A NoSecurity provider offers pass-through security for SAP Mobile Server, and should be typically be reserved for devlopment or testing. SAP strongly encourages you to avoid using this provider in production environments — either for administration or device user authentication.
|useUsernameAsIdentity||true||If this option is set to true, the user name supplied in the callback is set as the name of the principal added to the subject.|
|identity||nosec_identity||The value of this configuration
option is used as the identity of the user if either of these
conditions is met:
|Use First Password||false||If set to true, the login module attempts to retrieve only the user name and password from the shared context. It never calls the callback handler.|
|Try First Password||false||If set to true, the login module first attempts to retrieve the user name and password from the shared context before attempting the callback handler.|
|Clear Password||false||If set to true, the login module clears the user name and password in the shared context when calling either commit or abort.|
|Store Password||false||If set to true, the login module stores the user name and password in the shared context after successfully authenticating.|
(Optional). When enabled, allows the administrator to associate a description with the provider instance.
Using a provider description makes it easier to differentiate between multiple instances of the same provider type: for example, when you have multiple login modules of the same type stacked in a security configuration, each targeting a different repository.