API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Oct 12th, 2018
106
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 24.33 KB | None | 0 0
raw download clone embed print report
  1. <?xml version='1.0' encoding='UTF-8'?>
  2.  
  3. <server xmlns="urn:jboss:domain:4.0">
  4.  
  5. <extensions>
  6. <extension module="org.jboss.as.clustering.infinispan"/>
  7. <extension module="org.jboss.as.connector"/>
  8. <extension module="org.jboss.as.deployment-scanner"/>
  9. <extension module="org.jboss.as.ee"/>
  10. <extension module="org.jboss.as.ejb3"/>
  11. <extension module="org.jboss.as.jaxrs"/>
  12. <extension module="org.jboss.as.jdr"/>
  13. <extension module="org.jboss.as.jmx"/>
  14. <extension module="org.jboss.as.jpa"/>
  15. <extension module="org.jboss.as.jsf"/>
  16. <extension module="org.jboss.as.logging"/>
  17. <extension module="org.jboss.as.mail"/>
  18. <extension module="org.jboss.as.naming"/>
  19. <extension module="org.jboss.as.remoting"/>
  20. <extension module="org.jboss.as.security"/>
  21. <extension module="org.jboss.as.transactions"/>
  22. <extension module="org.keycloak.keycloak-server-subsystem"/>
  23. <extension module="org.wildfly.extension.bean-validation"/>
  24. <extension module="org.wildfly.extension.io"/>
  25. <extension module="org.wildfly.extension.request-controller"/>
  26. <extension module="org.wildfly.extension.security.manager"/>
  27. <extension module="org.wildfly.extension.undertow"/>
  28. </extensions>
  29. <system-properties>
  30. <property name="keystore-path" value="${env.HOME}/keycloak-3.2.1.Final/sync.jks"/>
  31. <property name="keystore-password" value="changeit"/>
  32. </system-properties>
  33. <management>
  34. <security-realms>
  35. <security-realm name="ManagementRealm">
  36. <authentication>
  37. <local default-user="$local" skip-group-loading="true"/>
  38. <properties path="mgmt-users.properties" relative-to="jboss.server.config.dir"/>
  39. </authentication>
  40. <authorization map-groups-to-roles="false">
  41. <properties path="mgmt-groups.properties" relative-to="jboss.server.config.dir"/>
  42. </authorization>
  43. </security-realm>
  44. <security-realm name="ApplicationRealm">
  45. <authentication>
  46. <local default-user="$local" allowed-users="*" skip-group-loading="true"/>
  47. <properties path="application-users.properties" relative-to="jboss.server.config.dir"/>
  48. </authentication>
  49. <authorization>
  50. <properties path="application-roles.properties" relative-to="jboss.server.config.dir"/>
  51. </authorization>
  52. </security-realm>
  53. </security-realms>
  54. <audit-log>
  55. <formatters>
  56. <json-formatter name="json-formatter"/>
  57. </formatters>
  58. <handlers>
  59. <file-handler name="file" formatter="json-formatter" path="audit-log.log" relative-to="jboss.server.data.dir"/>
  60. </handlers>
  61. <logger log-boot="true" log-read-only="false" enabled="false">
  62. <handlers>
  63. <handler name="file"/>
  64. </handlers>
  65. </logger>
  66. </audit-log>
  67. <management-interfaces>
  68. <http-interface security-realm="ManagementRealm" http-upgrade-enabled="true">
  69. <socket-binding http="management-http"/>
  70. </http-interface>
  71. </management-interfaces>
  72. <access-control provider="simple">
  73. <role-mapping>
  74. <role name="SuperUser">
  75. <include>
  76. <user name="$local"/>
  77. </include>
  78. </role>
  79. </role-mapping>
  80. </access-control>
  81. </management>
  82.  
  83. <profile>
  84. <subsystem xmlns="urn:jboss:domain:logging:3.0">
  85. <console-handler name="CONSOLE">
  86. <level name="INFO"/>
  87. <formatter>
  88. <named-formatter name="COLOR-PATTERN"/>
  89. </formatter>
  90. </console-handler>
  91. <periodic-rotating-file-handler name="FILE" autoflush="true">
  92. <formatter>
  93. <named-formatter name="PATTERN"/>
  94. </formatter>
  95. <file relative-to="jboss.server.log.dir" path="server.log"/>
  96. <suffix value=".yyyy-MM-dd"/>
  97. <append value="true"/>
  98. </periodic-rotating-file-handler>
  99. <logger category="com.arjuna">
  100. <level name="WARN"/>
  101. </logger>
  102. <logger category="org.jboss.as.config">
  103. <level name="DEBUG"/>
  104. </logger>
  105. <logger category="sun.rmi">
  106. <level name="WARN"/>
  107. </logger>
  108. <root-logger>
  109. <level name="INFO"/>
  110. <handlers>
  111. <handler name="CONSOLE"/>
  112. <handler name="FILE"/>
  113. </handlers>
  114. </root-logger>
  115. <formatter name="PATTERN">
  116. <pattern-formatter pattern="%d{yyyy-MM-dd HH:mm:ss,SSS} %-5p [%c] (%t) %s%e%n"/>
  117. </formatter>
  118. <formatter name="COLOR-PATTERN">
  119. <pattern-formatter pattern="%K{level}%d{HH:mm:ss,SSS} %-5p [%c] (%t) %s%e%n"/>
  120. </formatter>
  121. </subsystem>
  122. <subsystem xmlns="urn:jboss:domain:bean-validation:1.0"/>
  123. <subsystem xmlns="urn:jboss:domain:datasources:4.0">
  124. <datasources>
  125. <datasource jndi-name="java:jboss/datasources/KeycloakDS" pool-name="KeycloakDS" enabled="true" use-java-context="true">
  126. <connection-url>jdbc:mysql://localhost:3306/keycloak</connection-url>
  127. <driver>mysql</driver>
  128. <security>
  129. <user-name>keycloak</user-name>
  130. <password>password</password>
  131. </security>
  132. </datasource>
  133. <drivers>
  134. <driver name="h2" module="com.h2database.h2">
  135. <xa-datasource-class>org.h2.jdbcx.JdbcDataSource</xa-datasource-class>
  136. </driver>
  137. <driver name="mysql" module="com.mysql">
  138. <xa-datasource-class>com.mysql.jdbc.Driver</xa-datasource-class>
  139. </driver>
  140. </drivers>
  141. </datasources>
  142. </subsystem>
  143. <subsystem xmlns="urn:jboss:domain:deployment-scanner:2.0">
  144. <deployment-scanner path="deployments" relative-to="jboss.server.base.dir" scan-interval="5000" runtime-failure-causes-rollback="${jboss.deployment.scanner.rollback.on.failure:false}"/>
  145. </subsystem>
  146. <subsystem xmlns="urn:jboss:domain:ee:4.0">
  147. <spec-descriptor-property-replacement>false</spec-descriptor-property-replacement>
  148. <concurrent>
  149. <context-services>
  150. <context-service name="default" jndi-name="java:jboss/ee/concurrency/context/default" use-transaction-setup-provider="true"/>
  151. </context-services>
  152. <managed-thread-factories>
  153. <managed-thread-factory name="default" jndi-name="java:jboss/ee/concurrency/factory/default" context-service="default"/>
  154. </managed-thread-factories>
  155. <managed-executor-services>
  156. <managed-executor-service name="default" jndi-name="java:jboss/ee/concurrency/executor/default" context-service="default" hung-task-threshold="60000" keepalive-time="5000"/>
  157. </managed-executor-services>
  158. <managed-scheduled-executor-services>
  159. <managed-scheduled-executor-service name="default" jndi-name="java:jboss/ee/concurrency/scheduler/default" context-service="default" hung-task-threshold="60000" keepalive-time="3000"/>
  160. </managed-scheduled-executor-services>
  161. </concurrent>
  162. <default-bindings context-service="java:jboss/ee/concurrency/context/default" datasource="java:jboss/datasources/KeycloakDS" managed-executor-service="java:jboss/ee/concurrency/executor/default" managed-scheduled-executor-service="java:jboss/ee/concurrency/scheduler/default" managed-thread-factory="java:jboss/ee/concurrency/factory/default"/>
  163. </subsystem>
  164. <subsystem xmlns="urn:jboss:domain:ejb3:4.0">
  165. <session-bean>
  166. <stateless>
  167. <bean-instance-pool-ref pool-name="slsb-strict-max-pool"/>
  168. </stateless>
  169. <stateful default-access-timeout="5000" cache-ref="simple" passivation-disabled-cache-ref="simple"/>
  170. <singleton default-access-timeout="5000"/>
  171. </session-bean>
  172. <pools>
  173. <bean-instance-pools>
  174. <strict-max-pool name="slsb-strict-max-pool" derive-size="from-worker-pools" instance-acquisition-timeout="5" instance-acquisition-timeout-unit="MINUTES"/>
  175. <strict-max-pool name="mdb-strict-max-pool" derive-size="from-cpu-count" instance-acquisition-timeout="5" instance-acquisition-timeout-unit="MINUTES"/>
  176. </bean-instance-pools>
  177. </pools>
  178. <caches>
  179. <cache name="simple"/>
  180. <cache name="distributable" passivation-store-ref="infinispan" aliases="passivating clustered"/>
  181. </caches>
  182. <passivation-stores>
  183. <passivation-store name="infinispan" cache-container="ejb" max-size="10000"/>
  184. </passivation-stores>
  185. <async thread-pool-name="default"/>
  186. <timer-service thread-pool-name="default" default-data-store="default-file-store">
  187. <data-stores>
  188. <file-data-store name="default-file-store" path="timer-service-data" relative-to="jboss.server.data.dir"/>
  189. </data-stores>
  190. </timer-service>
  191. <remote connector-ref="http-remoting-connector" thread-pool-name="default"/>
  192. <thread-pools>
  193. <thread-pool name="default">
  194. <max-threads count="10"/>
  195. <keepalive-time time="100" unit="milliseconds"/>
  196. </thread-pool>
  197. </thread-pools>
  198. <default-security-domain value="other"/>
  199. <default-missing-method-permissions-deny-access value="true"/>
  200. <log-system-exceptions value="true"/>
  201. </subsystem>
  202. <subsystem xmlns="urn:jboss:domain:io:1.1">
  203. <worker name="default"/>
  204. <buffer-pool name="default"/>
  205. </subsystem>
  206. <subsystem xmlns="urn:jboss:domain:infinispan:4.0">
  207. <cache-container name="keycloak" jndi-name="infinispan/Keycloak">
  208. <local-cache name="realms">
  209. <eviction strategy="LRU" max-entries="10000"/>
  210. </local-cache>
  211. <local-cache name="users">
  212. <eviction strategy="LRU" max-entries="10000"/>
  213. </local-cache>
  214. <local-cache name="sessions"/>
  215. <local-cache name="authenticationSessions"/>
  216. <local-cache name="offlineSessions"/>
  217. <local-cache name="loginFailures"/>
  218. <local-cache name="work"/>
  219. <local-cache name="authorization">
  220. <eviction strategy="LRU" max-entries="10000"/>
  221. </local-cache>
  222. <local-cache name="keys">
  223. <eviction strategy="LRU" max-entries="1000"/>
  224. <expiration max-idle="3600000"/>
  225. </local-cache>
  226. <local-cache name="actionTokens">
  227. <eviction strategy="NONE" max-entries="-1"/>
  228. <expiration interval="300000" max-idle="-1"/>
  229. </local-cache>
  230. </cache-container>
  231. <cache-container name="server" default-cache="default" module="org.wildfly.clustering.server">
  232. <local-cache name="default">
  233. <transaction mode="BATCH"/>
  234. </local-cache>
  235. </cache-container>
  236. <cache-container name="web" default-cache="passivation" module="org.wildfly.clustering.web.infinispan">
  237. <local-cache name="passivation">
  238. <locking isolation="REPEATABLE_READ"/>
  239. <transaction mode="BATCH"/>
  240. <file-store passivation="true" purge="false"/>
  241. </local-cache>
  242. <local-cache name="persistent">
  243. <locking isolation="REPEATABLE_READ"/>
  244. <transaction mode="BATCH"/>
  245. <file-store passivation="false" purge="false"/>
  246. </local-cache>
  247. </cache-container>
  248. <cache-container name="ejb" aliases="sfsb" default-cache="passivation" module="org.wildfly.clustering.ejb.infinispan">
  249. <local-cache name="passivation">
  250. <locking isolation="REPEATABLE_READ"/>
  251. <transaction mode="BATCH"/>
  252. <file-store passivation="true" purge="false"/>
  253. </local-cache>
  254. <local-cache name="persistent">
  255. <locking isolation="REPEATABLE_READ"/>
  256. <transaction mode="BATCH"/>
  257. <file-store passivation="false" purge="false"/>
  258. </local-cache>
  259. </cache-container>
  260. <cache-container name="hibernate" default-cache="local-query" module="org.hibernate.infinispan">
  261. <local-cache name="entity">
  262. <transaction mode="NON_XA"/>
  263. <eviction strategy="LRU" max-entries="10000"/>
  264. <expiration max-idle="100000"/>
  265. </local-cache>
  266. <local-cache name="local-query">
  267. <eviction strategy="LRU" max-entries="10000"/>
  268. <expiration max-idle="100000"/>
  269. </local-cache>
  270. <local-cache name="timestamps"/>
  271. </cache-container>
  272. </subsystem>
  273. <subsystem xmlns="urn:jboss:domain:jaxrs:1.0"/>
  274. <subsystem xmlns="urn:jboss:domain:jca:4.0">
  275. <archive-validation enabled="true" fail-on-error="true" fail-on-warn="false"/>
  276. <bean-validation enabled="true"/>
  277. <default-workmanager>
  278. <short-running-threads>
  279. <core-threads count="50"/>
  280. <queue-length count="50"/>
  281. <max-threads count="50"/>
  282. <keepalive-time time="10" unit="seconds"/>
  283. </short-running-threads>
  284. <long-running-threads>
  285. <core-threads count="50"/>
  286. <queue-length count="50"/>
  287. <max-threads count="50"/>
  288. <keepalive-time time="10" unit="seconds"/>
  289. </long-running-threads>
  290. </default-workmanager>
  291. <cached-connection-manager/>
  292. </subsystem>
  293. <subsystem xmlns="urn:jboss:domain:jdr:1.0"/>
  294. <subsystem xmlns="urn:jboss:domain:jmx:1.3">
  295. <expose-resolved-model/>
  296. <expose-expression-model/>
  297. <remoting-connector/>
  298. </subsystem>
  299. <subsystem xmlns="urn:jboss:domain:jpa:1.1">
  300. <jpa default-datasource="" default-extended-persistence-inheritance="DEEP"/>
  301. </subsystem>
  302. <subsystem xmlns="urn:jboss:domain:jsf:1.0"/>
  303. <subsystem xmlns="urn:jboss:domain:mail:2.0">
  304. <mail-session name="default" jndi-name="java:jboss/mail/Default">
  305. <smtp-server outbound-socket-binding-ref="mail-smtp"/>
  306. </mail-session>
  307. </subsystem>
  308. <subsystem xmlns="urn:jboss:domain:naming:2.0">
  309. <remote-naming/>
  310. </subsystem>
  311. <subsystem xmlns="urn:jboss:domain:remoting:3.0">
  312. <endpoint/>
  313. <http-connector name="http-remoting-connector" connector-ref="default" security-realm="ApplicationRealm"/>
  314. </subsystem>
  315. <subsystem xmlns="urn:jboss:domain:request-controller:1.0"/>
  316. <subsystem xmlns="urn:jboss:domain:security-manager:1.0">
  317. <deployment-permissions>
  318. <maximum-set>
  319. <permission class="java.security.AllPermission"/>
  320. </maximum-set>
  321. </deployment-permissions>
  322. </subsystem>
  323. <subsystem xmlns="urn:jboss:domain:security:1.2">
  324. <security-domains>
  325. <security-domain name="other" cache-type="default">
  326. <authentication>
  327. <login-module code="Remoting" flag="optional">
  328. <module-option name="password-stacking" value="useFirstPass"/>
  329. </login-module>
  330. <login-module code="RealmDirect" flag="required">
  331. <module-option name="password-stacking" value="useFirstPass"/>
  332. </login-module>
  333. </authentication>
  334. </security-domain>
  335. <security-domain name="jboss-web-policy" cache-type="default">
  336. <authorization>
  337. <policy-module code="Delegating" flag="required"/>
  338. </authorization>
  339. </security-domain>
  340. <security-domain name="jboss-ejb-policy" cache-type="default">
  341. <authorization>
  342. <policy-module code="Delegating" flag="required"/>
  343. </authorization>
  344. </security-domain>
  345. <security-domain name="jaspitest" cache-type="default">
  346. <authentication-jaspi>
  347. <login-module-stack name="dummy">
  348. <login-module code="Dummy" flag="optional"/>
  349. </login-module-stack>
  350. <auth-module code="Dummy"/>
  351. </authentication-jaspi>
  352. </security-domain>
  353. </security-domains>
  354. </subsystem>
  355. <subsystem xmlns="urn:jboss:domain:transactions:3.0">
  356. <core-environment>
  357. <process-id>
  358. <uuid/>
  359. </process-id>
  360. </core-environment>
  361. <recovery-environment socket-binding="txn-recovery-environment" status-socket-binding="txn-status-manager"/>
  362. </subsystem>
  363. <subsystem xmlns="urn:jboss:domain:undertow:3.0">
  364. <buffer-cache name="default"/>
  365. <server name="default-server">
  366. <http-listener name="default" socket-binding="http" redirect-socket="https"/>
  367. <host name="default-host" alias="localhost">
  368. <location name="/" handler="welcome-content"/>
  369. <filter-ref name="server-header"/>
  370. <filter-ref name="x-powered-by-header"/>
  371. </host>
  372. </server>
  373. <servlet-container name="default">
  374. <jsp-config/>
  375. <websockets/>
  376. </servlet-container>
  377. <handlers>
  378. <file name="welcome-content" path="${jboss.home.dir}/welcome-content"/>
  379. </handlers>
  380. <filters>
  381. <response-header name="server-header" header-name="Server" header-value="WildFly/10"/>
  382. <response-header name="x-powered-by-header" header-name="X-Powered-By" header-value="Undertow/1"/>
  383. </filters>
  384. </subsystem>
  385. <subsystem xmlns="urn:jboss:domain:keycloak-server:1.1">
  386. <web-context>auth</web-context>
  387. <providers>
  388. <provider>
  389. classpath:${jboss.home.dir}/providers/*
  390. </provider>
  391. </providers>
  392. <master-realm-name>master</master-realm-name>
  393. <scheduled-task-interval>900</scheduled-task-interval>
  394. <theme>
  395. <staticMaxAge>2592000</staticMaxAge>
  396. <cacheThemes>true</cacheThemes>
  397. <cacheTemplates>true</cacheTemplates>
  398. <dir>${jboss.home.dir}/themes</dir>
  399. </theme>
  400. <spi name="eventsStore">
  401. <provider name="jpa" enabled="true">
  402. <properties>
  403. <property name="exclude-events" value="[&quot;REFRESH_TOKEN&quot;]"/>
  404. </properties>
  405. </provider>
  406. </spi>
  407. <spi name="userCache">
  408. <provider name="default" enabled="true"/>
  409. </spi>
  410. <spi name="userSessionPersister">
  411. <default-provider>jpa</default-provider>
  412. </spi>
  413. <spi name="timer">
  414. <default-provider>basic</default-provider>
  415. </spi>
  416. <spi name="connectionsHttpClient">
  417. <provider name="default" enabled="true"/>
  418. </spi>
  419. <spi name="connectionsJpa">
  420. <provider name="default" enabled="true">
  421. <properties>
  422. <property name="dataSource" value="java:jboss/datasources/KeycloakDS"/>
  423. <property name="initializeEmpty" value="true"/>
  424. <property name="migrationStrategy" value="update"/>
  425. <property name="migrationExport" value="${jboss.home.dir}/keycloak-database-update.sql"/>
  426. </properties>
  427. </provider>
  428. </spi>
  429. <spi name="realmCache">
  430. <provider name="default" enabled="true"/>
  431. </spi>
  432. <spi name="connectionsInfinispan">
  433. <default-provider>default</default-provider>
  434. <provider name="default" enabled="true">
  435. <properties>
  436. <property name="cacheContainer" value="java:comp/env/infinispan/Keycloak"/>
  437. </properties>
  438. </provider>
  439. </spi>
  440. <spi name="jta-lookup">
  441. <default-provider>${keycloak.jta.lookup.provider:jboss}</default-provider>
  442. <provider name="jboss" enabled="true"/>
  443. </spi>
  444. <spi name="publicKeyStorage">
  445. <provider name="infinispan" enabled="true">
  446. <properties>
  447. <property name="minTimeBetweenRequests" value="10"/>
  448. </properties>
  449. </provider>
  450. </spi>
  451. <spi name="eventsListener">
  452. <provider name="mc-event-listener" enabled="true">
  453. <properties>
  454. <property name="server-root" value="${env.MC_IDREG_SERVER_ROOT:https://localhost}"/>
  455. <property name="keystore-path" value="${env.HOME}/keycloak-3.2.1.Final/sync.jks"/>
  456. <property name="keystore-password" value="${env.SYNC_KEYSTORE_PASSWORD:changeit}"/>
  457. <property name="truststore-path" value="${env.HOME}/keycloak-3.2.1.Final/mc-truststore.jks"/>
  458. <property name="truststore-password" value="${env.SYNC_TRUSTSTORE_PASSWORD:changeit}"/>
  459. <property name="idp-not-to-sync" value="${env.NOSYNC_IDPS:certificates,projecttestusers}"/>
  460. </properties>
  461. </provider>
  462. </spi>
  463. </subsystem>
  464. </profile>
  465.  
  466. <interfaces>
  467. <interface name="management">
  468. <inet-address value="${jboss.bind.address.management:127.0.0.1}"/>
  469. </interface>
  470. <interface name="public">
  471. <inet-address value="${jboss.bind.address:127.0.0.1}"/>
  472. </interface>
  473. </interfaces>
  474.  
  475. <socket-binding-group name="standard-sockets" default-interface="public" port-offset="${jboss.socket.binding.port-offset:0}">
  476. <socket-binding name="management-http" interface="management" port="${jboss.management.http.port:9990}"/>
  477. <socket-binding name="management-https" interface="management" port="${jboss.management.https.port:9993}"/>
  478. <socket-binding name="ajp" port="${jboss.ajp.port:8009}"/>
  479. <socket-binding name="http" port="${jboss.http.port:8080}"/>
  480. <socket-binding name="https" port="${jboss.https.port:8443}"/>
  481. <socket-binding name="txn-recovery-environment" port="4712"/>
  482. <socket-binding name="txn-status-manager" port="4713"/>
  483. <outbound-socket-binding name="mail-smtp">
  484. <remote-destination host="localhost" port="25"/>
  485. </outbound-socket-binding>
  486. </socket-binding-group>
  487.  
  488. </server>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!