DICOM Security Service

Description

DICOM Security Service. Performs JAAS login with user information provided in the Association Request or AE configuration for the calling AE and make returned information about user roles (javax.security.auth.Subject) available for invoked DICOM services by association property "user".

Dependencies

Attributes

#SecurityDomain

Name of security domain specified in conf/login-config.xml, which defines authentication parameters and roles associated to user names.

Default Value: dcm4chee-dicom

#RejectIfNoUserIdentity

Defines if Association Request w/o User Identity information from remote AEs with no default User Identity specified by the AE configuration shall be rejected!

Default Value: false

#DefaultUserID

Default user name associated with an Assocation, if no User Identity information is provided neither in the Assocation Request nor in the AE configuration for the Calling AE.
Only effective if #RejectIfNoUserIdentity is false.
Use '-' (hypen) for specifying no default User ID. Then no javax.security.auth.Subject will be associated with the association in that case.

Default Value: -

#DefaultPassword

Password for user specified in #DefaultUserID.
Only effective if #DefaultUserID is not '-' and #RejectIfNoUserIdentity is false.
Use '-' (hypen) for no password.

Default Value: -

#Name

The class name of the MBean

#State

The status of the MBean

#StateString

The status of the MBean in text form

Operations

#userIdentityNegotiator

get UserIdentityNegotiator

isValid(userID, password, subject)

Validate password for user and populate subject

#create

Standard MBean lifecycle method

#start

The start lifecycle operation

#stop

The stop lifecycle operation

#destroy

The destroy lifecycle operation

#jbossInternalLifecycle

The detyped lifecycle operation (for internal use only)

Notifications