.KEY.path

The path to the KeyStore file.

swarm.elytron.key-stores.KEY.provider-name

The name of the provider to use to load the KeyStore, disables searching for the first Provider that can create a KeyStore of the specified type.

swarm.elytron.key-stores.KEY.providers

A reference to the providers that should be used to obtain the list of Provider instances to search, if not specified the global list of providers will be used instead.

swarm.elytron.key-stores.KEY.relative-to

The base path this store is relative to.

swarm.elytron.key-stores.KEY.required

Is the file required to exist at the time the KeyStore service starts?

swarm.elytron.key-stores.KEY.size

The number of entries in the KeyStore.

swarm.elytron.key-stores.KEY.state

The state of the underlying service that represents this KeyStore at runtime, if it is anything other than UP runtime operations will not be available.

swarm.elytron.key-stores.KEY.type

The type of the KeyStore, used when creating the new KeyStore instance.

swarm.elytron.ldap-key-stores.KEY.alias-attribute

The name of LDAP attribute, where will be item alias stored.

swarm.elytron.ldap-key-stores.KEY.certificate-attribute

The name of LDAP attribute, where will be certificate stored.

swarm.elytron.ldap-key-stores.KEY.certificate-chain-attribute

The name of LDAP attribute, where will be certificate chain stored.

swarm.elytron.ldap-key-stores.KEY.certificate-chain-encoding

The encoding of the certificate chain.

swarm.elytron.ldap-key-stores.KEY.certificate-type

The type of the Certificate.

swarm.elytron.ldap-key-stores.KEY.dir-context

The name of DirContext, which will be used to communication with LDAP server.

swarm.elytron.ldap-key-stores.KEY.filter-alias

The LDAP filter for obtaining an item of the KeyStore by alias. If this is not specified then the default value will be (alias_attribute={0}). The string '{0}' will be replaced by the searched alias and the 'alias_attribute' value will be the value of the attribute 'alias-attribute'.

swarm.elytron.ldap-key-stores.KEY.filter-certificate

The LDAP filter for obtaining an item of the KeyStore by certificate. If this is not specified then the default value will be (certificate_attribute={0}). The string '{0}' will be replaced by searched encoded certificate and the 'certificate_attribute' will be the value of the attribute 'certificate-attribute'.

swarm.elytron.ldap-key-stores.KEY.filter-iterate

The LDAP filter for iterating over all items of the KeyStore. If this is not specified then the default value will be (alias_attribute=*). The 'alias_attribute' will be the value of the attribute 'alias-attribute'.

swarm.elytron.ldap-key-stores.KEY.key-attribute

The name of LDAP attribute, where will be key stored.

swarm.elytron.ldap-key-stores.KEY.key-type

The type of KeyStore, in which will be key serialized to LDAP attribute.

swarm.elytron.ldap-key-stores.KEY.new-item-template

Configuration for item creation. Define how will look LDAP entry of newly created keystore item.

swarm.elytron.ldap-key-stores.KEY.search-path

The path in LDAP, where will be KeyStore items searched.

swarm.elytron.ldap-key-stores.KEY.search-recursive

If the LDAP search should be recursive.

swarm.elytron.ldap-key-stores.KEY.search-time-limit

The time limit for obtaining keystore items from LDAP.

swarm.elytron.ldap-key-stores.KEY.size

The size of LDAP KeyStore in amount of items/aliases.

swarm.elytron.ldap-key-stores.KEY.state

The state of the underlying service that represents this KeyStore at runtime, if it is anything other than UP runtime operations will not be available.

swarm.elytron.ldap-realms.KEY.allow-blank-password

Does this realm support blank password direct verification? Blank password attempt will be rejected otherwise.

swarm.elytron.ldap-realms.KEY.dir-context

The configuration to connect to a LDAP server.

swarm.elytron.ldap-realms.KEY.direct-verification

Does this realm support verification of credentials by directly connecting to LDAP as the account being authenticated?

swarm.elytron.ldap-realms.KEY.identity-mapping

The configuration options that define how principals are mapped to their corresponding entries in the underlying LDAP server.

swarm.elytron.logical-permission-mappers.KEY.left

Reference to the permission mapper to use to the left of the operation.

swarm.elytron.logical-permission-mappers.KEY.logical-operation

The logical operation to use to combine the permission mappers.

swarm.elytron.logical-permission-mappers.KEY.right

Reference to the permission mapper to use to the right of the operation.

swarm.elytron.logical-role-mappers.KEY.left

Reference to a role mapper to be used on the left side of the operation.

swarm.elytron.logical-role-mappers.KEY.logical-operation

The logical operation to be performed on the role mapper mappings.

swarm.elytron.logical-role-mappers.KEY.right

Reference to a role mapper to be used on the right side of the operation.

swarm.elytron.mapped-regex-realm-mappers.KEY.delegate-realm-mapper

The RealmMapper to delegate to if the pattern does not match. If no delegate is specified then the default realm on the domain will be used instead. If the username does not match the pattern and a delegate realm-mapper is present, the result of delegate-realm-mapper is mapped via the realm-map.

swarm.elytron.mapped-regex-realm-mappers.KEY.pattern

The regular expression which must contain at least one capture group to extract the realm from the name. If the regular expression matches more than one capture group, the first capture group is used.

swarm.elytron.mapped-regex-realm-mappers.KEY.realm-map

Mapping of realm name extracted using the regular expression to a defined realm name. If the value for the mapping is not in the map or the realm whose name is the result of the mapping does not exist in the given security domain, the default realm is used.

swarm.elytron.mechanism-provider-filtering-sasl-server-factories.KEY.available-mechanisms

The SASL mechanisms available from this factory after all filtering has been applied.

swarm.elytron.mechanism-provider-filtering-sasl-server-factories.KEY.enabling

When set to 'true' no provider loaded mechanisms are enabled unless matched by one of the filters, setting to 'false' has the inverse effect.

swarm.elytron.mechanism-provider-filtering-sasl-server-factories.KEY.filters

The filters to apply when comparing the mechanisms from the providers, a filter matches when all of the specified values match the mechanism / provider pair.

swarm.elytron.mechanism-provider-filtering-sasl-server-factories.KEY.sasl-server-factory

Reference to a sasl server factory to be wrapped by this definition.

swarm.elytron.periodic-rotating-file-audit-logs.KEY.attribute-synchronized

Whether every event should be immediately synchronised to disk.

swarm.elytron.periodic-rotating-file-audit-logs.KEY.format

The format to use to record the audit event.

swarm.elytron.periodic-rotating-file-audit-logs.KEY.path

Path of the file to be written.

swarm.elytron.periodic-rotating-file-audit-logs.KEY.relative-to

The relative path to the audit log.

swarm.elytron.periodic-rotating-file-audit-logs.KEY.suffix

The suffix string in a format which can be understood by java.time.format.DateTimeFormatter. The period of the rotation is automatically calculated based on the suffix.

swarm.elytron.policies.KEY.custom-policy

A custom policy provider definition.

swarm.elytron.policies.KEY.jacc-policy

A policy provider definition that sets up JACC and related services.

swarm.elytron.properties-realms.KEY.attribute-synchronized

The time the properties files that back this realm were last loaded.

swarm.elytron.properties-realms.KEY.groups-attribute

The name of the attribute in the returned AuthorizationIdentity that should contain the group membership information for the identity.

swarm.elytron.properties-realms.KEY.groups-properties

The properties file containing the users and their groups.

swarm.elytron.properties-realms.KEY.users-properties

The properties file containing the users and their passwords.

swarm.elytron.provider-http-server-mechanism-factories.KEY.available-mechanisms

The HTTP mechanisms available from this factory instance.

swarm.elytron.provider-http-server-mechanism-factories.KEY.providers

The providers to use to locate the factories, if not specified the globally registered list of Providers will be used.

swarm.elytron.provider-loaders.KEY.argument

An argument to be passed into the constructor as the Provider is instantiated.

swarm.elytron.provider-loaders.KEY.class-names

The fully qualified class names of the providers to load, these are loaded after the service-loader discovered providers and duplicates will be skipped.

swarm.elytron.provider-loaders.KEY.configuration

The key/value configuration to be passed to the Provider to initialise it.

swarm.elytron.provider-loaders.KEY.loaded-providers

The list of providers loaded by this provider loader.

swarm.elytron.provider-loaders.KEY.module

The name of the module to load the provider from.

swarm.elytron.provider-loaders.KEY.path

The path of the file to use to initialise the providers.

swarm.elytron.provider-loaders.KEY.relative-to

The base path of the configuration file.

swarm.elytron.provider-sasl-server-factories.KEY.available-mechanisms

The SASL mechanisms available from this factory after all filtering has been applied.

swarm.elytron.provider-sasl-server-factories.KEY.providers

The providers to use to locate the factories, if not specified the globally registered list of Providers will be used.

swarm.elytron.regex-principal-transformers.KEY.pattern

The regular expression to use to locate the portion of the name to be replaced.

swarm.elytron.regex-principal-transformers.KEY.replace-all

Should all occurrences of the pattern matched be replaced or only the first occurrence.

swarm.elytron.regex-principal-transformers.KEY.replacement

The value to be used as the replacement.

swarm.elytron.regex-validating-principal-transformers.KEY.match

If set to true, the name must match the given pattern to make validation successful. If set to false, the name must not match the given pattern to make validation successful.

swarm.elytron.regex-validating-principal-transformers.KEY.pattern

The regular expression to use for the principal transformer.

swarm.elytron.sasl-authentication-factories.KEY.available-mechanisms

The SASL mechanisms available from this configuration after all filtering has been applied.

swarm.elytron.sasl-authentication-factories.KEY.mechanism-configurations

Mechanism specific configuration

swarm.elytron.sasl-authentication-factories.KEY.sasl-server-factory

The SaslServerFactory to associate with this resource

swarm.elytron.sasl-authentication-factories.KEY.security-domain

The SecurityDomain to associate with this resource

swarm.elytron.security-domains.KEY.default-realm

The default realm contained by this security domain.

swarm.elytron.security-domains.KEY.outflow-anonymous

When outflowing to a security domain if outflow is not possible should the anonymous identity be used? Outflowing anonymous has the effect of clearing any identity already established for that domain.

swarm.elytron.security-domains.KEY.outflow-security-domains

The list of security domains that the security identity from this domain should automatically outflow to.

swarm.elytron.security-domains.KEY.permission-mapper

A reference to a PermissionMapper to be used by this domain.

swarm.elytron.security-domains.KEY.post-realm-principal-transformer

A reference to a principal transformer to be applied after the realm has operated on the supplied identity name.

swarm.elytron.security-domains.KEY.pre-realm-principal-transformer

A reference to a principal transformer to be applied before the realm is selected.

swarm.elytron.security-domains.KEY.principal-decoder

A reference to a PrincipalDecoder to be used by this domain.

swarm.elytron.security-domains.KEY.realm-mapper

Reference to the RealmMapper to be used by this domain.

swarm.elytron.security-domains.KEY.realms

The list of realms contained by this security domain.

swarm.elytron.security-domains.KEY.role-mapper

Reference to the RoleMapper to be used by this domain.

swarm.elytron.security-domains.KEY.security-event-listener

Reference to a listener for security events.

swarm.elytron.security-domains.KEY.trusted-security-domains

The list of security domains that are trusted by this security domain.

swarm.elytron.security-properties

Security properties to be set.

swarm.elytron.server-ssl-contexts.KEY.active-session-count

The count of current active sessions.

swarm.elytron.server-ssl-contexts.KEY.authentication-optional

Rejecting of the client certificate by the security domain will not prevent the connection. Allows a fall through to use other authentication mechanisms (like form login) when the client certificate is rejected by security domain. Has an effect only when the security domain is set.

swarm.elytron.server-ssl-contexts.KEY.cipher-suite-filter

The filter to apply to specify the enabled cipher suites.

swarm.elytron.server-ssl-contexts.KEY.final-principal-transformer

A final principal transformer to apply for this mechanism realm.

swarm.elytron.server-ssl-contexts.KEY.key-manager

Reference to the key manager to use within the SSLContext.

swarm.elytron.server-ssl-contexts.KEY.maximum-session-cache-size

The maximum number of SSL sessions in the cache. The default value -1 means use the JVM default value. Value zero means there is no limit.

swarm.elytron.server-ssl-contexts.KEY.need-client-auth

To require a client certificate on SSL handshake. Connection without trusted client certificate (see trust-manager) will be rejected.

swarm.elytron.server-ssl-contexts.KEY.post-realm-principal-transformer

A principal transformer to apply after the realm is selected.

swarm.elytron.server-ssl-contexts.KEY.pre-realm-principal-transformer

A principal transformer to apply before the realm is selected.

swarm.elytron.server-ssl-contexts.KEY.protocols

The enabled protocols.

swarm.elytron.server-ssl-contexts.KEY.provider-name

The name of the provider to use. If not specified, all providers from providers will be passed to the SSLContext.

swarm.elytron.server-ssl-contexts.KEY.providers

The name of the providers to obtain the Provider[] to use to load the SSLContext.

swarm.elytron.server-ssl-contexts.KEY.realm-mapper

The realm mapper to be used for SSL authentication.

swarm.elytron.server-ssl-contexts.KEY.security-domain

The security domain to use for authentication during SSL session establishment.

swarm.elytron.server-ssl-contexts.KEY.session-timeout

The timeout for SSL sessions, in seconds. The default value -1 means use the JVM default value. Value zero means there is no limit.

swarm.elytron.server-ssl-contexts.KEY.ssl-sessions.KEY.application-buffer-size

The application buffer size as reported by the SSLSession.

swarm.elytron.server-ssl-contexts.KEY.ssl-sessions.KEY.cipher-suite

The selected cipher suite as reported by the SSLSession.

swarm.elytron.server-ssl-contexts.KEY.ssl-sessions.KEY.creation-time

The creation time as reported by the SSLSession.

swarm.elytron.server-ssl-contexts.KEY.ssl-sessions.KEY.last-accessed-time

The last accessed time as reported by the SSLSession.

swarm.elytron.server-ssl-contexts.KEY.ssl-sessions.KEY.local-certificates

The local certificates from the SSLSession.

swarm.elytron.server-ssl-contexts.KEY.ssl-sessions.KEY.local-principal

The local principal as reported by the SSLSession.

swarm.elytron.server-ssl-contexts.KEY.ssl-sessions.KEY.packet-buffer-size

The packet buffer size as reported by the SSLSession.

swarm.elytron.server-ssl-contexts.KEY.ssl-sessions.KEY.peer-certificates

The peer certificates from the SSLSession.

swarm.elytron.server-ssl-contexts.KEY.ssl-sessions.KEY.peer-host

The peer host as reported by the SSLSession.

swarm.elytron.server-ssl-contexts.KEY.ssl-sessions.KEY.peer-port

The peer port as reported by the SSLSession.

swarm.elytron.server-ssl-contexts.KEY.ssl-sessions.KEY.peer-principal

The peer principal as reported by the SSLSession.

swarm.elytron.server-ssl-contexts.KEY.ssl-sessions.KEY.protocol

The protocol as reported by the SSLSession.

swarm.elytron.server-ssl-contexts.KEY.ssl-sessions.KEY.valid

The validity of the session as reported by the SSLSession.

swarm.elytron.server-ssl-contexts.KEY.trust-manager

Reference to the trust manager to use within the SSLContext.

swarm.elytron.server-ssl-contexts.KEY.use-cipher-suites-order

To honor local cipher suites preference.

swarm.elytron.server-ssl-contexts.KEY.want-client-auth

To request (but not to require) a client certificate on SSL handshake. If a security domain is referenced and supports X509 evidence, this will be set to true automatically. Ignored when need-client-auth is set.

swarm.elytron.server-ssl-contexts.KEY.wrap

Should the SSLEngine, SSLSocket, and SSLServerSocket instances returned be wrapped to protect against further modification.

swarm.elytron.service-loader-http-server-mechanism-factories.KEY.available-mechanisms

The HTTP mechanisms available from this factory instance.

swarm.elytron.service-loader-http-server-mechanism-factories.KEY.module

The module to use to obtain the classloader to load the factories, if not specified the classloader to load the resource will be used instead.

swarm.elytron.service-loader-sasl-server-factories.KEY.available-mechanisms

The SASL mechanisms available from this factory after all filtering has been applied.

swarm.elytron.service-loader-sasl-server-factories.KEY.module

The module to use to obtain the classloader to load the factories, if not specified the classloader to load the resource will be used instead.

swarm.elytron.simple-permission-mappers.KEY.mapping-mode

The mapping mode that should be used in the event of multiple matches.

swarm.elytron.simple-permission-mappers.KEY.permission-mappings

The defined permission mappings.

swarm.elytron.simple-regex-realm-mappers.KEY.delegate-realm-mapper

The RealmMapper to delegate to if there is no match using the pattern.

swarm.elytron.simple-regex-realm-mappers.KEY.pattern

The regular expression which must contain at least one capture group to extract the realm from the name. If the regular expression matches more than one capture group, the first capture group is used.

swarm.elytron.simple-role-decoders.KEY.attribute

The name of the attribute from the identity to map directly to roles.

swarm.elytron.size-rotating-file-audit-logs.KEY.attribute-synchronized

Whether every event should be immediately synchronised to disk.

swarm.elytron.size-rotating-file-audit-logs.KEY.format

The format to use to record the audit event.

swarm.elytron.size-rotating-file-audit-logs.KEY.max-backup-index

The maximum number of files to backup when rotating.

swarm.elytron.size-rotating-file-audit-logs.KEY.path

Path of the file to be written.

swarm.elytron.size-rotating-file-audit-logs.KEY.relative-to

The relative path to the audit log.

swarm.elytron.size-rotating-file-audit-logs.KEY.rotate-on-boot

Whether the file should be rotated before the a new file is set.

swarm.elytron.size-rotating-file-audit-logs.KEY.rotate-size

The log file size the file should rotate at.

swarm.elytron.size-rotating-file-audit-logs.KEY.suffix

Format of date used as suffix of log file names in java.time.format.DateTimeFormatter. The suffix does not play a role in determining when the file should be rotated.

swarm.elytron.syslog-audit-logs.KEY.format

The format to use to record the audit event.

swarm.elytron.syslog-audit-logs.KEY.host-name

The host name to embed withing all events sent to the remote syslog server.

swarm.elytron.syslog-audit-logs.KEY.port

The listening port on the syslog server.

swarm.elytron.syslog-audit-logs.KEY.server-address

The server address of the syslog server the events should be sent to.

swarm.elytron.syslog-audit-logs.KEY.ssl-context

The SSLContext to use to connect to the syslog server when SSL_TCP transport is used.

swarm.elytron.syslog-audit-logs.KEY.transport

The transport to use to connect to the syslog server.

swarm.elytron.token-realms.KEY.jwt

A token validator to be used in conjunction with a token-based realm that handles security tokens based on the JWT/JWS standard.

swarm.elytron.token-realms.KEY.oauth2-introspection

A token validator to be used in conjunction with a token-based realm that handles OAuth2 Access Tokens and validates them using an endpoint compliant with OAuth2 Token Introspection specification(RFC-7662).

swarm.elytron.token-realms.KEY.principal-claim

The name of the claim that should be used to obtain the principal’s name.

swarm.elytron.trust-managers.KEY.algorithm

The name of the algorithm to use to create the underlying TrustManagerFactory.

swarm.elytron.trust-managers.KEY.alias-filter

A filter to apply to the aliases returned from the KeyStore, can either be a comma separated list of aliases to return or one of the following formats ALL:-alias1:-alias2, NONE:+alias1:+alias2

swarm.elytron.trust-managers.KEY.certificate-revocation-list

Enables certificate revocation list checks to a trust manager.

swarm.elytron.trust-managers.KEY.key-store

Reference to the KeyStore to use to initialise the underlying TrustManagerFactory.

swarm.elytron.trust-managers.KEY.provider-name

The name of the provider to use to create the underlying TrustManagerFactory.

swarm.elytron.trust-managers.KEY.providers

Reference to obtain the Provider[] to use when creating the underlying TrustManagerFactory.

swarm.elytron.x500-attribute-principal-decoders.KEY.attribute-name

The name of the X.500 attribute to map (can be defined using OID instead)

swarm.elytron.x500-attribute-principal-decoders.KEY.convert

When set to 'true', if the Principal is not already an X500Principal conversion will be attempted

swarm.elytron.x500-attribute-principal-decoders.KEY.joiner

The joining string

swarm.elytron.x500-attribute-principal-decoders.KEY.maximum-segments

The maximum number of occurrences of the attribute to map

swarm.elytron.x500-attribute-principal-decoders.KEY.oid

The OID of the X.500 attribute to map (can be defined using attribute name instead)

swarm.elytron.x500-attribute-principal-decoders.KEY.required-attributes

The attributes names of the attributes that must be present in the principal

swarm.elytron.x500-attribute-principal-decoders.KEY.required-oids

The OIDs of the attributes that must be present in the principal

swarm.elytron.x500-attribute-principal-decoders.KEY.reverse

When set to 'true', the attribute values will be processed and returned in reverse order

swarm.elytron.x500-attribute-principal-decoders.KEY.start-segment

The 0-based starting occurrence of the attribute to map

Configuration

swarm.hystrix.collapser.default.maxRequestsInBatch

The maximum number of requests allowed in a batch before this triggers a batch execution

swarm.hystrix.collapser.default.requestCache.enabled

Indicates whether request caching is enabled for HystrixCollapser.execute() and HystrixCollapser.queue() invocations

swarm.hystrix.collapser.default.timerDelayInMilliseconds

The number of milliseconds after the creation of the batch that its execution is triggered

swarm.hystrix.command.default.circuitBreaker.enabled

Determines whether a circuit breaker will be used to track health and to short-circuit requests if it trips

swarm.hystrix.command.default.circuitBreaker.errorThresholdPercentage

The error percentage at or above which the circuit should trip open and start short-circuiting requests to fallback logic

swarm.hystrix.command.default.circuitBreaker.forceClosed

If true, forces the circuit breaker into a closed state in which it will allow requests regardless of the error percentage

swarm.hystrix.command.default.circuitBreaker.forceOpen

If true, forces the circuit breaker into an open (tripped) state in which it will reject all requests

swarm.hystrix.command.default.circuitBreaker.requestVolumeThreshold

The minimum number of requests in a rolling window that will trip the circuit

swarm.hystrix.command.default.circuitBreaker.sleepWindowInMilliseconds

The amount of time, after tripping the circuit, to reject requests before allowing attempts again to determine if the circuit should again be closed

swarm.hystrix.command.default.execution.isolation.semaphore.maxConcurrentRequests

The maximum number of requests allowed to a HystrixCommand.run() method when you are using ExecutionIsolationStrategy.SEMAPHORE

swarm.hystrix.command.default.execution.isolation.strategy

Isolation strategy (THREAD or SEMAPHORE)

swarm.hystrix.command.default.execution.isolation.thread.interruptOnCancel

Indicates whether the HystrixCommand.run() execution should be interrupted when a cancellation occurs

swarm.hystrix.command.default.execution.isolation.thread.interruptOnTimeout

Indicates whether the HystrixCommand.run() execution should be interrupted when a timeout occurs

swarm.hystrix.command.default.execution.isolation.thread.timeoutInMilliseconds

The time in milliseconds after which the caller will observe a timeout and walk away from the command execution

swarm.hystrix.command.default.execution.timeout.enabled

Indicates whether the HystrixCommand.run() execution should have a timeout

swarm.hystrix.command.default.fallback.enabled

Determines whether a call to HystrixCommand.getFallback() will be attempted when failure or rejection occurs

swarm.hystrix.command.default.fallback.isolation.semaphore.maxConcurrentRequests

The maximum number of requests allowed to a HystrixCommand.getFallback() method when you are using ExecutionIsolationStrategy.SEMAPHORE

swarm.hystrix.command.default.metrics.healthSnapshot.intervalInMilliseconds

The time to wait, in milliseconds, between allowing health snapshots to be taken that calculate success and error percentages and affect circuit breaker status

swarm.hystrix.command.default.metrics.rollingPercentile.bucketSize

The maximum number of execution times that are kept per bucket

swarm.hystrix.command.default.metrics.rollingPercentile.enabled

Indicates whether execution latencies should be tracked and calculated as percentiles

swarm.hystrix.command.default.metrics.rollingPercentile.numBuckets

The number of buckets the rollingPercentile window will be divided into

swarm.hystrix.command.default.metrics.rollingPercentile.timeInMilliseconds

The duration of the rolling window in which execution times are kept to allow for percentile calculations, in milliseconds

swarm.hystrix.command.default.metrics.rollingStats.numBuckets

The number of buckets the rolling statistical window is divided into

swarm.hystrix.command.default.metrics.rollingStats.timeInMilliseconds

The duration of the statistical rolling window, in milliseconds. This is how long Hystrix keeps metrics for the circuit breaker to use and for publishing

swarm.hystrix.command.default.requestCache.enabled

Indicates whether HystrixCommand.getCacheKey() should be used with HystrixRequestCache to provide de-duplication functionality via request-scoped caching

swarm.hystrix.command.default.requestLog.enabled

Indicates whether HystrixCommand execution and events should be logged to HystrixRequestLog

swarm.hystrix.stream.path

Context path for the stream

swarm.hystrix.threadpool.default.allowMaximumSizeToDivergeFromCoreSize

Allows the configuration for maximumSize to take effect

swarm.hystrix.threadpool.default.coreSize

The core thread-pool size

swarm.hystrix.threadpool.default.keepAliveTimeMinutes

The keep-alive time, in minutes

swarm.hystrix.threadpool.default.maxQueueSize

The maximum queue size of the BlockingQueue implementation

swarm.hystrix.threadpool.default.maximumSize

The maximum thread-pool size

swarm.hystrix.threadpool.default.metrics.rollingPercentile.numBuckets

The number of buckets the rolling statistical window is divided into

swarm.hystrix.threadpool.default.metrics.rollingStats.timeInMilliseconds

The duration of the statistical rolling window, in milliseconds

swarm.hystrix.threadpool.default.queueSizeRejectionThreshold

The queue size rejection threshold - an artificial maximum queue size at which rejections will occur even if maxQueueSize has not been reached

Configuration

swarm.io.buffer-pools.KEY.buffer-size

The size of each buffer slice in bytes, if not set optimal value is calculated based on available RAM resources in your system.

swarm.io.buffer-pools.KEY.buffers-per-slice

How many buffers per slice, if not set optimal value is calculated based on available RAM resources in your system.

swarm.io.buffer-pools.KEY.direct-buffers

Does the buffer pool use direct buffers, some platforms don’t support direct buffers

swarm.io.workers.KEY.core-pool-size

Minimum number of threads to keep in the underlying java.util.concurrent.ThreadPoolExecutor even if they are idle. Threads over this limit will be terminated over time specified by task-keepalive attribute.

swarm.io.workers.KEY.io-thread-count

I/O thread count

swarm.io.workers.KEY.io-threads

Specify the number of I/O threads to create for the worker. If not specified, a default will be chosen, which is calculated by cpuCount * 2

swarm.io.workers.KEY.max-pool-size

The maximum number of threads to allow in the thread pool. Depending on implementation, when this limit is reached, tasks which cannot be queued may be rejected.

swarm.io.workers.KEY.outbound-bind-address.KEY.bind-address

The address to bind to when the destination address matches

swarm.io.workers.KEY.outbound-bind-address.KEY.bind-port

The port number to bind to when the destination address matches

swarm.io.workers.KEY.outbound-bind-address.KEY.match

The destination address range to match

swarm.io.workers.KEY.queue-size

An estimate of the number of tasks in the worker queue.

swarm.io.workers.KEY.servers.KEY.connection-count

Estimate of the current connection count

swarm.io.workers.KEY.servers.KEY.connection-limit-high-water-mark

If the connection count hits this number, no new connections will be accepted until the count drops below the low-water mark.

swarm.io.workers.KEY.servers.KEY.connection-limit-low-water-mark

If the connection count has previously hit the high water mark, once it drops back down below this count, connections will be accepted again.

swarm.io.workers.KEY.shutdown-requested

True is shutdown of the pool was requested

swarm.io.workers.KEY.stack-size

The stack size (in bytes) to attempt to use for worker threads.

swarm.io.workers.KEY.task-keepalive

Specify the number of milliseconds to keep non-core task threads alive.

swarm.io.workers.KEY.task-max-threads

Specify the maximum number of threads for the worker task thread pool.If not set, default value used which is calculated by formula cpuCount * 16,as long as MaxFileDescriptorCount jmx property allows that number, otherwise calculation takes max into account to adjust it accordingly.

Configuration

swarm.jaeger.agent-host

The hostname for communicating with agent via UDP

swarm.jaeger.agent-port

The port for communicating with agent via UDP

swarm.jaeger.enable-b3-header-propagation

Whether to enable propagation of B3 headers in the configured Tracer. By default this is false.

swarm.jaeger.password

Password to send as part of "Basic" authentication to the endpoint

swarm.jaeger.remote-reporter-http-endpoint

Remote Reporter HTTP endpoint for Jaeger collector, such as http://jaeger-collector.istio-system:14268/api/traces

swarm.jaeger.reporter-flush-interval

The reporter’s flush interval (ms)

swarm.jaeger.reporter-log-spans

Whether the reporter should also log the spans

swarm.jaeger.reporter-max-queue-size

The reporter’s maximum queue size

swarm.jaeger.sampler-manager-host

The host name and port when using the remote controlled sampler

swarm.jaeger.sampler-parameter

The sampler parameter (number). Ex.: 1

swarm.jaeger.sampler-type

The sampler type. Ex.: const

swarm.jaeger.service-name

The service name. Required (via this parameter, system property or env var). Ex.: order-manager

swarm.jaeger.user

Username to send as part of "Basic" authentication to the endpoint

Configuration

swarm.deployment.KEY.jaxrs.application-path

Set the JAX-RS application path. If set, Thorntail will automatically generate a JAX-RS Application class and use this value as the @ApplicationPath

Configuration

swarm.jca.archive-validation.enabled

Specify whether archive validation is enabled

swarm.jca.archive-validation.fail-on-error

Should an archive validation error report fail the deployment

swarm.jca.archive-validation.fail-on-warn

Should an archive validation warning report fail the deployment

swarm.jca.bean-validation.enabled

Specify whether bean validation is enabled

swarm.jca.bootstrap-contexts.KEY.name

The name of the BootstrapContext

swarm.jca.bootstrap-contexts.KEY.workmanager

The WorkManager instance for the BootstrapContext

swarm.jca.cached-connection-manager.debug

Enable/disable debug information logging

swarm.jca.cached-connection-manager.error

Enable/disable error information logging

swarm.jca.cached-connection-manager.ignore-unknown-connections

Do not cache unknown connections

swarm.jca.cached-connection-manager.install

Enable/disable the cached connection manager valve and interceptor

swarm.jca.distributed-workmanagers.KEY.elytron-enabled

Enables Elytron security for this workmanager.

swarm.jca.distributed-workmanagers.KEY.long-running-threads.KEY.allow-core-timeout

Whether core threads may time out.

swarm.jca.distributed-workmanagers.KEY.long-running-threads.KEY.core-threads

The core thread pool size which is smaller than the maximum pool size. If undefined, the core thread pool size is the same as the maximum thread pool size.

swarm.jca.distributed-workmanagers.KEY.long-running-threads.KEY.current-thread-count

The current number of threads in the pool.

swarm.jca.distributed-workmanagers.KEY.long-running-threads.KEY.handoff-executor

An executor to delegate tasks to in the event that a task cannot be accepted. If not specified, tasks that cannot be accepted will be silently discarded.

swarm.jca.distributed-workmanagers.KEY.long-running-threads.KEY.keepalive-time

Used to specify the amount of time that pool threads should be kept running when idle; if not specified, threads will run until the executor is shut down.

swarm.jca.distributed-workmanagers.KEY.long-running-threads.KEY.largest-thread-count

The largest number of threads that have ever simultaneously been in the pool.

swarm.jca.distributed-workmanagers.KEY.long-running-threads.KEY.max-threads

The maximum thread pool size.

swarm.jca.distributed-workmanagers.KEY.long-running-threads.KEY.name

The name of the thread pool.

swarm.jca.distributed-workmanagers.KEY.long-running-threads.KEY.queue-length

The queue length.

swarm.jca.distributed-workmanagers.KEY.long-running-threads.KEY.queue-size

The queue size.

swarm.jca.distributed-workmanagers.KEY.long-running-threads.KEY.rejected-count

The number of tasks that have been passed to the handoff-executor (if one is specified) or discarded.

swarm.jca.distributed-workmanagers.KEY.long-running-threads.KEY.thread-factory

Specifies the name of a specific thread factory to use to create worker threads. If not defined an appropriate default thread factory will be used.

swarm.jca.distributed-workmanagers.KEY.name

The name of the DistributedWorkManager

swarm.jca.distributed-workmanagers.KEY.policy

The policy decides when to redistribute a Work instance

swarm.jca.distributed-workmanagers.KEY.policy-options

List of policy’s options key/value pairs

swarm.jca.distributed-workmanagers.KEY.selector

The selector decides to which nodes in the network to redistribute the Work instance to

swarm.jca.distributed-workmanagers.KEY.selector-options

List of selector’s options key/value pairs

swarm.jca.distributed-workmanagers.KEY.short-running-threads.KEY.allow-core-timeout

Whether core threads may time out.

swarm.jca.distributed-workmanagers.KEY.short-running-threads.KEY.core-threads

The core thread pool size which is smaller than the maximum pool size. If undefined, the core thread pool size is the same as the maximum thread pool size.

swarm.jca.distributed-workmanagers.KEY.short-running-threads.KEY.current-thread-count

The current number of threads in the pool.

swarm.jca.distributed-workmanagers.KEY.short-running-threads.KEY.handoff-executor

An executor to delegate tasks to in the event that a task cannot be accepted. If not specified, tasks that cannot be accepted will be silently discarded.

swarm.jca.distributed-workmanagers.KEY.short-running-threads.KEY.keepalive-time

Used to specify the amount of time that pool threads should be kept running when idle; if not specified, threads will run until the executor is shut down.

swarm.jca.distributed-workmanagers.KEY.short-running-threads.KEY.largest-thread-count

The largest number of threads that have ever simultaneously been in the pool.

swarm.jca.distributed-workmanagers.KEY.short-running-threads.KEY.max-threads

The maximum thread pool size.

swarm.jca.distributed-workmanagers.KEY.short-running-threads.KEY.name

The name of the thread pool.

swarm.jca.distributed-workmanagers.KEY.short-running-threads.KEY.queue-length

The queue length.

swarm.jca.distributed-workmanagers.KEY.short-running-threads.KEY.queue-size

The queue size.

swarm.jca.distributed-workmanagers.KEY.short-running-threads.KEY.rejected-count

The number of tasks that have been passed to the handoff-executor (if one is specified) or discarded.

swarm.jca.distributed-workmanagers.KEY.short-running-threads.KEY.thread-factory

Specifies the name of a specific thread factory to use to create worker threads. If not defined an appropriate default thread factory will be used.

swarm.jca.tracer.enabled

Specify whether tracer is enabled

swarm.jca.workmanagers.KEY.elytron-enabled

Enables Elytron security for this workmanager.

swarm.jca.workmanagers.KEY.long-running-threads.KEY.allow-core-timeout

Whether core threads may time out.

swarm.jca.workmanagers.KEY.long-running-threads.KEY.core-threads

The core thread pool size which is smaller than the maximum pool size. If undefined, the core thread pool size is the same as the maximum thread pool size.

swarm.jca.workmanagers.KEY.long-running-threads.KEY.current-thread-count

The current number of threads in the pool.

swarm.jca.workmanagers.KEY.long-running-threads.KEY.handoff-executor

An executor to delegate tasks to in the event that a task cannot be accepted. If not specified, tasks that cannot be accepted will be silently discarded.

swarm.jca.workmanagers.KEY.long-running-threads.KEY.keepalive-time

Used to specify the amount of time that pool threads should be kept running when idle; if not specified, threads will run until the executor is shut down.

swarm.jca.workmanagers.KEY.long-running-threads.KEY.largest-thread-count

The largest number of threads that have ever simultaneously been in the pool.

swarm.jca.workmanagers.KEY.long-running-threads.KEY.max-threads

The maximum thread pool size.

swarm.jca.workmanagers.KEY.long-running-threads.KEY.name

The name of the thread pool.

swarm.jca.workmanagers.KEY.long-running-threads.KEY.queue-length

The queue length.

swarm.jca.workmanagers.KEY.long-running-threads.KEY.queue-size

The queue size.

swarm.jca.workmanagers.KEY.long-running-threads.KEY.rejected-count

The number of tasks that have been passed to the handoff-executor (if one is specified) or discarded.

swarm.jca.workmanagers.KEY.long-running-threads.KEY.thread-factory

Specifies the name of a specific thread factory to use to create worker threads. If not defined an appropriate default thread factory will be used.

swarm.jca.workmanagers.KEY.name

The name of the WorkManager

swarm.jca.workmanagers.KEY.short-running-threads.KEY.allow-core-timeout

Whether core threads may time out.

swarm.jca.workmanagers.KEY.short-running-threads.KEY.core-threads

The core thread pool size which is smaller than the maximum pool size. If undefined, the core thread pool size is the same as the maximum thread pool size.

swarm.jca.workmanagers.KEY.short-running-threads.KEY.current-thread-count

The current number of threads in the pool.

swarm.jca.workmanagers.KEY.short-running-threads.KEY.handoff-executor

An executor to delegate tasks to in the event that a task cannot be accepted. If not specified, tasks that cannot be accepted will be silently discarded.

swarm.jca.workmanagers.KEY.short-running-threads.KEY.keepalive-time

Used to specify the amount of time that pool threads should be kept running when idle; if not specified, threads will run until the executor is shut down.

swarm.jca.workmanagers.KEY.short-running-threads.KEY.largest-thread-count

The largest number of threads that have ever simultaneously been in the pool.

swarm.jca.workmanagers.KEY.short-running-threads.KEY.max-threads

The maximum thread pool size.

swarm.jca.workmanagers.KEY.short-running-threads.KEY.name

The name of the thread pool.

swarm.jca.workmanagers.KEY.short-running-threads.KEY.queue-length

The queue length.

swarm.jca.workmanagers.KEY.short-running-threads.KEY.queue-size

The queue size.

swarm.jca.workmanagers.KEY.short-running-threads.KEY.rejected-count

The number of tasks that have been passed to the handoff-executor (if one is specified) or discarded.

swarm.jca.workmanagers.KEY.short-running-threads.KEY.thread-factory

Specifies the name of a specific thread factory to use to create worker threads. If not defined an appropriate default thread factory will be used.

Configuration

swarm.jmx.audit-log-configuration.enabled

Whether audit logging is enabled.

swarm.jmx.audit-log-configuration.log-boot

Whether operations should be logged on server boot.

swarm.jmx.audit-log-configuration.log-read-only

Whether operations that do not modify the configuration or any runtime services should be logged.

swarm.jmx.expression-expose-model.domain-name

The domain name to use for the 'expression' model controller JMX facade in the MBeanServer.

swarm.jmx.jmx-remoting-connector.use-management-endpoint

If true the connector will use the management endpoint, otherwise it will use the remoting subsystem one

swarm.jmx.non-core-mbean-sensitivity

Whether or not core MBeans, i.e. mbeans not coming from the model controller, should be considered sensitive.

swarm.jmx.resolved-expose-model.domain-name

The domain name to use for the 'resolved' model controller JMX facade in the MBeanServer.

swarm.jmx.resolved-expose-model.proper-property-format

If false, PROPERTY type attributes are represented as a DMR string, this is the legacy behaviour. If true, PROPERTY type attributes are represented by a composite type where the key is a string, and the value has the same type as the property in the underlying model.

swarm.jmx.show-model

Alias for the existence of the 'resolved' model controller jmx facade. When writing, if set to 'true' it will add the 'resolved' model controller jmx facade resource with the default domain name.

Configuration

swarm.jpa.default-datasource

The name of the default global datasource.

swarm.jpa.default-extended-persistence-inheritance

Controls how JPA extended persistence context (XPC) inheritance is performed. 'DEEP' shares the extended persistence context at top bean level. 'SHALLOW' the extended persistece context is only shared with the parent bean (never with sibling beans).

Configuration

swarm.jsf.default-jsf-impl-slot

Default JSF implementation slot

Configuration

swarm.keycloak.json.path

Path to Keycloak adapter configuration

swarm.keycloak.multitenancy.paths

Map of the relative request paths to Keycloak adapter configuration locations

swarm.keycloak.realms.KEY.allow-any-hostname

SSL Setting

swarm.keycloak.realms.KEY.always-refresh-token

Refresh token on every single web request

swarm.keycloak.realms.KEY.auth-server-url

Base URL of the Realm Auth Server

swarm.keycloak.realms.KEY.auth-server-url-for-backend-requests

URL to use to make background calls to auth server

swarm.keycloak.realms.KEY.autodetect-bearer-only

autodetect bearer-only requests

swarm.keycloak.realms.KEY.client-key-password

n/a

swarm.keycloak.realms.KEY.client-keystore

n/a

swarm.keycloak.realms.KEY.client-keystore-password

n/a

swarm.keycloak.realms.KEY.connection-pool-size

Connection pool size for the client used by the adapter

swarm.keycloak.realms.KEY.cors-allowed-headers

CORS allowed headers

swarm.keycloak.realms.KEY.cors-allowed-methods

CORS allowed methods

swarm.keycloak.realms.KEY.cors-exposed-headers

CORS exposed headers

swarm.keycloak.realms.KEY.cors-max-age

CORS max-age header

swarm.keycloak.realms.KEY.disable-trust-manager

Adapter will not use a trust manager when making adapter HTTPS requests

swarm.keycloak.realms.KEY.enable-cors

Enable Keycloak CORS support

swarm.keycloak.realms.KEY.expose-token

Enable secure URL that exposes access token

swarm.keycloak.realms.KEY.ignore-oauth-query-parameter

disable query parameter parsing for access_token

swarm.keycloak.realms.KEY.principal-attribute

token attribute to use to set Principal name

swarm.keycloak.realms.KEY.realm-public-key

Public key of the realm

swarm.keycloak.realms.KEY.register-node-at-startup

Cluster setting

swarm.keycloak.realms.KEY.register-node-period

how often to re-register node

swarm.keycloak.realms.KEY.ssl-required

Specify if SSL is required (valid values are all, external and none)

swarm.keycloak.realms.KEY.token-store

cookie or session storage for auth session data

swarm.keycloak.realms.KEY.truststore

Truststore used for adapter client HTTPS requests

swarm.keycloak.realms.KEY.truststore-password

Password of the Truststore

swarm.keycloak.secure-deployments.KEY.allow-any-hostname

SSL Setting

swarm.keycloak.secure-deployments.KEY.always-refresh-token

Refresh token on every single web request

swarm.keycloak.secure-deployments.KEY.auth-server-url

Base URL of the Realm Auth Server

swarm.keycloak.secure-deployments.KEY.auth-server-url-for-backend-requests

URL to use to make background calls to auth server

swarm.keycloak.secure-deployments.KEY.autodetect-bearer-only

autodetect bearer-only requests

swarm.keycloak.secure-deployments.KEY.bearer-only

Bearer Token Auth only

swarm.keycloak.secure-deployments.KEY.client-key-password

n/a

swarm.keycloak.secure-deployments.KEY.client-keystore

n/a

swarm.keycloak.secure-deployments.KEY.client-keystore-password

n/a

swarm.keycloak.secure-deployments.KEY.connection-pool-size

Connection pool size for the client used by the adapter

swarm.keycloak.secure-deployments.KEY.cors-allowed-headers

CORS allowed headers

swarm.keycloak.secure-deployments.KEY.cors-allowed-methods

CORS allowed methods

swarm.keycloak.secure-deployments.KEY.cors-exposed-headers

CORS exposed headers

swarm.keycloak.secure-deployments.KEY.cors-max-age

CORS max-age header

swarm.keycloak.secure-deployments.KEY.credentials.KEY.value

Credential value

swarm.keycloak.secure-deployments.KEY.disable-trust-manager

Adapter will not use a trust manager when making adapter HTTPS requests

swarm.keycloak.secure-deployments.KEY.enable-basic-auth

Enable Basic Authentication

swarm.keycloak.secure-deployments.KEY.enable-cors

Enable Keycloak CORS support

swarm.keycloak.secure-deployments.KEY.expose-token

Enable secure URL that exposes access token

swarm.keycloak.secure-deployments.KEY.ignore-oauth-query-parameter

disable query parameter parsing for access_token

swarm.keycloak.secure-deployments.KEY.min-time-between-jwks-requests

If adapter recognize token signed by unknown public key, it will try to download new public key from keycloak server. However it won’t try to download if already tried it in less than 'min-time-between-jwks-requests' seconds

swarm.keycloak.secure-deployments.KEY.principal-attribute

token attribute to use to set Principal name

swarm.keycloak.secure-deployments.KEY.public-client

Public client

swarm.keycloak.secure-deployments.KEY.realm

Keycloak realm

swarm.keycloak.secure-deployments.KEY.realm-public-key

Public key of the realm

swarm.keycloak.secure-deployments.KEY.redirect-rewrite-rules.KEY.value

redirect-rewrite-rule value

swarm.keycloak.secure-deployments.KEY.register-node-at-startup

Cluster setting

swarm.keycloak.secure-deployments.KEY.register-node-period

how often to re-register node

swarm.keycloak.secure-deployments.KEY.resource

Application name

swarm.keycloak.secure-deployments.KEY.ssl-required

Specify if SSL is required (valid values are all, external and none)

swarm.keycloak.secure-deployments.KEY.token-minimum-time-to-live

The adapter will refresh the token if the current token is expired OR will expire in 'token-minimum-time-to-live' seconds or less

swarm.keycloak.secure-deployments.KEY.token-store

cookie or session storage for auth session data

swarm.keycloak.secure-deployments.KEY.truststore

Truststore used for adapter client HTTPS requests

swarm.keycloak.secure-deployments.KEY.truststore-password

Password of the Truststore

swarm.keycloak.secure-deployments.KEY.turn-off-change-session-id-on-login

The session id is changed by default on a successful login. Change this to true if you want to turn this off

swarm.keycloak.secure-deployments.KEY.use-resource-role-mappings

Use resource level permissions from token

swarm.keycloak.secure-servers.KEY.allow-any-hostname

SSL Setting

swarm.keycloak.secure-servers.KEY.always-refresh-token

Refresh token on every single web request

swarm.keycloak.secure-servers.KEY.auth-server-url

Base URL of the Realm Auth Server

swarm.keycloak.secure-servers.KEY.auth-server-url-for-backend-requests

URL to use to make background calls to auth server

swarm.keycloak.secure-servers.KEY.autodetect-bearer-only

autodetect bearer-only requests

swarm.keycloak.secure-servers.KEY.bearer-only

Bearer Token Auth only

swarm.keycloak.secure-servers.KEY.client-key-password

n/a

swarm.keycloak.secure-servers.KEY.client-keystore

n/a

swarm.keycloak.secure-servers.KEY.client-keystore-password

n/a

swarm.keycloak.secure-servers.KEY.connection-pool-size

Connection pool size for the client used by the adapter

swarm.keycloak.secure-servers.KEY.cors-allowed-headers

CORS allowed headers

swarm.keycloak.secure-servers.KEY.cors-allowed-methods

CORS allowed methods

swarm.keycloak.secure-servers.KEY.cors-exposed-headers

CORS exposed headers

swarm.keycloak.secure-servers.KEY.cors-max-age

CORS max-age header

swarm.keycloak.secure-servers.KEY.credentials.KEY.value

Credential value

swarm.keycloak.secure-servers.KEY.disable-trust-manager

Adapter will not use a trust manager when making adapter HTTPS requests

swarm.keycloak.secure-servers.KEY.enable-basic-auth

Enable Basic Authentication

swarm.keycloak.secure-servers.KEY.enable-cors

Enable Keycloak CORS support

swarm.keycloak.secure-servers.KEY.expose-token

Enable secure URL that exposes access token

swarm.keycloak.secure-servers.KEY.ignore-oauth-query-parameter

disable query parameter parsing for access_token

swarm.keycloak.secure-servers.KEY.min-time-between-jwks-requests

If adapter recognize token signed by unknown public key, it will try to download new public key from keycloak server. However it won’t try to download if already tried it in less than 'min-time-between-jwks-requests' seconds

swarm.keycloak.secure-servers.KEY.principal-attribute

token attribute to use to set Principal name

swarm.keycloak.secure-servers.KEY.public-client

Public client

swarm.keycloak.secure-servers.KEY.realm

Keycloak realm

swarm.keycloak.secure-servers.KEY.realm-public-key

Public key of the realm

swarm.keycloak.secure-servers.KEY.redirect-rewrite-rules.KEY.value

redirect-rewrite-rule value

swarm.keycloak.secure-servers.KEY.register-node-at-startup

Cluster setting

swarm.keycloak.secure-servers.KEY.register-node-period

how often to re-register node

swarm.keycloak.secure-servers.KEY.resource

Application name

swarm.keycloak.secure-servers.KEY.ssl-required

Specify if SSL is required (valid values are all, external and none)

swarm.keycloak.secure-servers.KEY.token-minimum-time-to-live

The adapter will refresh the token if the current token is expired OR will expire in 'token-minimum-time-to-live' seconds or less

swarm.keycloak.secure-servers.KEY.token-store

cookie or session storage for auth session data

swarm.keycloak.secure-servers.KEY.truststore

Truststore used for adapter client HTTPS requests

swarm.keycloak.secure-servers.KEY.truststore-password

Password of the Truststore

swarm.keycloak.secure-servers.KEY.turn-off-change-session-id-on-login

The session id is changed by default on a successful login. Change this to true if you want to turn this off

swarm.keycloak.secure-servers.KEY.use-resource-role-mappings

Use resource level permissions from token

Configuration

swarm.logging.add-logging-api-dependencies

Indicates whether or not logging API dependencies should be added to deployments during the deployment process. A value of true will add the dependencies to the deployment. A value of false will skip the deployment from being processed for logging API dependencies.

swarm.logging.async-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.async-handlers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.async-handlers.KEY.level

The log level specifying which message levels will be logged by this handler. Message levels lower than this value will be discarded.

swarm.logging.async-handlers.KEY.name

The name of the handler.

swarm.logging.async-handlers.KEY.overflow-action

Specify what action to take when the overflowing. The valid options are 'block' and 'discard'

swarm.logging.async-handlers.KEY.queue-length

The queue length to use before flushing writing

swarm.logging.async-handlers.KEY.subhandlers

The Handlers associated with this async handler.

swarm.logging.console-handlers.KEY.autoflush

Automatically flush after each write.

swarm.logging.console-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.console-handlers.KEY.encoding

The character encoding used by this Handler.

swarm.logging.console-handlers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.console-handlers.KEY.formatter

Defines a pattern for the formatter.

swarm.logging.console-handlers.KEY.level

The log level specifying which message levels will be logged by this logger. Message levels lower than this value will be discarded.

swarm.logging.console-handlers.KEY.name

The name of the handler.

swarm.logging.console-handlers.KEY.named-formatter

The name of the defined formatter to be used on the handler.

swarm.logging.console-handlers.KEY.target

Defines the target of the console handler. The value can be System.out, System.err or console.

swarm.logging.custom-formatters.KEY.attribute-class

The logging handler class to be used.

swarm.logging.custom-formatters.KEY.module

The module that the logging handler depends on.

swarm.logging.custom-formatters.KEY.properties

Defines the properties used for the logging handler. All properties must be accessible via a setter method.

swarm.logging.custom-handlers.KEY.attribute-class

The logging handler class to be used.

swarm.logging.custom-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.custom-handlers.KEY.encoding

The character encoding used by this Handler.

swarm.logging.custom-handlers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.custom-handlers.KEY.formatter

Defines a pattern for the formatter.

swarm.logging.custom-handlers.KEY.level

The log level specifying which message levels will be logged by this logger. Message levels lower than this value will be discarded.

swarm.logging.custom-handlers.KEY.module

The module that the logging handler depends on.

swarm.logging.custom-handlers.KEY.name

The name of the handler.

swarm.logging.custom-handlers.KEY.named-formatter

The name of the defined formatter to be used on the handler.

swarm.logging.custom-handlers.KEY.properties

Defines the properties used for the logging handler. All properties must be accessible via a setter method.

swarm.logging.file-handlers.KEY.append

Specify whether to append to the target file.

swarm.logging.file-handlers.KEY.autoflush

Automatically flush after each write.

swarm.logging.file-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.file-handlers.KEY.encoding

The character encoding used by this Handler.

swarm.logging.file-handlers.KEY.file

The file description consisting of the path and optional relative to path.

swarm.logging.file-handlers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.file-handlers.KEY.formatter

Defines a pattern for the formatter.

swarm.logging.file-handlers.KEY.level

The log level specifying which message levels will be logged by this logger. Message levels lower than this value will be discarded.

swarm.logging.file-handlers.KEY.name

The name of the handler.

swarm.logging.file-handlers.KEY.named-formatter

The name of the defined formatter to be used on the handler.

swarm.logging.log-files.KEY.file-size

The size of the log file in bytes.

swarm.logging.log-files.KEY.last-modified-time

The date, in milliseconds, the file was last modified.

swarm.logging.log-files.KEY.last-modified-timestamp

The date, in ISO 8601 format, the file was last modified.

swarm.logging.log-files.KEY.stream

Provides the server log as a response attachment. The response result value is the unique id of the attachment.

swarm.logging.loggers.KEY.category

Specifies the category for the logger.

swarm.logging.loggers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.loggers.KEY.handlers

The handlers associated with the logger.

swarm.logging.loggers.KEY.level

The log level specifying which message levels will be logged by the logger. Message levels lower than this value will be discarded.

swarm.logging.loggers.KEY.use-parent-handlers

Specifies whether or not this logger should send its output to its parent Logger.

swarm.logging.logging-profiles.KEY.async-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.logging-profiles.KEY.async-handlers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.logging-profiles.KEY.async-handlers.KEY.level

The log level specifying which message levels will be logged by this handler. Message levels lower than this value will be discarded.

swarm.logging.logging-profiles.KEY.async-handlers.KEY.name

The name of the handler.

swarm.logging.logging-profiles.KEY.async-handlers.KEY.overflow-action

Specify what action to take when the overflowing. The valid options are 'block' and 'discard'

swarm.logging.logging-profiles.KEY.async-handlers.KEY.queue-length

The queue length to use before flushing writing

swarm.logging.logging-profiles.KEY.async-handlers.KEY.subhandlers

The Handlers associated with this async handler.

swarm.logging.logging-profiles.KEY.console-handlers.KEY.autoflush

Automatically flush after each write.

swarm.logging.logging-profiles.KEY.console-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.logging-profiles.KEY.console-handlers.KEY.encoding

The character encoding used by this Handler.

swarm.logging.logging-profiles.KEY.console-handlers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.logging-profiles.KEY.console-handlers.KEY.formatter

Defines a pattern for the formatter.

swarm.logging.logging-profiles.KEY.console-handlers.KEY.level

The log level specifying which message levels will be logged by this logger. Message levels lower than this value will be discarded.

swarm.logging.logging-profiles.KEY.console-handlers.KEY.name

The name of the handler.

swarm.logging.logging-profiles.KEY.console-handlers.KEY.named-formatter

The name of the defined formatter to be used on the handler.

swarm.logging.logging-profiles.KEY.console-handlers.KEY.target

Defines the target of the console handler. The value can be System.out, System.err or console.

swarm.logging.logging-profiles.KEY.custom-formatters.KEY.attribute-class

The logging handler class to be used.

swarm.logging.logging-profiles.KEY.custom-formatters.KEY.module

The module that the logging handler depends on.

swarm.logging.logging-profiles.KEY.custom-formatters.KEY.properties

Defines the properties used for the logging handler. All properties must be accessible via a setter method.

swarm.logging.logging-profiles.KEY.custom-handlers.KEY.attribute-class

The logging handler class to be used.

swarm.logging.logging-profiles.KEY.custom-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.logging-profiles.KEY.custom-handlers.KEY.encoding

The character encoding used by this Handler.

swarm.logging.logging-profiles.KEY.custom-handlers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.logging-profiles.KEY.custom-handlers.KEY.formatter

Defines a pattern for the formatter.

swarm.logging.logging-profiles.KEY.custom-handlers.KEY.level

The log level specifying which message levels will be logged by this logger. Message levels lower than this value will be discarded.

swarm.logging.logging-profiles.KEY.custom-handlers.KEY.module

The module that the logging handler depends on.

swarm.logging.logging-profiles.KEY.custom-handlers.KEY.name

The name of the handler.

swarm.logging.logging-profiles.KEY.custom-handlers.KEY.named-formatter

The name of the defined formatter to be used on the handler.

swarm.logging.logging-profiles.KEY.custom-handlers.KEY.properties

Defines the properties used for the logging handler. All properties must be accessible via a setter method.

swarm.logging.logging-profiles.KEY.file-handlers.KEY.append

Specify whether to append to the target file.

swarm.logging.logging-profiles.KEY.file-handlers.KEY.autoflush

Automatically flush after each write.

swarm.logging.logging-profiles.KEY.file-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.logging-profiles.KEY.file-handlers.KEY.encoding

The character encoding used by this Handler.

swarm.logging.logging-profiles.KEY.file-handlers.KEY.file

The file description consisting of the path and optional relative to path.

swarm.logging.logging-profiles.KEY.file-handlers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.logging-profiles.KEY.file-handlers.KEY.formatter

Defines a pattern for the formatter.

swarm.logging.logging-profiles.KEY.file-handlers.KEY.level

The log level specifying which message levels will be logged by this logger. Message levels lower than this value will be discarded.

swarm.logging.logging-profiles.KEY.file-handlers.KEY.name

The name of the handler.

swarm.logging.logging-profiles.KEY.file-handlers.KEY.named-formatter

The name of the defined formatter to be used on the handler.

swarm.logging.logging-profiles.KEY.log-files.KEY.file-size

The size of the log file in bytes.

swarm.logging.logging-profiles.KEY.log-files.KEY.last-modified-time

The date, in milliseconds, the file was last modified.

swarm.logging.logging-profiles.KEY.log-files.KEY.last-modified-timestamp

The date, in ISO 8601 format, the file was last modified.

swarm.logging.logging-profiles.KEY.log-files.KEY.stream

Provides the server log as a response attachment. The response result value is the unique id of the attachment.

swarm.logging.logging-profiles.KEY.loggers.KEY.category

Specifies the category for the logger.

swarm.logging.logging-profiles.KEY.loggers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.logging-profiles.KEY.loggers.KEY.handlers

The handlers associated with the logger.

swarm.logging.logging-profiles.KEY.loggers.KEY.level

The log level specifying which message levels will be logged by the logger. Message levels lower than this value will be discarded.

swarm.logging.logging-profiles.KEY.loggers.KEY.use-parent-handlers

Specifies whether or not this logger should send its output to its parent Logger.

swarm.logging.logging-profiles.KEY.pattern-formatters.KEY.color-map

The color-map attribute allows for a comma delimited list of colors to be used for different levels with a pattern formatter. The format for the color mapping pattern is level-name:color-name.Valid Levels; severe, fatal, error, warn, warning, info, debug, trace, config, fine, finer, finest Valid Colors; black, green, red, yellow, blue, magenta, cyan, white, brightblack, brightred, brightgreen, brightblue, brightyellow, brightmagenta, brightcyan, brightwhite

swarm.logging.logging-profiles.KEY.pattern-formatters.KEY.pattern

Defines a pattern for the formatter.

swarm.logging.logging-profiles.KEY.periodic-rotating-file-handlers.KEY.append

Specify whether to append to the target file.

swarm.logging.logging-profiles.KEY.periodic-rotating-file-handlers.KEY.autoflush

Automatically flush after each write.

swarm.logging.logging-profiles.KEY.periodic-rotating-file-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.logging-profiles.KEY.periodic-rotating-file-handlers.KEY.encoding

The character encoding used by this Handler.

swarm.logging.logging-profiles.KEY.periodic-rotating-file-handlers.KEY.file

The file description consisting of the path and optional relative to path.

swarm.logging.logging-profiles.KEY.periodic-rotating-file-handlers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.logging-profiles.KEY.periodic-rotating-file-handlers.KEY.formatter

Defines a pattern for the formatter.

swarm.logging.logging-profiles.KEY.periodic-rotating-file-handlers.KEY.level

The log level specifying which message levels will be logged by this logger. Message levels lower than this value will be discarded.

swarm.logging.logging-profiles.KEY.periodic-rotating-file-handlers.KEY.name

The name of the handler.

swarm.logging.logging-profiles.KEY.periodic-rotating-file-handlers.KEY.named-formatter

The name of the defined formatter to be used on the handler.

swarm.logging.logging-profiles.KEY.periodic-rotating-file-handlers.KEY.suffix

Set the suffix string. The string is in a format which can be understood by java.text.SimpleDateFormat. The period of the rotation is automatically calculated based on the suffix.

swarm.logging.logging-profiles.KEY.periodic-size-rotating-file-handlers.KEY.append

Specify whether to append to the target file.

swarm.logging.logging-profiles.KEY.periodic-size-rotating-file-handlers.KEY.autoflush

Automatically flush after each write.

swarm.logging.logging-profiles.KEY.periodic-size-rotating-file-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.logging-profiles.KEY.periodic-size-rotating-file-handlers.KEY.encoding

The character encoding used by this Handler.

swarm.logging.logging-profiles.KEY.periodic-size-rotating-file-handlers.KEY.file

The file description consisting of the path and optional relative to path.

swarm.logging.logging-profiles.KEY.periodic-size-rotating-file-handlers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.logging-profiles.KEY.periodic-size-rotating-file-handlers.KEY.formatter

Defines a pattern for the formatter.

swarm.logging.logging-profiles.KEY.periodic-size-rotating-file-handlers.KEY.level

The log level specifying which message levels will be logged by this logger. Message levels lower than this value will be discarded.

swarm.logging.logging-profiles.KEY.periodic-size-rotating-file-handlers.KEY.max-backup-index

The maximum number of backups to keep.

swarm.logging.logging-profiles.KEY.periodic-size-rotating-file-handlers.KEY.name

The name of the handler.

swarm.logging.logging-profiles.KEY.periodic-size-rotating-file-handlers.KEY.named-formatter

The name of the defined formatter to be used on the handler.

swarm.logging.logging-profiles.KEY.periodic-size-rotating-file-handlers.KEY.rotate-on-boot

Indicates the file should be rotated each time the file attribute is changed. This always happens when at initialization time.

swarm.logging.logging-profiles.KEY.periodic-size-rotating-file-handlers.KEY.rotate-size

The size at which to rotate the log file.

swarm.logging.logging-profiles.KEY.periodic-size-rotating-file-handlers.KEY.suffix

Set the suffix string. The string is in a format which can be understood by java.text.SimpleDateFormat. The period of the rotation is automatically calculated based on the suffix.

swarm.logging.logging-profiles.KEY.root-logger.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.logging-profiles.KEY.root-logger.handlers

The handlers associated with the root logger.

swarm.logging.logging-profiles.KEY.root-logger.level

The log level specifying which message levels will be logged by the root logger. Message levels lower than this value will be discarded.

swarm.logging.logging-profiles.KEY.size-rotating-file-handlers.KEY.append

Specify whether to append to the target file.

swarm.logging.logging-profiles.KEY.size-rotating-file-handlers.KEY.autoflush

Automatically flush after each write.

swarm.logging.logging-profiles.KEY.size-rotating-file-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.logging-profiles.KEY.size-rotating-file-handlers.KEY.encoding

The character encoding used by this Handler.

swarm.logging.logging-profiles.KEY.size-rotating-file-handlers.KEY.file

The file description consisting of the path and optional relative to path.

swarm.logging.logging-profiles.KEY.size-rotating-file-handlers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.logging-profiles.KEY.size-rotating-file-handlers.KEY.formatter

Defines a pattern for the formatter.

swarm.logging.logging-profiles.KEY.size-rotating-file-handlers.KEY.level

The log level specifying which message levels will be logged by this logger. Message levels lower than this value will be discarded.

swarm.logging.logging-profiles.KEY.size-rotating-file-handlers.KEY.max-backup-index

The maximum number of backups to keep.

swarm.logging.logging-profiles.KEY.size-rotating-file-handlers.KEY.name

The name of the handler.

swarm.logging.logging-profiles.KEY.size-rotating-file-handlers.KEY.named-formatter

The name of the defined formatter to be used on the handler.

swarm.logging.logging-profiles.KEY.size-rotating-file-handlers.KEY.rotate-on-boot

Indicates the file should be rotated each time the file attribute is changed. This always happens when at initialization time.

swarm.logging.logging-profiles.KEY.size-rotating-file-handlers.KEY.rotate-size

The size at which to rotate the log file.

swarm.logging.logging-profiles.KEY.size-rotating-file-handlers.KEY.suffix

Set the suffix string. The string is in a format which can be understood by java.text.SimpleDateFormat. The suffix does not determine when the file should be rotated.

swarm.logging.logging-profiles.KEY.syslog-handlers.KEY.app-name

The app name used when formatting the message in RFC5424 format. By default the app name is "java".

swarm.logging.logging-profiles.KEY.syslog-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.logging-profiles.KEY.syslog-handlers.KEY.facility

Facility as defined by RFC-5424 (http://tools.ietf.org/html/rfc5424)and RFC-3164 (http://tools.ietf.org/html/rfc3164).

swarm.logging.logging-profiles.KEY.syslog-handlers.KEY.hostname

The name of the host the messages are being sent from. For example the name of the host the application server is running on.

swarm.logging.logging-profiles.KEY.syslog-handlers.KEY.level

The log level specifying which message levels will be logged by this logger. Message levels lower than this value will be discarded.

swarm.logging.logging-profiles.KEY.syslog-handlers.KEY.port

The port the syslog server is listening on.

swarm.logging.logging-profiles.KEY.syslog-handlers.KEY.server-address

The address of the syslog server.

swarm.logging.logging-profiles.KEY.syslog-handlers.KEY.syslog-format

Formats the log message according to the RFC specification.

swarm.logging.pattern-formatters.KEY.color-map

The color-map attribute allows for a comma delimited list of colors to be used for different levels with a pattern formatter. The format for the color mapping pattern is level-name:color-name.Valid Levels; severe, fatal, error, warn, warning, info, debug, trace, config, fine, finer, finest Valid Colors; black, green, red, yellow, blue, magenta, cyan, white, brightblack, brightred, brightgreen, brightblue, brightyellow, brightmagenta, brightcyan, brightwhite

swarm.logging.pattern-formatters.KEY.pattern

Defines a pattern for the formatter.

swarm.logging.periodic-rotating-file-handlers.KEY.append

Specify whether to append to the target file.

swarm.logging.periodic-rotating-file-handlers.KEY.autoflush

Automatically flush after each write.

swarm.logging.periodic-rotating-file-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.periodic-rotating-file-handlers.KEY.encoding

The character encoding used by this Handler.

swarm.logging.periodic-rotating-file-handlers.KEY.file

The file description consisting of the path and optional relative to path.

swarm.logging.periodic-rotating-file-handlers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.periodic-rotating-file-handlers.KEY.formatter

Defines a pattern for the formatter.

swarm.logging.periodic-rotating-file-handlers.KEY.level

The log level specifying which message levels will be logged by this logger. Message levels lower than this value will be discarded.

swarm.logging.periodic-rotating-file-handlers.KEY.name

The name of the handler.

swarm.logging.periodic-rotating-file-handlers.KEY.named-formatter

The name of the defined formatter to be used on the handler.

swarm.logging.periodic-rotating-file-handlers.KEY.suffix

Set the suffix string. The string is in a format which can be understood by java.text.SimpleDateFormat. The period of the rotation is automatically calculated based on the suffix.

swarm.logging.periodic-size-rotating-file-handlers.KEY.append

Specify whether to append to the target file.

swarm.logging.periodic-size-rotating-file-handlers.KEY.autoflush

Automatically flush after each write.

swarm.logging.periodic-size-rotating-file-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.periodic-size-rotating-file-handlers.KEY.encoding

The character encoding used by this Handler.

swarm.logging.periodic-size-rotating-file-handlers.KEY.file

The file description consisting of the path and optional relative to path.

swarm.logging.periodic-size-rotating-file-handlers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.periodic-size-rotating-file-handlers.KEY.formatter

Defines a pattern for the formatter.

swarm.logging.periodic-size-rotating-file-handlers.KEY.level

The log level specifying which message levels will be logged by this logger. Message levels lower than this value will be discarded.

swarm.logging.periodic-size-rotating-file-handlers.KEY.max-backup-index

The maximum number of backups to keep.

swarm.logging.periodic-size-rotating-file-handlers.KEY.name

The name of the handler.

swarm.logging.periodic-size-rotating-file-handlers.KEY.named-formatter

The name of the defined formatter to be used on the handler.

swarm.logging.periodic-size-rotating-file-handlers.KEY.rotate-on-boot

Indicates the file should be rotated each time the file attribute is changed. This always happens when at initialization time.

swarm.logging.periodic-size-rotating-file-handlers.KEY.rotate-size

The size at which to rotate the log file.

swarm.logging.periodic-size-rotating-file-handlers.KEY.suffix

Set the suffix string. The string is in a format which can be understood by java.text.SimpleDateFormat. The period of the rotation is automatically calculated based on the suffix.

swarm.logging.root-logger.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.root-logger.handlers

The handlers associated with the root logger.

swarm.logging.root-logger.level

The log level specifying which message levels will be logged by the root logger. Message levels lower than this value will be discarded.

swarm.logging.size-rotating-file-handlers.KEY.append

Specify whether to append to the target file.

swarm.logging.size-rotating-file-handlers.KEY.autoflush

Automatically flush after each write.

swarm.logging.size-rotating-file-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.size-rotating-file-handlers.KEY.encoding

The character encoding used by this Handler.

swarm.logging.size-rotating-file-handlers.KEY.file

The file description consisting of the path and optional relative to path.

swarm.logging.size-rotating-file-handlers.KEY.filter-spec

A filter expression value to define a filter. Example for a filter that does not match a pattern: not(match("JBAS.*"))

swarm.logging.size-rotating-file-handlers.KEY.formatter

Defines a pattern for the formatter.

swarm.logging.size-rotating-file-handlers.KEY.level

The log level specifying which message levels will be logged by this logger. Message levels lower than this value will be discarded.

swarm.logging.size-rotating-file-handlers.KEY.max-backup-index

The maximum number of backups to keep.

swarm.logging.size-rotating-file-handlers.KEY.name

The name of the handler.

swarm.logging.size-rotating-file-handlers.KEY.named-formatter

The name of the defined formatter to be used on the handler.

swarm.logging.size-rotating-file-handlers.KEY.rotate-on-boot

Indicates the file should be rotated each time the file attribute is changed. This always happens when at initialization time.

swarm.logging.size-rotating-file-handlers.KEY.rotate-size

The size at which to rotate the log file.

swarm.logging.size-rotating-file-handlers.KEY.suffix

Set the suffix string. The string is in a format which can be understood by java.text.SimpleDateFormat. The suffix does not determine when the file should be rotated.

swarm.logging.syslog-handlers.KEY.app-name

The app name used when formatting the message in RFC5424 format. By default the app name is "java".

swarm.logging.syslog-handlers.KEY.enabled

If set to true the handler is enabled and functioning as normal, if set to false the handler is ignored when processing log messages.

swarm.logging.syslog-handlers.KEY.facility

Facility as defined by RFC-5424 (http://tools.ietf.org/html/rfc5424)and RFC-3164 (http://tools.ietf.org/html/rfc3164).

swarm.logging.syslog-handlers.KEY.hostname

The name of the host the messages are being sent from. For example the name of the host the application server is running on.

swarm.logging.syslog-handlers.KEY.level

The log level specifying which message levels will be logged by this logger. Message levels lower than this value will be discarded.

swarm.logging.syslog-handlers.KEY.port

The port the syslog server is listening on.

swarm.logging.syslog-handlers.KEY.server-address

The address of the syslog server.

swarm.logging.syslog-handlers.KEY.syslog-format

Formats the log message according to the RFC specification.

swarm.logging.use-deployment-logging-config

Indicates whether or not deployments should use a logging configuration file found in the deployment to configure the log manager. If set to true and a logging configuration file was found in the deployments META-INF or WEB-INF/classes directory, then a log manager will be configured with those settings. If set false the servers logging configuration will be used regardless of any logging configuration files supplied in the deployment.

Configuration

swarm.management.audit-access.audit-log-logger.enabled

Whether audit logging is enabled.

swarm.management.audit-access.audit-log-logger.log-boot

Whether operations should be logged on server boot.

swarm.management.audit-access.audit-log-logger.log-read-only

Whether operations that do not modify the configuration or any runtime services should be logged.

swarm.management.audit-access.file-handlers.KEY.disabled-due-to-failure

Whether this handler has been disabled due to logging failures.

swarm.management.audit-access.file-handlers.KEY.failure-count

The number of logging failures since the handler was initialized.

swarm.management.audit-access.file-handlers.KEY.formatter

The formatter used to format the log messages.

swarm.management.audit-access.file-handlers.KEY.max-failure-count

The maximum number of logging failures before disabling this handler.

swarm.management.audit-access.file-handlers.KEY.path

The path of the audit log file.

swarm.management.audit-access.file-handlers.KEY.relative-to

The name of another previously named path, or of one of the standard paths provided by the system. If 'relative-to' is provided, the value of the 'path' attribute is treated as relative to the path specified by this attribute.

swarm.management.audit-access.file-handlers.KEY.rotate-at-startup

Whether the old log file should be rotated at server startup.

swarm.management.audit-access.in-memory-handlers.KEY.max-history

The maximum number of operation stored in history for this handler.

swarm.management.audit-access.json-formatters.KEY.compact

If true will format the JSON on one line. There may still be values containing new lines, so if having the whole record on one line is important, set escape-new-line or escape-control-characters to true.

swarm.management.audit-access.json-formatters.KEY.date-format

The date format to use as understood by java.text.SimpleDateFormat. Will be ignored if include-date="false".

swarm.management.audit-access.json-formatters.KEY.date-separator

The separator between the date and the rest of the formatted log message. Will be ignored if include-date="false".

swarm.management.audit-access.json-formatters.KEY.escape-control-characters

If true will escape all control characters (ascii entries with a decimal value < 32) with the ascii code in octal, e.g.' becomes '#012'. If this is true, it will override escape-new-line="false".

swarm.management.audit-access.json-formatters.KEY.escape-new-line

If true will escape all new lines with the ascii code in octal, e.g. "#012".

swarm.management.audit-access.json-formatters.KEY.include-date

Whether or not to include the date in the formatted log record.

swarm.management.audit-access.periodic-rotating-file-handlers.KEY.disabled-due-to-failure

Whether this handler has been disabled due to logging failures.

swarm.management.audit-access.periodic-rotating-file-handlers.KEY.failure-count

The number of logging failures since the handler was initialized.

swarm.management.audit-access.periodic-rotating-file-handlers.KEY.formatter

The formatter used to format the log messages.

swarm.management.audit-access.periodic-rotating-file-handlers.KEY.max-failure-count

The maximum number of logging failures before disabling this handler.

swarm.management.audit-access.periodic-rotating-file-handlers.KEY.path

The path of the audit log file.

swarm.management.audit-access.periodic-rotating-file-handlers.KEY.relative-to

The name of another previously named path, or of one of the standard paths provided by the system. If 'relative-to' is provided, the value of the 'path' attribute is treated as relative to the path specified by this attribute.

swarm.management.audit-access.periodic-rotating-file-handlers.KEY.suffix

The suffix string in a format which can be understood by java.text.SimpleDateFormat. The period of the rotation is automatically calculated based on the suffix.

swarm.management.audit-access.size-rotating-file-handlers.KEY.disabled-due-to-failure

Whether this handler has been disabled due to logging failures.

swarm.management.audit-access.size-rotating-file-handlers.KEY.failure-count

The number of logging failures since the handler was initialized.

swarm.management.audit-access.size-rotating-file-handlers.KEY.formatter

The formatter used to format the log messages.

swarm.management.audit-access.size-rotating-file-handlers.KEY.max-backup-index

The maximum number of backups to keep.

swarm.management.audit-access.size-rotating-file-handlers.KEY.max-failure-count

The maximum number of logging failures before disabling this handler.

swarm.management.audit-access.size-rotating-file-handlers.KEY.path

The path of the audit log file.

swarm.management.audit-access.size-rotating-file-handlers.KEY.relative-to

The name of another previously named path, or of one of the standard paths provided by the system. If 'relative-to' is provided, the value of the 'path' attribute is treated as relative to the path specified by this attribute.

swarm.management.audit-access.size-rotating-file-handlers.KEY.rotate-size

The size at which to rotate the log file.

swarm.management.audit-access.syslog-handlers.KEY.app-name

The application name to add to the syslog records as defined in section 6.2.5 of RFC-5424. If not specified it will default to the name of the product.

swarm.management.audit-access.syslog-handlers.KEY.disabled-due-to-failure

Whether this handler has been disabled due to logging failures.

swarm.management.audit-access.syslog-handlers.KEY.facility

The facility to use for syslog logging as defined in section 6.2.1 of RFC-5424, and section 4.1.1 of RFC-3164.

swarm.management.audit-access.syslog-handlers.KEY.failure-count

The number of logging failures since the handler was initialized.

swarm.management.audit-access.syslog-handlers.KEY.formatter

The formatter used to format the log messages.

swarm.management.audit-access.syslog-handlers.KEY.max-failure-count

The maximum number of logging failures before disabling this handler.

swarm.management.audit-access.syslog-handlers.KEY.max-length

The maximum length in bytes a log message, including the header, is allowed to be. If undefined, it will default to 1024 bytes if the syslog-format is RFC3164, or 2048 bytes if the syslog-format is RFC5424.

swarm.management.audit-access.syslog-handlers.KEY.syslog-format

Whether to set the syslog format to the one specified in RFC-5424 or RFC-3164.

swarm.management.audit-access.syslog-handlers.KEY.tcp-protocol.host

The host of the syslog server for the tcp requests.

swarm.management.audit-access.syslog-handlers.KEY.tcp-protocol.message-transfer

The message transfer setting as described in section 3.4 of RFC-6587. This can either be OCTET_COUNTING as described in section 3.4.1 of RFC-6587, or NON_TRANSPARENT_FRAMING as described in section 3.4.1 of RFC-6587. See your syslog provider’s documentation for what is supported.

swarm.management.audit-access.syslog-handlers.KEY.tcp-protocol.port

The port of the syslog server for the tcp requests.

swarm.management.audit-access.syslog-handlers.KEY.tcp-protocol.reconnect-timeout

If a connection drop is detected, the number of seconds to wait before reconnecting. A negative number means don’t reconnect automatically.

swarm.management.audit-access.syslog-handlers.KEY.tls-protocol.client-certificate-store-authentication.key-password

The password for the keystore key.

swarm.management.audit-access.syslog-handlers.KEY.tls-protocol.client-certificate-store-authentication.key-password-credential-reference

The reference to credential for the keystore key stored in CredentialStore under defined alias or clear text password.

swarm.management.audit-access.syslog-handlers.KEY.tls-protocol.client-certificate-store-authentication.keystore-password

The password for the keystore.

swarm.management.audit-access.syslog-handlers.KEY.tls-protocol.client-certificate-store-authentication.keystore-password-credential-reference

The reference to credential for the keystore password stored in CredentialStore under defined alias or clear text password.

swarm.management.audit-access.syslog-handlers.KEY.tls-protocol.client-certificate-store-authentication.keystore-path

The path of the keystore.

swarm.management.audit-access.syslog-handlers.KEY.tls-protocol.client-certificate-store-authentication.keystore-relative-to

The name of another previously named path, or of one of the standard paths provided by the system. If 'keystore-relative-to' is provided, the value of the 'keystore-path' attribute is treated as relative to the path specified by this attribute.

swarm.management.audit-access.syslog-handlers.KEY.tls-protocol.host

The host of the syslog server for the tls over tcp requests.

swarm.management.audit-access.syslog-handlers.KEY.tls-protocol.message-transfer

The message transfer setting as described in section 3.4 of RFC-6587. This can either be OCTET_COUNTING as described in section 3.4.1 of RFC-6587, or NON_TRANSPARENT_FRAMING as described in section 3.4.1 of RFC-6587. See your syslog provider’s documentation for what is supported.

swarm.management.audit-access.syslog-handlers.KEY.tls-protocol.port

The port of the syslog server for the tls over tcp requests.

swarm.management.audit-access.syslog-handlers.KEY.tls-protocol.reconnect-timeout

If a connection drop is detected, the number of seconds to wait before reconnecting. A negative number means don’t reconnect automatically.

swarm.management.audit-access.syslog-handlers.KEY.tls-protocol.truststore-authentication.keystore-password

The password for the truststore.

swarm.management.audit-access.syslog-handlers.KEY.tls-protocol.truststore-authentication.keystore-password-credential-reference

The reference to credential for the truststore password stored in CredentialStore under defined alias or clear text password.

swarm.management.audit-access.syslog-handlers.KEY.tls-protocol.truststore-authentication.keystore-path

The path of the truststore.

swarm.management.audit-access.syslog-handlers.KEY.tls-protocol.truststore-authentication.keystore-relative-to

The name of another previously named path, or of one of the standard paths provided by the system. If 'keystore-relative-to' is provided, the value of the 'keystore-path' attribute is treated as relative to the path specified by this attribute.

swarm.management.audit-access.syslog-handlers.KEY.truncate

Whether or not a message, including the header, should truncate the message if the length in bytes is greater than the maximum length. If set to false messages will be split and sent with the same header values.

swarm.management.audit-access.syslog-handlers.KEY.udp-protocol.host

The host of the syslog server for the udp requests.

swarm.management.audit-access.syslog-handlers.KEY.udp-protocol.port

The port of the syslog server for the udp requests.

swarm.management.authorization-access.all-role-names

The official names of all roles supported by the current management access control provider. This includes any standard roles as well as any user-defined roles.

swarm.management.authorization-access.application-classification-constraint.types.KEY.classifications.KEY.applies-tos.KEY.address

Address pattern describing a resource or resources to which the constraint applies.

swarm.management.authorization-access.application-classification-constraint.types.KEY.classifications.KEY.applies-tos.KEY.attributes

List of the names of attributes to which the constraint specifically applies.

swarm.management.authorization-access.application-classification-constraint.types.KEY.classifications.KEY.applies-tos.KEY.entire-resource

True if the constraint applies to the resource as a whole; false if it only applies to one or more attributes or operations.

swarm.management.authorization-access.application-classification-constraint.types.KEY.classifications.KEY.applies-tos.KEY.operations

List of the names of operations to which the constraint specifically applies.

swarm.management.authorization-access.application-classification-constraint.types.KEY.classifications.KEY.configured-application

Set to override the default as to whether the constraint is considered an application resource.

swarm.management.authorization-access.application-classification-constraint.types.KEY.classifications.KEY.default-application

Whether targets having this application type constraint are considered application resources.

swarm.management.authorization-access.permission-combination-policy

The policy for combining access control permissions when the authorization policy grants the user more than one type of permission for a given action. In the standard role based authorization policy, this would occur when a user maps to multiple roles. The 'permissive' policy means if any of the permissions allow the action, the action is allowed. The 'rejecting' policy means the existence of multiple permissions should result in an error.

swarm.management.authorization-access.provider

The provider to use for management access control decisions.

swarm.management.authorization-access.role-mappings.KEY.excludes.KEY.name

The name of the user or group being mapped.

swarm.management.authorization-access.role-mappings.KEY.excludes.KEY.realm

An optional attribute to map based on the realm used for authentication.

swarm.management.authorization-access.role-mappings.KEY.excludes.KEY.type

The type of the Principal being mapped, either 'group' or 'user'.

swarm.management.authorization-access.role-mappings.KEY.include-all

Configure if all authenticated users should be automatically assigned this role.

swarm.management.authorization-access.role-mappings.KEY.includes.KEY.name

The name of the user or group being mapped.

swarm.management.authorization-access.role-mappings.KEY.includes.KEY.realm

An optional attribute to map based on the realm used for authentication.

swarm.management.authorization-access.role-mappings.KEY.includes.KEY.type

The type of the Principal being mapped, either 'group' or 'user'.

swarm.management.authorization-access.sensitivity-classification-constraint.types.KEY.classifications.KEY.applies-tos.KEY.address

Address pattern describing a resource or resources to which the constraint applies.

swarm.management.authorization-access.sensitivity-classification-constraint.types.KEY.classifications.KEY.applies-tos.KEY.attributes

List of the names of attributes to which the constraint specifically applies.

swarm.management.authorization-access.sensitivity-classification-constraint.types.KEY.classifications.KEY.applies-tos.KEY.entire-resource

True if the constraint applies to the resource as a whole; false if it only applies to one or more attributes or operations.

swarm.management.authorization-access.sensitivity-classification-constraint.types.KEY.classifications.KEY.applies-tos.KEY.operations

List of the names of operations to which the constraint specifically applies.

swarm.management.authorization-access.sensitivity-classification-constraint.types.KEY.classifications.KEY.configured-application

Set to override the default as to whether the constraint is considered an application resource.

swarm.management.authorization-access.sensitivity-classification-constraint.types.KEY.classifications.KEY.default-application

Whether targets having this application type constraint are considered application resources.

swarm.management.authorization-access.standard-role-names

The official names of the standard roles supported by the current management access control provider.

swarm.management.authorization-access.use-identity-roles

Should the raw roles obtained from the underlying security identity be used directly?

swarm.management.authorization-access.vault-expression-constraint.configured-requires-read

Set to override the default as to whether reading attributes containing vault expressions should be considered sensitive.

swarm.management.authorization-access.vault-expression-constraint.configured-requires-write

Set to override the default as to whether writing attributes containing vault expressions should be considered sensitive.

swarm.management.authorization-access.vault-expression-constraint.default-requires-read

Whether reading attributes containing vault expressions should be considered sensitive.

swarm.management.authorization-access.vault-expression-constraint.default-requires-write

Whether writing attributes containing vault expressions should be considered sensitive.

swarm.management.bind.interface

Interface to bind for the management ports

swarm.management.configuration-changes-service.max-history

The maximum number of configuration changes stored in history.

swarm.management.http-interface-management-interface.allowed-origins

Comma separated list of trusted Origins for sending Cross-Origin Resource Sharing requests on the management API once the user is authenticated.

swarm.management.http-interface-management-interface.console-enabled

Flag that indicates admin console is enabled

swarm.management.http-interface-management-interface.http-authentication-factory

The authentication policy to use to secure the interface for normal HTTP requests.

swarm.management.http-interface-management-interface.http-upgrade

HTTP Upgrade specific configuration

swarm.management.http-interface-management-interface.http-upgrade-enabled

Flag that indicates HTTP Upgrade is enabled, which allows HTTP requests to be upgraded to native remoting connections

swarm.management.http-interface-management-interface.sasl-protocol

The name of the protocol to be passed to the SASL mechanisms used for authentication.

swarm.management.http-interface-management-interface.secure-socket-binding

The name of the socket binding configuration to use for the HTTPS management interface’s socket. When defined at least one of ssl-context or security-realm must also be defined.

swarm.management.http-interface-management-interface.security-realm

The legacy security realm to use for the HTTP management interface.

swarm.management.http-interface-management-interface.server-name

The name of the server used in the initial Remoting exchange and within the SASL mechanisms.

swarm.management.http-interface-management-interface.socket-binding

The name of the socket binding configuration to use for the HTTP management interface’s socket.

swarm.management.http-interface-management-interface.ssl-context

Reference to the SSLContext to use for this management interface.

swarm.management.http.disable

Flag to disable HTTP access to management interface

swarm.management.http.port

Port for HTTP access to management interface

swarm.management.https.port

Port for HTTPS access to management interface

swarm.management.identity-access.security-domain

Reference to the security domain to use to obtain the current identity performing a management request.

swarm.management.ldap-connections.KEY.always-send-client-cert

If true, the client SSL certificate will be sent to LDAP server with every request; otherwise the client SSL certificate will not be sent when verifying the user credentials

swarm.management.ldap-connections.KEY.handles-referrals-for

List of URLs that this connection handles referrals for.

swarm.management.ldap-connections.KEY.initial-context-factory

The initial context factory to establish the LdapContext.

swarm.management.ldap-connections.KEY.properties.KEY.value

The optional value of the property.

swarm.management.ldap-connections.KEY.referrals

The referral handling mode for this connection.

swarm.management.ldap-connections.KEY.search-credential

The credential to use when connecting to perform a search.

swarm.management.ldap-connections.KEY.search-credential-reference

The reference to the search credential stored in CredentialStore under defined alias or clear text password.

swarm.management.ldap-connections.KEY.search-dn

The distinguished name to use when connecting to the LDAP server to perform searches.

swarm.management.ldap-connections.KEY.security-realm

The security realm to reference to obtain a configured SSLContext to use when establishing the connection.

swarm.management.ldap-connections.KEY.url

The URL to use to connect to the LDAP server.

swarm.management.management-operations-service.active-operations.KEY.access-mechanism

The mechanism used to submit a request to the server.

swarm.management.management-operations-service.active-operations.KEY.address

The address of the resource targeted by the operation. The value in the final element of the address will be '<hidden>' if the caller is not authorized to address the operation’s target resource.

swarm.management.management-operations-service.active-operations.KEY.caller-thread

The name of the thread that is executing the operation.

swarm.management.management-operations-service.active-operations.KEY.cancelled

Whether the operation has been cancelled.

swarm.management.management-operations-service.active-operations.KEY.domain-rollout

True if the operation is a subsidiary request on a domain process other than the one directly handling the original operation, executing locally as part of the rollout of the original operation across the domain.

swarm.management.management-operations-service.active-operations.KEY.domain-uuid

Identifier of an overall multi-process domain operation of which this operation is a part, or undefined if this operation is not associated with such a domain operation.

swarm.management.management-operations-service.active-operations.KEY.exclusive-running-time

Amount of time the operation has been executing with the exclusive operation execution lock held, or -1 if the operation does not hold the exclusive execution lock.

swarm.management.management-operations-service.active-operations.KEY.execution-status

The current activity of the operation.

swarm.management.management-operations-service.active-operations.KEY.operation

The name of the operation, or '<hidden>' if the caller is not authorized to address the operation’s target resource.

swarm.management.management-operations-service.active-operations.KEY.running-time

Amount of time the operation has been executing.

swarm.management.native-interface-management-interface.sasl-authentication-factory

The SASL authentication policy to use to secure this interface.

swarm.management.native-interface-management-interface.sasl-protocol

The name of the protocol to be passed to the SASL mechanisms used for authentication.

swarm.management.native-interface-management-interface.security-realm

The legacy security realm to use for the native management interface.

swarm.management.native-interface-management-interface.server-name

The name of the server used in the initial Remoting exchange and within the SASL mechanisms.

swarm.management.native-interface-management-interface.socket-binding

The name of the socket binding configuration to use for the native management interface’s socket.

swarm.management.native-interface-management-interface.ssl-context

Reference to the SSLContext to use for this management interface.

swarm.management.security-realms.KEY.jaas-authentication.assign-groups

Map the roles loaded by JAAS to groups.

swarm.management.security-realms.KEY.jaas-authentication.name

The name of the JAAS configuration to use.

swarm.management.security-realms.KEY.kerberos-authentication.remove-realm

After authentication should the realm name be stripped from the users name.

swarm.management.security-realms.KEY.kerberos-server-identity.keytabs.KEY.debug

Should additional debug logging be enabled during TGT acquisition?

swarm.management.security-realms.KEY.kerberos-server-identity.keytabs.KEY.for-hosts

A server can be accessed using different host names, this attribute specifies which host names this keytab can be used with.

swarm.management.security-realms.KEY.kerberos-server-identity.keytabs.KEY.path

The path to the keytab.

swarm.management.security-realms.KEY.kerberos-server-identity.keytabs.KEY.relative-to

The name of another previously named path, or of one of the standard paths provided by the system. If 'relative-to' is provided, the value of the 'path' attribute is treated as relative to the path specified by this attribute.

swarm.management.security-realms.KEY.ldap-authentication.advanced-filter

The fully defined filter to be used to search for the user based on their entered user ID. The filter should contain a variable in the form {0} - this will be replaced with the username supplied by the user.

swarm.management.security-realms.KEY.ldap-authentication.allow-empty-passwords

Should empty passwords be accepted from the user being authenticated.

swarm.management.security-realms.KEY.ldap-authentication.base-dn

The base distinguished name to commence the search for the user.

swarm.management.security-realms.KEY.ldap-authentication.by-access-time-cache.cache-failures

Should failures be cached?

swarm.management.security-realms.KEY.ldap-authentication.by-access-time-cache.cache-size

The current size of the cache.

swarm.management.security-realms.KEY.ldap-authentication.by-access-time-cache.eviction-time

The time in seconds until an entry should be evicted from the cache.

swarm.management.security-realms.KEY.ldap-authentication.by-access-time-cache.max-cache-size

The maximum size of the cache before the oldest items are removed to make room for new entries.

swarm.management.security-realms.KEY.ldap-authentication.by-search-time-cache.cache-failures

Should failures be cached?

swarm.management.security-realms.KEY.ldap-authentication.by-search-time-cache.cache-size

The current size of the cache.

swarm.management.security-realms.KEY.ldap-authentication.by-search-time-cache.eviction-time

The time in seconds until an entry should be evicted from the cache.

swarm.management.security-realms.KEY.ldap-authentication.by-search-time-cache.max-cache-size

The maximum size of the cache before the oldest items are removed to make room for new entries.

swarm.management.security-realms.KEY.ldap-authentication.connection

The name of the connection to use to connect to LDAP.

swarm.management.security-realms.KEY.ldap-authentication.recursive

Whether the search should be recursive.

swarm.management.security-realms.KEY.ldap-authentication.user-dn

The name of the attribute which is the user’s distinguished name.

swarm.management.security-realms.KEY.ldap-authentication.username-attribute

The name of the attribute to search for the user. This filter will then perform a simple search where the username entered by the user matches the attribute specified here.

swarm.management.security-realms.KEY.ldap-authentication.username-load

The name of the attribute that should be loaded from the authenticated users LDAP entry to replace the username that they supplied, e.g. convert an e-mail address to an ID or correct the case entered.

swarm.management.security-realms.KEY.ldap-authorization.advanced-filter-username-to-dn.base-dn

The starting point of the search for the user.

swarm.management.security-realms.KEY.ldap-authorization.advanced-filter-username-to-dn.by-access-time-cache.cache-failures

Should failures be cached?

swarm.management.security-realms.KEY.ldap-authorization.advanced-filter-username-to-dn.by-access-time-cache.cache-size

The current size of the cache.

swarm.management.security-realms.KEY.ldap-authorization.advanced-filter-username-to-dn.by-access-time-cache.eviction-time

The time in seconds until an entry should be evicted from the cache.

swarm.management.security-realms.KEY.ldap-authorization.advanced-filter-username-to-dn.by-access-time-cache.max-cache-size

The maximum size of the cache before the oldest items are removed to make room for new entries.

swarm.management.security-realms.KEY.ldap-authorization.advanced-filter-username-to-dn.by-search-time-cache.cache-failures

Should failures be cached?

swarm.management.security-realms.KEY.ldap-authorization.advanced-filter-username-to-dn.by-search-time-cache.cache-size

The current size of the cache.

swarm.management.security-realms.KEY.ldap-authorization.advanced-filter-username-to-dn.by-search-time-cache.eviction-time

The time in seconds until an entry should be evicted from the cache.

swarm.management.security-realms.KEY.ldap-authorization.advanced-filter-username-to-dn.by-search-time-cache.max-cache-size

The maximum size of the cache before the oldest items are removed to make room for new entries.

swarm.management.security-realms.KEY.ldap-authorization.advanced-filter-username-to-dn.filter

The filter to use for the LDAP search.

swarm.management.security-realms.KEY.ldap-authorization.advanced-filter-username-to-dn.force

Authentication may have already converted the username to a distinguished name, force this to occur again before loading groups.

swarm.management.security-realms.KEY.ldap-authorization.advanced-filter-username-to-dn.recursive

Should levels below the starting point be recursively searched?

swarm.management.security-realms.KEY.ldap-authorization.advanced-filter-username-to-dn.user-dn-attribute

The attribute on the user entry that contains their distinguished name.

swarm.management.security-realms.KEY.ldap-authorization.connection

The name of the connection to use to connect to LDAP.

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.base-dn

The starting point of the search for the group.

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.by-access-time-cache.cache-failures

Should failures be cached?

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.by-access-time-cache.cache-size

The current size of the cache.

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.by-access-time-cache.eviction-time

The time in seconds until an entry should be evicted from the cache.

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.by-access-time-cache.max-cache-size

The maximum size of the cache before the oldest items are removed to make room for new entries.

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.by-search-time-cache.cache-failures

Should failures be cached?

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.by-search-time-cache.cache-size

The current size of the cache.

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.by-search-time-cache.eviction-time

The time in seconds until an entry should be evicted from the cache.

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.by-search-time-cache.max-cache-size

The maximum size of the cache before the oldest items are removed to make room for new entries.

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.group-dn-attribute

Which attribute on a group entry is it’s distinguished name.

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.group-name

An enumeration to identify if groups should be referenced using a simple name or their distinguished name.

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.group-name-attribute

Which attribute on a group entry is it’s simple name.

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.iterative

Should further searches be performed to identify groups that the groups identified are a member of?

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.prefer-original-connection

After following a referral should subsequent searches prefer the original connection or use the connection of the last referral.

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.principal-attribute

The attribute on the group entry that references the principal.

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.recursive

Should levels below the starting point be recursively searched?

swarm.management.security-realms.KEY.ldap-authorization.group-to-principal-group-search.search-by

Should searches be performed using simple names or distinguished names?

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.by-access-time-cache.cache-failures

Should failures be cached?

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.by-access-time-cache.cache-size

The current size of the cache.

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.by-access-time-cache.eviction-time

The time in seconds until an entry should be evicted from the cache.

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.by-access-time-cache.max-cache-size

The maximum size of the cache before the oldest items are removed to make room for new entries.

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.by-search-time-cache.cache-failures

Should failures be cached?

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.by-search-time-cache.cache-size

The current size of the cache.

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.by-search-time-cache.eviction-time

The time in seconds until an entry should be evicted from the cache.

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.by-search-time-cache.max-cache-size

The maximum size of the cache before the oldest items are removed to make room for new entries.

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.group-attribute

The attribute on the principal which references the group the principal is a member of.

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.group-dn-attribute

Which attribute on a group entry is it’s distinguished name.

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.group-name

An enumeration to identify if groups should be referenced using a simple name or their distinguished name.

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.group-name-attribute

Which attribute on a group entry is it’s simple name.

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.iterative

Should further searches be performed to identify groups that the groups identified are a member of?

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.parse-group-name-from-dn

Should the group name be extracted from the distinguished name.

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.prefer-original-connection

After following a referral should subsequent searches prefer the original connection or use the connection of the last referral.

swarm.management.security-realms.KEY.ldap-authorization.principal-to-group-group-search.skip-missing-groups

If a non-existent group is referenced should it be quietly ignored.

swarm.management.security-realms.KEY.ldap-authorization.username-filter-username-to-dn.attribute

The attribute on the user entry that is their username.

swarm.management.security-realms.KEY.ldap-authorization.username-filter-username-to-dn.base-dn

The starting point of the search for the user.

swarm.management.security-realms.KEY.ldap-authorization.username-filter-username-to-dn.by-access-time-cache.cache-failures

Should failures be cached?

swarm.management.security-realms.KEY.ldap-authorization.username-filter-username-to-dn.by-access-time-cache.cache-size

The current size of the cache.

swarm.management.security-realms.KEY.ldap-authorization.username-filter-username-to-dn.by-access-time-cache.eviction-time

The time in seconds until an entry should be evicted from the cache.

swarm.management.security-realms.KEY.ldap-authorization.username-filter-username-to-dn.by-access-time-cache.max-cache-size

The maximum size of the cache before the oldest items are removed to make room for new entries.

swarm.management.security-realms.KEY.ldap-authorization.username-filter-username-to-dn.by-search-time-cache.cache-failures

Should failures be cached?

swarm.management.security-realms.KEY.ldap-authorization.username-filter-username-to-dn.by-search-time-cache.cache-size

The current size of the cache.

swarm.management.security-realms.KEY.ldap-authorization.username-filter-username-to-dn.by-search-time-cache.eviction-time

The time in seconds until an entry should be evicted from the cache.

swarm.management.security-realms.KEY.ldap-authorization.username-filter-username-to-dn.by-search-time-cache.max-cache-size

The maximum size of the cache before the oldest items are removed to make room for new entries.

swarm.management.security-realms.KEY.ldap-authorization.username-filter-username-to-dn.force

Authentication may have already converted the username to a distinguished name, force this to occur again before loading groups.

swarm.management.security-realms.KEY.ldap-authorization.username-filter-username-to-dn.recursive

Should levels below the starting point be recursively searched?

swarm.management.security-realms.KEY.ldap-authorization.username-filter-username-to-dn.user-dn-attribute

The attribute on the user entry that contains their distinguished name.

swarm.management.security-realms.KEY.ldap-authorization.username-is-dn-username-to-dn.by-access-time-cache.cache-failures

Should failures be cached?

swarm.management.security-realms.KEY.ldap-authorization.username-is-dn-username-to-dn.by-access-time-cache.cache-size

The current size of the cache.

swarm.management.security-realms.KEY.ldap-authorization.username-is-dn-username-to-dn.by-access-time-cache.eviction-time

The time in seconds until an entry should be evicted from the cache.

swarm.management.security-realms.KEY.ldap-authorization.username-is-dn-username-to-dn.by-access-time-cache.max-cache-size

The maximum size of the cache before the oldest items are removed to make room for new entries.

swarm.management.security-realms.KEY.ldap-authorization.username-is-dn-username-to-dn.by-search-time-cache.cache-failures

Should failures be cached?

swarm.management.security-realms.KEY.ldap-authorization.username-is-dn-username-to-dn.by-search-time-cache.cache-size

The current size of the cache.

swarm.management.security-realms.KEY.ldap-authorization.username-is-dn-username-to-dn.by-search-time-cache.eviction-time

The time in seconds until an entry should be evicted from the cache.

swarm.management.security-realms.KEY.ldap-authorization.username-is-dn-username-to-dn.by-search-time-cache.max-cache-size

The maximum size of the cache before the oldest items are removed to make room for new entries.

swarm.management.security-realms.KEY.ldap-authorization.username-is-dn-username-to-dn.force

Authentication may have already converted the username to a distinguished name, force this to occur again before loading groups.

swarm.management.security-realms.KEY.local-authentication.allowed-users

The comma separated list of users that will be accepted using the JBOSS-LOCAL-USER mechanism or '*' to accept all. If specified the default-user is always assumed allowed.

swarm.management.security-realms.KEY.local-authentication.default-user

The name of the default user to assume if no user specified by the remote client.

swarm.management.security-realms.KEY.local-authentication.skip-group-loading

Disable the loading of the users group membership information after local authentication has been used.

swarm.management.security-realms.KEY.map-groups-to-roles

After a users group membership has been loaded should a 1:1 relationship be assumed regarding group to role mapping.

swarm.management.security-realms.KEY.plug-in-authentication.mechanism

Allow the mechanism this plug-in is compatible with to be overridden from DIGEST.

swarm.management.security-realms.KEY.plug-in-authentication.name

The short name of the plug-in (as registered) to use.

swarm.management.security-realms.KEY.plug-in-authentication.properties.KEY.value

The optional value of the property.

swarm.management.security-realms.KEY.plug-in-authorization.name

The short name of the plug-in (as registered) to use.

swarm.management.security-realms.KEY.plug-in-authorization.properties.KEY.value

The optional value of the property.

swarm.management.security-realms.KEY.properties-authentication.path

The path of the properties file containing the users.

swarm.management.security-realms.KEY.properties-authentication.plain-text

Are the credentials within the properties file stored in plain text. If not the credential is expected to be the hex encoded Digest hash of 'username : realm : password'.

swarm.management.security-realms.KEY.properties-authentication.relative-to

The name of another previously named path, or of one of the standard paths provided by the system. If 'relative-to' is provided, the value of the 'path' attribute is treated as relative to the path specified by this attribute.

swarm.management.security-realms.KEY.properties-authorization.path

The path of the properties file containing the users roles.

swarm.management.security-realms.KEY.properties-authorization.relative-to

The name of another previously named path, or of one of the standard paths provided by the system. If 'relative-to' is provided, the value of the 'path' attribute is treated as relative to the path specified by this attribute.

swarm.management.security-realms.KEY.secret-server-identity.credential-reference

The reference to credential for the secret / password stored in CredentialStore under defined alias or clear text password.

swarm.management.security-realms.KEY.secret-server-identity.value

The secret / password - Base64 Encoded.

swarm.management.security-realms.KEY.ssl-server-identity.alias

The alias of the entry to use from the keystore.

swarm.management.security-realms.KEY.ssl-server-identity.enabled-cipher-suites

The cipher suites that can be enabled on the underlying SSLEngine.

swarm.management.security-realms.KEY.ssl-server-identity.enabled-protocols

The protocols that can be enabled on the underlying SSLEngine.

swarm.management.security-realms.KEY.ssl-server-identity.generate-self-signed-certificate-host

If the keystore does not exist and this attribute is set then a self signed certificate will be generated for the specified host name. This is not intended for production use.

swarm.management.security-realms.KEY.ssl-server-identity.key-password

The password to obtain the key from the keystore.

swarm.management.security-realms.KEY.ssl-server-identity.key-password-credential-reference

The reference to credential for the keystore key stored in CredentialStore under defined alias or clear text password.

swarm.management.security-realms.KEY.ssl-server-identity.keystore-password

The password to open the keystore.

swarm.management.security-realms.KEY.ssl-server-identity.keystore-password-credential-reference

The reference to credential for the keystore password stored in CredentialStore under defined alias or clear text password.

swarm.management.security-realms.KEY.ssl-server-identity.keystore-path

The path of the keystore, will be ignored if the keystore-provider is anything other than JKS.

swarm.management.security-realms.KEY.ssl-server-identity.keystore-provider

The provider for loading the keystore, defaults to JKS.

swarm.management.security-realms.KEY.ssl-server-identity.keystore-relative-to

The name of another previously named path, or of one of the standard paths provided by the system. If 'relative-to' is provided, the value of the 'path' attribute is treated as relative to the path specified by this attribute.

swarm.management.security-realms.KEY.ssl-server-identity.protocol

The protocol to use when creating the SSLContext.

swarm.management.security-realms.KEY.truststore-authentication.keystore-password

The password to open the keystore.

swarm.management.security-realms.KEY.truststore-authentication.keystore-password-credential-reference

The reference to credential for the keystore password stored in CredentialStore under defined alias or clear text password.

swarm.management.security-realms.KEY.truststore-authentication.keystore-path

The path of the keystore, will be ignored if the keystore-provider is anything other than JKS.

swarm.management.security-realms.KEY.truststore-authentication.keystore-provider

The provider for loading the keystore, defaults to JKS.

swarm.management.security-realms.KEY.truststore-authentication.keystore-relative-to

The name of another previously named path, or of one of the standard paths provided by the system. If 'relative-to' is provided, the value of the 'path' attribute is treated as relative to the path specified by this attribute.

swarm.management.security-realms.KEY.users-authentication.users.KEY.credential-reference

The reference to credential for the password stored in CredentialStore under defined alias or clear text password.

swarm.management.security-realms.KEY.users-authentication.users.KEY.password

The user’s password.

Configuration

swarm.monitor.security-realm

(not yet documented)

Configuration

swarm.naming.bindings.KEY.attribute-class

The object factory class name for object factory bindings

swarm.naming.bindings.KEY.binding-type

The type of binding to create, may be simple, lookup, external-context or object-factory

swarm.naming.bindings.KEY.cache

If the external context should be cached

swarm.naming.bindings.KEY.environment

The environment to use on object factory instance retrieval

swarm.naming.bindings.KEY.lookup

The entry to lookup in JNDI for lookup bindings

swarm.naming.bindings.KEY.module

The module to load the object factory from for object factory bindings

swarm.naming.bindings.KEY.type

The type of the value to bind for simple bindings, this must be a primitive type

swarm.naming.bindings.KEY.value

The value to bind for simple bindings

Configuration

swarm.opentracing.servlet.skipPattern

The servlet skip pattern as a Java compilable Pattern. Optional. Ex.: /health-check

Configuration

swarm.remoting.connectors.KEY.authentication-provider

The "authentication-provider" element contains the name of the authentication provider to use for incoming connections.

swarm.remoting.connectors.KEY.properties.KEY.value

The property value.

swarm.remoting.connectors.KEY.sasl-authentication-factory

Reference to the SASL authentication factory to secure this connector.

swarm.remoting.connectors.KEY.sasl-protocol

The protocol to pass into the SASL mechanisms used for authentication.

swarm.remoting.connectors.KEY.sasl-security.include-mechanisms

The optional nested "include-mechanisms" element contains a whitelist of allowed SASL mechanism names. No mechanisms will be allowed which are not present in this list.

swarm.remoting.connectors.KEY.sasl-security.policy-sasl-policy.forward-secrecy

The optional nested "forward-secrecy" element contains a boolean value which specifies whether mechanisms that implement forward secrecy between sessions are required. Forward secrecy means that breaking into one session will not automatically provide information for breaking into future sessions.

swarm.remoting.connectors.KEY.sasl-security.policy-sasl-policy.no-active

The optional nested "no-active" element contains a boolean value which specifies whether mechanisms susceptible to active (non-dictionary) attacks are not permitted. "false" to permit, "true" to deny.

swarm.remoting.connectors.KEY.sasl-security.policy-sasl-policy.no-anonymous

The optional nested "no-anonymous" element contains a boolean value which specifies whether mechanisms that accept anonymous login are permitted. "false" to permit, "true" to deny.

swarm.remoting.connectors.KEY.sasl-security.policy-sasl-policy.no-dictionary

The optional nested "no-dictionary" element contains a boolean value which specifies whether mechanisms susceptible to passive dictionary attacks are permitted. "false" to permit, "true" to deny.

swarm.remoting.connectors.KEY.sasl-security.policy-sasl-policy.no-plain-text

The optional nested "no-plain-text" element contains a boolean value which specifies whether mechanisms susceptible to simple plain passive attacks (e.g., "PLAIN") are not permitted. "false" to permit, "true" to deny.

swarm.remoting.connectors.KEY.sasl-security.policy-sasl-policy.pass-credentials

The optional nested "pass-credentials" element contains a boolean value which specifies whether mechanisms that pass client credentials are required.

swarm.remoting.connectors.KEY.sasl-security.properties.KEY.value

The property value.

swarm.remoting.connectors.KEY.sasl-security.qop

The optional nested "qop" element contains a list of quality-of-protection values, in decreasing order of preference.

swarm.remoting.connectors.KEY.sasl-security.reuse-session

The optional nested "reuse-session" boolean element specifies whether or not the server should attempt to reuse previously authenticated session information. The mechanism may or may not support such reuse, and other factors may also prevent it.

swarm.remoting.connectors.KEY.sasl-security.server-auth

The optional nested "server-auth" boolean element specifies whether the server should authenticate to the client. Not all mechanisms may support this setting.

swarm.remoting.connectors.KEY.sasl-security.strength

The optional nested "strength" element contains a list of cipher strength values, in decreasing order of preference.

swarm.remoting.connectors.KEY.security-realm

The associated security realm to use for authentication for this connector.

swarm.remoting.connectors.KEY.server-name

The server name to send in the initial message exchange and for SASL based authentication.

swarm.remoting.connectors.KEY.socket-binding

The name of the socket binding to attach to.

swarm.remoting.connectors.KEY.ssl-context

Reference to the SSLContext to use for this connector.

swarm.remoting.endpoint-configuration.auth-realm

The authentication realm to use if no authentication {@code CallbackHandler} is specified.

swarm.remoting.endpoint-configuration.authentication-retries

Specify the number of times a client is allowed to retry authentication before closing the connection.

swarm.remoting.endpoint-configuration.authorize-id

The SASL authorization ID. Used as authentication user name to use if no authentication {@code CallbackHandler} is specifiedand the selected SASL mechanism demands a user name.

swarm.remoting.endpoint-configuration.buffer-region-size

The size of allocated buffer regions.

swarm.remoting.endpoint-configuration.heartbeat-interval

The interval to use for connection heartbeat, in milliseconds. If the connection is idle in the outbound directionfor this amount of time, a ping message will be sent, which will trigger a corresponding reply message.

swarm.remoting.endpoint-configuration.max-inbound-channels

The maximum number of inbound channels to support for a connection.

swarm.remoting.endpoint-configuration.max-inbound-message-size

The maximum inbound message size to be allowed. Messages exceeding this size will cause an exception to be thrown on the reading side as well as the writing side.

swarm.remoting.endpoint-configuration.max-inbound-messages

The maximum number of concurrent inbound messages on a channel.

swarm.remoting.endpoint-configuration.max-outbound-channels

The maximum number of outbound channels to support for a connection.

swarm.remoting.endpoint-configuration.max-outbound-message-size

The maximum outbound message size to send. No messages larger than this well be transmitted; attempting to do so will cause an exception on the writing side.

swarm.remoting.endpoint-configuration.max-outbound-messages

The maximum number of concurrent outbound messages on a channel.

swarm.remoting.endpoint-configuration.receive-buffer-size

The size of the largest buffer that this endpoint will accept over a connection.

swarm.remoting.endpoint-configuration.receive-window-size

The maximum window size of the receive direction for connection channels, in bytes.

swarm.remoting.endpoint-configuration.sasl-protocol

Where a SaslServer or SaslClient are created by default the protocol specified it 'remoting', this can be used to override this.

swarm.remoting.endpoint-configuration.send-buffer-size

The size of the largest buffer that this endpoint will transmit over a connection.

swarm.remoting.endpoint-configuration.server-name

The server side of the connection passes it’s name to the client in the initial greeting, by default the name is automatically discovered from the local address of the connection or it can be overridden using this.

swarm.remoting.endpoint-configuration.transmit-window-size

The maximum window size of the transmit direction for connection channels, in bytes.

swarm.remoting.endpoint-configuration.worker

Worker to use

swarm.remoting.http-connectors.KEY.authentication-provider

The "authentication-provider" element contains the name of the authentication provider to use for incoming connections.

swarm.remoting.http-connectors.KEY.connector-ref

The name (or names) of a connector in the Undertow subsystem to connect to.

swarm.remoting.http-connectors.KEY.properties.KEY.value

The property value.

swarm.remoting.http-connectors.KEY.sasl-authentication-factory

Reference to the SASL authentication factory to use for this connector.

swarm.remoting.http-connectors.KEY.sasl-protocol

The protocol to pass into the SASL mechanisms used for authentication.

swarm.remoting.http-connectors.KEY.sasl-security.include-mechanisms

The optional nested "include-mechanisms" element contains a whitelist of allowed SASL mechanism names. No mechanisms will be allowed which are not present in this list.

swarm.remoting.http-connectors.KEY.sasl-security.policy-sasl-policy.forward-secrecy

The optional nested "forward-secrecy" element contains a boolean value which specifies whether mechanisms that implement forward secrecy between sessions are required. Forward secrecy means that breaking into one session will not automatically provide information for breaking into future sessions.

swarm.remoting.http-connectors.KEY.sasl-security.policy-sasl-policy.no-active

The optional nested "no-active" element contains a boolean value which specifies whether mechanisms susceptible to active (non-dictionary) attacks are not permitted. "false" to permit, "true" to deny.

swarm.remoting.http-connectors.KEY.sasl-security.policy-sasl-policy.no-anonymous

The optional nested "no-anonymous" element contains a boolean value which specifies whether mechanisms that accept anonymous login are permitted. "false" to permit, "true" to deny.

swarm.remoting.http-connectors.KEY.sasl-security.policy-sasl-policy.no-dictionary

The optional nested "no-dictionary" element contains a boolean value which specifies whether mechanisms susceptible to passive dictionary attacks are permitted. "false" to permit, "true" to deny.

swarm.remoting.http-connectors.KEY.sasl-security.policy-sasl-policy.no-plain-text

The optional nested "no-plain-text" element contains a boolean value which specifies whether mechanisms susceptible to simple plain passive attacks (e.g., "PLAIN") are not permitted. "false" to permit, "true" to deny.

swarm.remoting.http-connectors.KEY.sasl-security.policy-sasl-policy.pass-credentials

The optional nested "pass-credentials" element contains a boolean value which specifies whether mechanisms that pass client credentials are required.

swarm.remoting.http-connectors.KEY.sasl-security.properties.KEY.value

The property value.

swarm.remoting.http-connectors.KEY.sasl-security.qop

The optional nested "qop" element contains a list of quality-of-protection values, in decreasing order of preference.

swarm.remoting.http-connectors.KEY.sasl-security.reuse-session

The optional nested "reuse-session" boolean element specifies whether or not the server should attempt to reuse previously authenticated session information. The mechanism may or may not support such reuse, and other factors may also prevent it.

swarm.remoting.http-connectors.KEY.sasl-security.server-auth

The optional nested "server-auth" boolean element specifies whether the server should authenticate to the client. Not all mechanisms may support this setting.

swarm.remoting.http-connectors.KEY.sasl-security.strength

The optional nested "strength" element contains a list of cipher strength values, in decreasing order of preference.

swarm.remoting.http-connectors.KEY.security-realm

The associated security realm to use for authentication for this connector.

swarm.remoting.http-connectors.KEY.server-name

The server name to send in the initial message exchange and for SASL based authentication.

swarm.remoting.local-outbound-connections.KEY.outbound-socket-binding-ref

Name of the outbound-socket-binding which will be used to determine the destination address and port for the connection.

swarm.remoting.local-outbound-connections.KEY.properties.KEY.value

The property value.

swarm.remoting.outbound-connections.KEY.properties.KEY.value

The property value.

swarm.remoting.outbound-connections.KEY.uri

The connection URI for the outbound connection.

swarm.remoting.port

Port for legacy remoting connector

swarm.remoting.remote-outbound-connections.KEY.authentication-context

Reference to the authentication context instance containing the configuration for outbound connections.

swarm.remoting.remote-outbound-connections.KEY.outbound-socket-binding-ref

Name of the outbound-socket-binding which will be used to determine the destination address and port for the connection.

swarm.remoting.remote-outbound-connections.KEY.properties.KEY.value

The property value.

swarm.remoting.remote-outbound-connections.KEY.protocol

The protocol to use for the remote connection.

swarm.remoting.remote-outbound-connections.KEY.security-realm

Reference to the security realm to use to obtain the password and SSL configuration.

swarm.remoting.remote-outbound-connections.KEY.username

The user name to use when authenticating against the remote server.

swarm.remoting.required

(not yet documented)

swarm.remoting.worker-read-threads

The number of read threads to create for the remoting worker.

swarm.remoting.worker-task-core-threads

The number of core threads for the remoting worker task thread pool.

swarm.remoting.worker-task-keepalive

The number of milliseconds to keep non-core remoting worker task threads alive.

swarm.remoting.worker-task-limit

The maximum number of remoting worker tasks to allow before rejecting.

swarm.remoting.worker-task-max-threads

The maximum number of threads for the remoting worker task thread pool.

swarm.remoting.worker-write-threads

The number of write threads to create for the remoting worker.

Configuration

swarm.request-controller.active-requests

The number of requests that are currently running in the server

swarm.request-controller.max-requests

The maximum number of all types of requests that can be running in a server at a time. Once this limit is hit any new requests will be rejected.

swarm.request-controller.track-individual-endpoints

If this is true requests are tracked at an endpoint level, which will allow individual deployments to be suspended

Configuration

swarm.resource-adapters.resource-adapters.KEY.admin-objects.KEY.class-name

Specifies the fully qualified class name of an administration object.

swarm.resource-adapters.resource-adapters.KEY.admin-objects.KEY.config-properties.KEY.value

Custom defined config property value.

swarm.resource-adapters.resource-adapters.KEY.admin-objects.KEY.enabled

Specifies if the administration object should be enabled.

swarm.resource-adapters.resource-adapters.KEY.admin-objects.KEY.jndi-name

Specifies the JNDI name for the administration object.

swarm.resource-adapters.resource-adapters.KEY.admin-objects.KEY.use-java-context

Setting this to false will bind the object into global JNDI.

swarm.resource-adapters.resource-adapters.KEY.archive

Specifies the resource adapter archive.

swarm.resource-adapters.resource-adapters.KEY.beanvalidationgroups

Specifies the bean validation groups that should be used.

swarm.resource-adapters.resource-adapters.KEY.bootstrap-context

Specifies the unique name of the bootstrap context that should be used.

swarm.resource-adapters.resource-adapters.KEY.config-properties.KEY.value

Custom defined config property value.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.allocation-retry

The allocation retry element indicates the number of times that allocating a connection should be tried before throwing an exception.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.allocation-retry-wait-millis

The allocation retry wait millis element specifies the amount of time, in milliseconds, to wait between retrying to allocate a connection.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.authentication-context

The Elytron authentication context which defines the javax.security.auth.Subject that is used to distinguish connections in the pool.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.authentication-context-and-application

Indicates that either application-supplied parameters, such as from getConnection(user, pw), or Subject (provided by Elytron after authenticating using configured authentication-context), are used to distinguish connections in the pool.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.background-validation

An element to specify that connections should be validated on a background thread versus being validated prior to use. Changing this value requires a server restart.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.background-validation-millis

The background-validation-millis element specifies the amount of time, in milliseconds, that background validation will run. Changing this value requires a server restart.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.blocking-timeout-wait-millis

The blocking-timeout-millis element specifies the maximum time, in milliseconds, to block while waiting for a connection before throwing an exception. Note that this blocks only while waiting for locking a connection, and will never throw an exception if creating a new connection takes an inordinately long time.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.capacity-decrementer-class

Class defining the policy for decrementing connections in the pool.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.capacity-decrementer-properties

Properties to inject in class defining the policy for decrementing connections in the pool.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.capacity-incrementer-class

Class defining the policy for incrementing connections in the pool.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.capacity-incrementer-properties

Properties to inject in class defining the policy for incrementing connections in the pool.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.class-name

Specifies the fully qualified class name of a managed connection factory or admin object.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.config-properties.KEY.value

Custom defined config property value.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.connectable

Enable the use of CMR. This feature means that a local resource can reliably participate in an XA transaction.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.elytron-enabled

Enables Elytron security for handling authentication of connections. The Elytron authentication-context to be used will be current context if no context is specified (see authentication-context).

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.enabled

Specifies if the resource adapter should be enabled.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.enlistment

Defines if lazy enlistment should be used if supported by the resource adapter.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.enlistment-trace

Defines if WildFly/IronJacamar should record enlistment traces.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.flush-strategy

Specifies how the pool should be flushed in case of an error.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.idle-timeout-minutes

Specifies the maximum time, in minutes, a connection may be idle before being closed. The actual maximum time depends also on the IdleRemover scan time, which is half of the smallest idle-timeout-minutes value of any pool. Changing this value requires a server restart.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.initial-pool-size

Specifies the initial number of connections a pool should hold.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.interleaving

An element to enable interleaving for XA connections.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.jndi-name

Specifies the JNDI name for the connection factory.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.max-pool-size

Specifies the maximum number of connections for a pool. No more connections will be created in each sub-pool.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.mcp

Defines the ManagedConnectionPool implementation. For example: org.jboss.jca.core.connectionmanager.pool.mcp.SemaphoreArrayListManagedConnectionPool.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.min-pool-size

Specifies the minimum number of connections for a pool.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.no-recovery

Specifies if the connection pool should be excluded from recovery.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.no-tx-separate-pool

Oracle does not like XA connections getting used both inside and outside a JTA transaction. To workaround the problem you can create separate sub-pools for the different contexts.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.pad-xid

Specifies whether the Xid should be padded.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.pool-fair

Defines if pool use should be fair.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.pool-prefill

Specifies if the pool should be prefilled. Changing this value requires a server restart.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.pool-use-strict-min

Specifies if the min-pool-size should be considered strict.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.recovery-authentication-context

The Elytron authentication context used for recovery (current authentication-context will be used if unspecified).

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.recovery-credential-reference

Credential (from Credential Store) to authenticate on recovery connection

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.recovery-elytron-enabled

Indicates that an Elytron authentication context will be used for recovery.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.recovery-password

The password used for recovery.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.recovery-plugin-class-name

The fully qualified class name of the recovery plugin implementation.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.recovery-plugin-properties

The properties for the recovery plugin.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.recovery-security-domain

The PicketBox security domain used for recovery.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.recovery-username

The user name used for recovery.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.same-rm-override

Using this attribute, you can unconditionally set whether javax.transaction.xa.XAResource.isSameRM(XAResource) returns true or false.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.security-application

Indicates that application-supplied parameters, such as from getConnection(user, pw), are used to distinguish connections in the pool.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.security-domain

Specifies the PicketBox security domain which defines the javax.security.auth.Subject that is used to distinguish connections in the pool.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.security-domain-and-application

Indicates that either application-supplied parameters, such as from getConnection(user, pw), or Subject (from PicketBox security domain), are used to distinguish connections in the pool.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.sharable

Enable the use of sharable connections, which allows lazy association to be enabled if supported.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.tracking

Defines if IronJacamar should track connection handles across transaction boundaries.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.use-ccm

Enable the use of a cached connection manager.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.use-fast-fail

Whether to fail a connection allocation on the first try if it is invalid (true) or keep trying until the pool is exhausted of all potential connections (false).

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.use-java-context

Setting this to false will bind the object into global JNDI.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.validate-on-match

This specifies if connection validation should be done when a connection factory attempts to match a managed connection. This is typically exclusive to the use of background validation.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.wrap-xa-resource

Specifies whether XAResource instances should be wrapped in an org.jboss.tm.XAResourceWrapper instance.

swarm.resource-adapters.resource-adapters.KEY.connection-definitions.KEY.xa-resource-timeout

The value is passed to XAResource.setTransactionTimeout(), in seconds.

swarm.resource-adapters.resource-adapters.KEY.module

Specifies the module from which resource adapter will be loaded

swarm.resource-adapters.resource-adapters.KEY.statistics-enabled

Define whether runtime statistics are enabled or not.

swarm.resource-adapters.resource-adapters.KEY.transaction-support

Specifies the transaction support level of the resource adapter.

swarm.resource-adapters.resource-adapters.KEY.wm-elytron-security-domain

Defines the name of the Elytron security domain that should be used.

swarm.resource-adapters.resource-adapters.KEY.wm-security

Toggle on/off wm.security for this resource adapter. In case of false all wm-security-* parameters are ignored, even the defaults.

swarm.resource-adapters.resource-adapters.KEY.wm-security-default-groups

Defines a default groups list that should be added to the used Subject instance.

swarm.resource-adapters.resource-adapters.KEY.wm-security-default-principal

Defines a default principal name that should be added to the used Subject instance.

swarm.resource-adapters.resource-adapters.KEY.wm-security-domain

Defines the name of the PicketBox security domain that should be used.

swarm.resource-adapters.resource-adapters.KEY.wm-security-mapping-groups

List of groups mappings.

swarm.resource-adapters.resource-adapters.KEY.wm-security-mapping-required

Defines if a mapping is required for security credentials.

swarm.resource-adapters.resource-adapters.KEY.wm-security-mapping-users

List of user mappings.