A NoSecurity provider offers pass-through security for SAP Mobile Server, and should be typically be reserved for devlopment or testing. SAP strongly encourages you to avoid using this provider in production environments — either for administration or device user authentication.
| Property | Default Value | Description |
|---|---|---|
| useUsernameAsIdentity | true | If this option is set to true, the user name supplied in the callback is set as the name of the principal added to the subject. |
| identity | nosec_identity | The value of this configuration
option is used as the identity of the user if either of these
conditions is met:
|
| useFirstPass | false | If set to true, the login module attempts to retrieve only the user name and password from the shared context. It never calls the callback handler. |
| tryFirstPass | false | If set to true, the login module first attempts to retrieve the user name and password from the shared context before attempting the callback handler. |
| clearPass | false | If set to true, the login module clears the user name and password in the shared context when calling either commit or abort. |
| storePass | false | If set to true, the login module stores the user name and password in the shared context after successfully authenticating. |
| providerDescription | none |
(Optional). When enabled, allows the administrator to associate a description with the provider instance. Using a provider description makes it easier to differentiate between multiple instances of the same provider type: for example, when you have multiple login modules of the same type stacked in a security configuration, each targeting a different repository. |