Supports Expression Language: true (will be evaluated using variable registry only)SSL Context Service | ssl-context-service | | Controller Service API: RestrictedSSLContextService Implementation: StandardRestrictedSSLContextService | The SSL Context Service to use in order to secure the server. If specified, the server will accept only WSS requests; otherwise, the server will accept only WS requests |
SSL Client Authentication | client-authentication | No Authentication | - No Authentication
![Processor will not authenticate clients. Anyone can communicate with this Processor anonymously Processor will not authenticate clients. Anyone can communicate with this Processor anonymously](../../../../../html/images/iconInfo.png) - Want Authentication
![Processor will try to verify the client but if unable to verify will allow the client to communicate anonymously Processor will try to verify the client but if unable to verify will allow the client to communicate anonymously](../../../../../html/images/iconInfo.png) - Need Authentication
![Processor will reject communications from any client unless the client provides a certificate that is trusted by the TrustStore specified in the SSL Context Service Processor will reject communications from any client unless the client provides a certificate that is trusted by the TrustStore specified in the SSL Context Service](../../../../../html/images/iconInfo.png)
| Specifies whether or not the Processor should authenticate client by its certificate. This value is ignored if the <SSL Context Service> Property is not specified or the SSL Context provided uses only a KeyStore and not a TrustStore. |
Enable Basic Authentication | basic-auth | false | | If enabled, client connection requests are authenticated with Basic authentication using the specified Login Provider. |
Basic Authentication Path Spec | auth-path-spec | /* | | Specify a Path Spec to apply Basic Authentication. Supports Expression Language: true (will be evaluated using variable registry only) |
Basic Authentication Roles | auth-roles | ** | | The authenticated user must have one of specified role. Multiple roles can be set as comma separated string. '*' represents any role and so does '**' any role including no role. Supports Expression Language: true (will be evaluated using variable registry only) |
Login Service | login-service | HashLoginService | - HashLoginService
![See http://www.eclipse.org/jetty/javadoc/current/org/eclipse/jetty/security/HashLoginService.html for detail. See http://www.eclipse.org/jetty/javadoc/current/org/eclipse/jetty/security/HashLoginService.html for detail.](../../../../../html/images/iconInfo.png)
| Specify which Login Service to use for Basic Authentication. |
Users Properties File | users-properties-file | | | Specify a property file containing users for Basic Authentication using HashLoginService. See http://www.eclipse.org/jetty/documentation/current/configuring-security.html for detail.
This property requires exactly one file to be provided..
Supports Expression Language: true (will be evaluated using variable registry only) |
State management:
This component does not store state.Restricted:
This component is not restricted.System Resource Considerations:
None specified.