红帽全球峰会此内容没有您所选择的语言版本。
Chapter 19. Configuring Clients
Prior to release 7.1, JBoss EAP client libraries, such as EJB and naming, used different configuration strategies. JBoss EAP 7.1 introduced the wildfly-config.xml file with the purpose of unifying all client configurations into one single configuration file, in a similar manner to the way the server configuration is handled.
The following table describes the clients and types of configuration that can be done using the wildfly-config.xml file in JBoss EAP and a link to the reference schema link for each.
| Client Configuration | Schema Location / Configuration Information |
|---|---|
| Authentication client |
The schema reference is provided in the product installation at The schema is also published at http://www.jboss.org/schema/jbossas/elytron-client-1_2.xsd. |
|
See Client Authentication Configuration Using the Additional information can be found in Configure Client Authentication with Elytron Client in How to Configure Identity Management for JBoss EAP. | |
| EJB client |
The schema reference is provided in the product installation at The schema is also published at http://www.jboss.org/schema/jbossas/wildfly-client-ejb_3_0.xsd. |
|
See EJB Client Configuration Using the Another simple example is located in the Migrate an EJB Client to Elytron section of the Migration Guide for JBoss EAP. | |
| HTTP client |
The schema reference is provided in the product installation at The schema is also published at http://www.jboss.org/schema/jbossas/wildfly-http-client_1_0.xsd. |
| Note This feature is provided as a Technology Preview only.
See HTTP Client Configuration Using the | |
| Remoting client |
The schema reference is provided in the product installation at The schema is also published at http://www.jboss.org/schema/jbossas/jboss-remoting_5_0.xsd. |
|
See Remoting Client Configuration Using the | |
| XNIO worker client |
The schema reference is provided in the product installation at The schema is also published at http://www.jboss.org/schema/jbossas/xnio_3_5.xsd. |
|
See Default XNIO Worker Configuration Using the |
You can use the authentication-client element, which is in the urn:elytron:client:1.2 namespace, to configure client authentication information using the wildfly-config.xml file. This section describes how to configure client authentication using this element.
authentication-client Elements and Attributes
The authentication-client element can optionally contain the following top level child elements, along with their child elements:
credential-storesThis optional element defines credential stores that are referenced from elsewhere in the configuration as an alternative to embedding credentials within the configuration.
It can contain any number of
credential-storeelements.Example:
credential-storesConfigurationCopy to Clipboard Copied! Toggle word wrap Toggle overflow
credential-storeThis element defines a credential store that is referenced from elsewhere in the configuration.
It has the following attributes.
Expand Attribute Name Attribute Description name
The name of the credential store. This attribute is required.
type
The type of credential store. This attribute is optional.
provider
The name of the
java.security.Providerto use to load the credential store. This attribute is optional.It can contain one and only one of each of the following child elements.
attributesThis element defines the configuration attributes used to initialize the credential store and can be repeated as many times as is required for the configuration.
Example:
attributesConfiguration<attributes> <attribute name="..." value="..." /> </attributes>
<attributes> <attribute name="..." value="..." /> </attributes>Copy to Clipboard Copied! Toggle word wrap Toggle overflow
protection-parameter-credentialsThis element contains one or more credentials to be assembled into a protection parameter to be used when initializing the credential store.
It can contain one or more of the following child elements, which are dependent on the credential store implementation:
Example:
protection-parameter-credentialsConfigurationCopy to Clipboard Copied! Toggle word wrap Toggle overflow
key-store-referenceThis element, which is not currently used by any authentication mechanisms in JBoss EAP, defines a reference to a keystore.
It has the following attributes.
Expand Attribute Name Attribute Description key-store-name
The keystore name. This attribute is required.
alias
The alias of the entry to load from the referenced keystore. This can be omitted only for keystores that contain just a single entry.
It can contain one and only one of the following child elements.
Example:
key-store-referenceConfiguration<key-store-reference key-store-name="..." alias="..."> <key-store-clear-password password="..." /> <key-store-credential>...</key-store-credential> </key-store-reference>
<key-store-reference key-store-name="..." alias="..."> <key-store-clear-password password="..." /> <key-store-credential>...</key-store-credential> </key-store-reference>Copy to Clipboard Copied! Toggle word wrap Toggle overflow
credential-store-referenceThis element defines a reference to a credential store.
It has the following attributes.
Expand Attribute Name Attribute Description store
The credential store name.
alias
The alias of the entry to load from the referenced credential store. This can be omitted only for keystores that contain just a single entry.
clear-text
The clear text password.
clear-password- This element defines a clear text password.
key-pairThis element, which is not currently used by any authentication mechanisms in JBoss EAP, defines a public and private key pair.
It can contain the following child elements.
public-key-pem- This element, which is not currently used by any authentication mechanisms in JBoss EAP, defines the PEM-encoded public key.
private-key-pem- This element defines the PEM-encoded private key.
certificateThis element, which is not currently used by any authentication mechanisms in JBoss EAP, specifies a certificate.
It has the following attributes.
Expand Attribute Name Attribute Description private-key-pem
A PEM-encoded private key.
pem
The corresponding certificate.
bearer-token- This element defines a bearer token.
oauth2-bearer-tokenThis element defines an OAuth 2 bearer token.
It has the following attribute.
Expand Attribute Name Attribute Description token-endpoint-uri
The URI of the token endpoint.
It can contain one and only one of each of the following child elements.
client-credentialsThis element defines the client credentials.
It has the following attributes.
Expand Attribute Name Attribute Description client-id
The client ID. This attribute is required.
client-secret
The client secret. This attribute is required.
resource-owner-credentialsThis element defines the resource owner credentials.
It has the following attributes.
Expand Attribute Name Attribute Description name
The resource name. This attribute is required.
pasword
The password. This attribute is required.
key-storesThis optional element defines keystores that are referenced from elsewhere in the configuration.
Example:
key-storesConfigurationCopy to Clipboard Copied! Toggle word wrap Toggle overflow
key-storeThis optional element defines a keystore that is referenced from elsewhere in the configuration.
The
key-storehas the following attributes.Expand Attribute Name Attribute Description name
The name of the keystore. This attribute is required.
type
The keystore type, for example,
JCEKS. This attribute is required.provider
The name of the
java.security.Providerto use to load the credential store. This attribute is optional.wrap-passwords
If true,
passwordswill wrap. The passwords are stored by taking the clear password contents, encoding them in UTF-8, and storing the resultant bytes as a secret key. Defaults tofalse.It must contain exactly one of the following elements, which define where to load the keystore from.
It must also contain one of the following elements, which specifies the protection parameter to use when initializing the keystore.
fileThis element specifies the name of the keystore file.
It has the following attribute.
Expand Attribute Name Attribute Description name
The fully qualified file path and name of the file.
load-fromThis element specifies the URI of the keystore file.
It has the following attribute.
Expand Attribute Name Attribute Description uri
The URI for the keystore file.
resourceThis element specifies the name of the resource to load from the
Threadcontext class loader.It has the following attribute.
Expand Attribute Name Attribute Description name
The name of the resource.
key-store-clear-passwordThis element specifies the clear text password.
It has the following attribute.
Expand Attribute Name Attribute Description password
The clear text password.
key-store-credentialThis element specifies a reference to another keystore that obtains an entry to use as the protection parameter to access this keystore.
The
key-store-credentialelement has the following attributes.Expand Attribute Name Attribute Description key-store-name
The keystore name. This attribute is required.
alias
The alias of the entry to load from the referenced keystore. This can be omitted only for keystores that contain just a single entry.
It can contain one and only one of the following child elements.
Example:
key-store-credentialConfiguration<key-store-credential key-store-name="..." alias="..."> <key-store-clear-password password="..." /> <key-store-credential>...</key-store-credential> </key-store-credential>
<key-store-credential key-store-name="..." alias="..."> <key-store-clear-password password="..." /> <key-store-credential>...</key-store-credential> </key-store-credential>Copy to Clipboard Copied! Toggle word wrap Toggle overflow
authentication-rulesThis element defines the rules to match against the outbound connection to apply the appropriate authentication configuration. When an
authentication-configurationis required, the URI of the accessed resources as well as an optional abstract type and abstract type authority are matched against the rules defined in the configuration to identify whichauthentication-configurationshould be used.This element can contain one or more child
ruleelements.Example:
authentication-rulesConfigurationCopy to Clipboard Copied! Toggle word wrap Toggle overflow
ruleThis element defines the rules to match against the outbound connection to apply the appropriate authentication configuration.
It has the following attribute.
Expand Attribute Name Attribute Description use-configuration
The authentication configuration that is chosen when rules match.
Authentication configuration rule matching is independent of SSL context rule matching. The authentication rule structure is identical to the SSL context rule structure, except that it references an authentication configuration, while the SSL context rule references an SSL context.
It can contain the following child elements.
Example:
ruleConfiguration for AuthenticationCopy to Clipboard Copied! Toggle word wrap Toggle overflow
match-no-user-
This rule matches when there is no
user-infoembedded within the URI.
match-user-
This rule matches when the
user-infoembedded in the URI matches thenameattribute specified in this element.
match-protocol-
This rule matches when the protocol within the URI matches the protocol
nameattribute specified in this element.
match-host-
This rule matches when the host name specified within the URI matches the host
nameattribute specified in this element.
match-path-
This rule matches when the path specified within the URI matches the path
nameattribute specified in this element.
match-port-
This rule matches when the port number specified within the URI matches the port
numberattribute specified in this element. This only matches against the number specified within the URI and not against any default port number derived from the protocol.
match-urn-
This rule matches when the scheme specific part of the URI matches the
nameattribute specified in this element.
match-domain-name-
This rule matches when the protocol of the URI is
domainand the scheme specific part of the URI matches thenameattribute specified in this element.
match-abstract-type-
This rule matches when the abstract type matches the
nameattribute and the authority matches theauthorityattribute specified in this element.
authentication-configurationsThis element defines named authentication configurations that are to be chosen by the authentication rules.
It can contain one or more
configurationelements.Example:
authentication-configurationsConfigurationCopy to Clipboard Copied! Toggle word wrap Toggle overflow
configurationThis element defines named authentication configurations that are to be chosen by the authentication rules.
It can contain the following child elements.
-
The optional
set-host-name,set-port-number, andset-protocolelements can override the destination. -
The optional
set-user-nameandset-anonymouselements are mutually exclusive and can be used to set the name for authentication or switch to anonymous authentication. -
Next are the
set-mechanism-realm-name,rewrite-user-name-regex,sasl-mechanism-selector,set-mechanism-properties,credentials,set-authorization-name, andprovidersoptional elements. -
The final two optional
use-provider-sasl-factoryanduse-service-loader-sasl-factoryelements are mutually exclusive and define how the SASL mechanism factories are discovered for authentication.
-
The optional
set-host-nameThis element overrides the host name for the authenticated call.
It has the following attribute.
Expand Attribute Name Attribute Description name
The host name.
set-port-numberThis element overrides the port number for the authenticated call.
It has the following attribute.
Expand Attribute Name Attribute Description number
The port number.
set-protocolThis element overrides the protocol for the authenticated call.
It has the following attribute.
Expand Attribute Name Attribute Description name
The protocol.
set-user-nameThis element sets the user name to use for the authentication. It should not be used with the
set-anonymouselement.It has the following attribute.
Expand Attribute Name Attribute Description name
The user name to use for authentication.
set-anonymous-
The element is used to switch to anonymous authentication. It should not be used with the
set-user-nameelement.
set-mechanism-realm-nameThis element specifies the name of the realm that will be selected by the SASL mechanism if required.
It has the following attribute.
Expand Attribute Name Attribute Description name
The name of the realm.
rewrite-user-name-regexThis element defines a regular expression pattern and replacement to rewrite the user name used for authentication.
It has the following attributes.
Expand Attribute Name Attribute Description pattern
A regular expression pattern.
replacement
The replacement to use to rewrite the user name used for authentication.
sasl-mechanism-selectorThis element specifies a SASL mechanism selector using the syntax from the
org.wildfly.security.sasl.SaslMechanismSelector.fromString(string)method.It has the following attribute.
Expand Attribute Name Attribute Description selector
The SASL mechanism selector.
For more information about the grammar required for the
sasl-mechanism-selector, seesasl-mechanism-selectorGrammar in How to Configure Server Security for JBoss EAP.
set-mechanism-properties-
This element can contain one or more
propertyelements that are to be passed to the authentication mechanisms.
propertyThis element defines a property to be passed to the authentication mechanisms.
It has the following attributes.
Expand Attribute Name Attribute Description key
The property name.
value
The property value.
credentialsThis element defines one or more credentials available for use during authentication.
It can contain one or more of the following child elements, which are dependent on the credential store implementation:
These are the same child elements as those contained in the
protection-parameter-credentialselement. See theprotection-parameter-credentialselement for details and an example configuration.
set-authorization-nameThis element specifies the name that should be used for authorization if it is different from the authentication identity.
It has the following attributes.
Expand Attribute Name Attribute Description name
The name that should be used for authorization.
use-provider-sasl-factory-
This element specifies the
java.security.Providerinstances that are either inherited or defined in this configuration and that are to be used to locate the available SASL client factories. This element should not be used with theuse-service-loader-sasl-factoryelement.
use-service-loader-sasl-factoryThis element specifies the module that is to be used to discover the SASL client factories using the service loader discovery mechanism. If no module is specified, the class loader that loaded the configuration is used. This element should not be used with the
use-provider-sasl-factoryelement.It has the following attribute.
Expand Attribute Name Attribute Description module-name
The name of the module.
net-authenticatorThis element contains no configuration. If present, the
org.wildfly.security.auth.util.ElytronAuthenticatoris registered withjava.net.Authenticator.setDefault(Authenticator). This allows the Elytron authentication client configuration to be used for authentication when JDK APIs are used for HTTP calls that require authentication.NoteBecause the JDK caches the authentication on the first call across the JVM, it is better to use this approach only on standalone processes that do not require different credentials for different calls to the same URI.
ssl-context-rulesThis optional element defines the SSL context rules. When an
ssl-contextis required, the URI of the accessed resources as well as an optional abstract type and abstract type authority are matched against the rules defined in the configuration to identify whichssl-contextshould be used.This element can contain one or more child
ruleelements.Example:
ssl-context-rulesConfigurationCopy to Clipboard Copied! Toggle word wrap Toggle overflow
ruleThis element defines the rule to match on the SSL context definitions.
It has the following attribute.
Expand Attribute Name Attribute Description use-ssl-context
The SSL context definition that is chosen when rules match.
SSL context rule matching is independent of authentication rule matching. The SSL context rule structure is identical to the authentication configuration rule structure, except that it references an SSL context, while the authentication rule references an authentication configuration.
It can contain the following child elements.
Example:
ruleConfiguration for SSL ContextCopy to Clipboard Copied! Toggle word wrap Toggle overflow
ssl-contextsThis optional element defines SSL context definitions that are to be chosen by the SSL context rules.
Copy to Clipboard Copied! Toggle word wrap Toggle overflow
default-ssl-context-
This element takes the
SSLContextreturned byjavax.net.ssl.SSLContext.getDefault()and assigns it a name so it can referenced from thessl-context-rules. This element can be repeated, meaning the default SSL context can be referenced using different names.
ssl-contextThis element defines an SSL context to use for connections.
It can optionally contain one of each of the following child elements.
key-store-ssl-certificateThis element defines a reference to an entry within a keystore for the key and certificate to use for this SSL context.
It has the following attributes.
Expand Attribute Name Attribute Description key-store-name
The keystore name. This attribute is required.
alias
The alias of the entry to load from the referenced keystore. This can be omitted only for keystores that contain just a single entry.
It can contain the following child elements:
This structure is nearly identical to the structure used in the
key-store-credentialconfiguration with the exception that here it obtains the entry for the key and for the certificate. However, the nestedkey-store-clear-passwordandkey-store-credentialelements still provide the protection parameter to unlock the entry.Example:
key-store-ssl-certificateConfiguration<key-store-ssl-certificate key-store-name="..." alias="..."> <key-store-clear-password password="..." /> <key-store-credential>...</key-store-credential> </key-store-ssl-certificate>
<key-store-ssl-certificate key-store-name="..." alias="..."> <key-store-clear-password password="..." /> <key-store-credential>...</key-store-credential> </key-store-ssl-certificate>Copy to Clipboard Copied! Toggle word wrap Toggle overflow
trust-storeThis element is a reference to the keystore that is to be used to initialize the
TrustManager.It has the following attribute.
Expand Attribute Name Attribute Description key-store-name
The keystore name. This attribute is required.
cipher-suiteThis element configures the filter for the enabled cipher suites.
It has the following attribute.
Expand Attribute Name Attribute Description selector
The selector to filter the cipher suites. The selector uses the format of the OpenSSL-style cipher list string created by the
org.wildfly.security.ssl.CipherSuiteSelector.fromString(selector)method.Example:
cipher-suiteConfiguration Using Default Filtering<cipher-suite selector="DEFAULT" />
<cipher-suite selector="DEFAULT" />Copy to Clipboard Copied! Toggle word wrap Toggle overflow
protocol-
This element defines a space separated list of the protocols to be supported. See the client-ssl-context Attributes table in How to Configure Server Security for JBoss EAP for the list of available protocols. Red Hat recommends that you use
TLSv1.2.
provider-name- Once the available providers have been identified, only the provider with the name defined on this element is used.
certificate-revocation-listThis element defines both the path to the certificate revocation list and the maximum number of non-self-issued intermediate certificates that can exist in a certification path. The presence of this element enables checking the peer’s certificate against the certificate revocation list.
It has the following attributes.
Expand Attribute Name Attribute Description path
The path to the certification list. This attribute is optional.
maximum-cert-path
The maximum number of non-self-issued intermediate certificates that can exist in a certification path. This attribute is optional.
providersThis element defines how
java.security.Providerinstances are located when required.It can contain the following child elements.
Because the configuration sections of
authentication-clientare independent of each other, this element can be configured in the following locations.Example: Locations of
providersConfigurationCopy to Clipboard Copied! Toggle word wrap Toggle overflow The
providersconfiguration applies to the element in which it is defined and to any of its child elements unless it is overridden. The specification of aprovidersin a child element overrides aprovidersspecified in any of its parent elements. If noprovidersconfiguration is specified, the default behavior is the equivalent of the following, which gives the Elytron provider priority over any globally registered providers, but also allows for the use of globally registered providers.Example:
providersConfiguration<providers> <use-service-loader /> <global /> </providers>
<providers> <use-service-loader /> <global /> </providers>Copy to Clipboard Copied! Toggle word wrap Toggle overflow
global-
This empty element specifies to use the global providers loaded by the
java.security.Security.getProviders()method call.
use-service-loader- This empty element specifies to use the providers that are loaded by the specified module. If no module is specified, the class loader that loaded the authentication client is used.
Elements Not Currently Used By Any JBoss EAP Authentication Mechanisms
The following child elements of the credentials element in the Elytron client configuration are not currently used by any authentication mechanisms in JBoss EAP. They can be used in your own custom implementations of authentication mechanism; however, they are not supported.
-
key-pair -
public-key-pem -
key-store-reference -
certificate
You can use the jboss-ejb-client element, which is in the urn:jboss:wildfly-client-ejb:3.0 namespace, to configure EJB client connections, global interceptors, and invocation timeouts using the wildfly-config.xml file. This section describes how to configure an EJB client using this element.
jboss-ejb-client Elements and Attributes
The jboss-ejb-client element can optionally contain the following three top level child elements, along with their child elements:
invocation-timeoutThis optional element specifies the EJB invocation timeout. It has the following attribute.
Expand Attribute Name Attribute Description seconds
The timeout, in seconds, for the EJB handshake or the method invocation request/response cycle. This attribute is required.
If the execution of a method takes longer than the timeout period, the invocation throws a
java.util.concurrent.TimeoutException; however, the server side will not be interrupted.
global-interceptors-
This optional element specifies the global EJB client interceptors. It can contain any number of
interceptorelements.
interceptorThis element is used to specify an EJB client interceptor. It has the following attributes.
Expand Attribute Name Attribute Description class
The name of a class that implements the
org.jboss.ejb.client.EJBClientInterceptorinterface. This attribute is required.module
The name of the module that should be used to load the interceptor class. This attribute is optional.
connections-
This element is used to specify EJB client connections. It can contain any number of
connectionelements.
connectionThis element is used to specify an EJB client connection. It can optionally contain an
interceptorselement. It has the following attribute.Expand Attribute Name Attribute Description uri
The destination URI for the connection. This attribute is required.
interceptors-
This element is used to specify EJB client interceptors and can contain any number of
interceptorelements.
Example EJB Client Configuration in the wildfly-config.xml File
The following is an example that configures the EJB client connections, global interceptors, and invocation timeout using the jboss-ejb-client element in the wildfly-config.xml file.
The following is an example of how to configure HTTP clients using the wildfly-config.xml file.
HTTP client configuration using the wildfly-config.xml file is provided as Technology Preview only. Technology Preview features are not supported with Red Hat production service level agreements (SLAs), might not be functionally complete, and Red Hat does not recommend to use them for production. These features provide early access to upcoming product features, enabling customers to test functionality and provide feedback during the development process.
See Technology Preview Features Support Scope on the Red Hat Customer Portal for information about the support scope for Technology Preview features.
You can use the endpoint element, which is in the urn:jboss-remoting:5.0 namespace, to configure a remoting client using the wildfly-config.xml file. This section describes how to configure a remoting client using this element.
endpoint Elements and Attributes
The endpoint element can optionally contain the following two top level child elements, along with their child elements.
It also has the following attribute:
| Attribute Name | Attribute Description |
|---|---|
| name | The endpoint name. This attribute is optional. If not provided, an endpoint name is derived from the system’s host name, if possible. |
providers-
This optional element specifies transport providers for the remote endpoint. It can contain any number of
providerelements.
providerThis element defines a remote transport provider. It has the following attributes.
Expand Attribute Name Attribute Description scheme
The primary URI scheme that corresponds to this provider. This attribute is required.
aliases
The space-separated list of of other URI scheme names that are also recognized for this provider. This attribute is optional.
module
The name of the module that contains the provider implementation. This attribute is optional. If not provided, the class loader that loads JBoss Remoting searches for the provider class.
class
The name of the class that implements the transport provider. This attribute is optional. If not provided, the
java.util.ServiceLoaderfacility is used to search for the provider class.
connections-
This optional element specifies connections for the remote endpoint. It can contain any number of
connectionelements.
connectionThis element defines a connection for the remote endpoint. It has the following attributes.
Expand Attribute Name Attribute Description destination
The destination URI for the endpoint. This attribute is required.
read-timeout
The timeout, in seconds, for read operations on the corresponding socket. This attribute is optional; however, it should be provided only if a
heartbeat-intervalis defined.write-timeout
The timeout, in seconds, for a write operation. This attribute is optional; however, it should be provided only if a
heartbeat-intervalis defined.ip-traffic-class
Defines the numeric IP traffic class to use for this connection’s traffic. This attribute is optional.
tcp-keepalive
Boolean setting that determines whether to use TCP keepalive. This attribute is optional.
heartbeat-interval
The interval, in milliseconds, to use when checking for a connection heartbeat. This attribute is optional.
Example Remoting Client Configuration in the wildfly-config.xml File
The following is an example that configures a remoting client using the wildfly-config.xml file.
You can use the worker element, which is in the urn:xnio:3.5 namespace, to configure an XNIO worker using the wildfly-config.xml file. This section describes how to configure an XNIO worker client using this element.
worker Elements and Attributes
The worker element can optionally contain the following top level child elements, along with their child elements:
daemon-threadsThis optional element specifies whether worker and task threads should be daemon threads. This element has no content. It has the following attribute.
Expand Attribute Name Attribute Description value
A boolean value that specifies whether worker and task threads should be daemon threads. A value of
trueindicates that worker and task threads should be daemon threads. A value offalseindicates that they should not be daemon threads. This attribute is required.If this element is not provided, a value of
trueis assumed.
worker-nameThis element defines the name of the worker. The worker name appears in thread dumps and in JMX. This element has no content. It has the following attribute.
Expand Attribute Name Attribute Description value
The name of the worker. This attribute is required.
pool-sizeThis optional element defines the maximum size of the worker’s task thread pool. This element has no content. It has the following attribute.
Expand Attribute Name Attribute Description max-threads
A positive integer that specifies the maximum number of threads that should be created. This attribute is required.
task-keepaliveThis optional element establishes the keep-alive time of task threads before they can be expired. It has the following attribute.
Expand Attribute Name Attribute Description value
A positive integer that specifies the minimum number of seconds to keep idle threads alive. This attribute is required.
io-threadsThis optional element determines how many I/O selector threads should be maintained. Generally this number should be a small constant that is a multiple of the number of available cores. It has the following attribute.
Expand Attribute Name Attribute Description value
A positive integer that specifies the number of I/O threads. This attribute is required.
stack-sizeThis optional element establishes the desired minimum thread stack size for worker threads. This element should only be defined in very specialized situations where density is at a premium. It has the following attribute.
Expand Attribute Name Attribute Description value
A positive integer that specifies the requested stack size, in bytes. This attribute is required.
outbound-bind-addresses-
This optional element specifies the bind addresses to use for outbound connections. Each bind address mapping consists of a destination IP address block, and a bind address and optional port number to use for connections to destinations within that block. It can contain any number of
bind-addresselements.
bind-addressThis optional element defines an individual bind address mapping. It has the following attributes.
Expand Attribute Name Attribute Description match
The IP address block, in CIDR notation, to match.
bind-address
The IP address to bind to if the address block matches. This attribute is required.
bind-port
The port number to bind to if the address block matches. This value defauts to
0, meaning it binds to any port. This attribute is optional.
Example XNIO Worker Configuration in the wildfly-config.xml File
The following is an example of how to configure the default XNIO worker using the wildfly-config.xml file.
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}