Note: For up-to-date product documentation, see the IBM MobileFirst Foundation Developer Center.

Security-checks configuration

Learn about the security-check configuration hierarchy, and how to configure security-check properties at the adapter and at the application levels.

The definition of a predefined or custom security check exposes zero or more configuration properties. The documentation of the predefined security checks lists the properties that are supported for each check, and their default values: see Predefined MobileFirst security checks . For custom security checks, the configuration properties are exposed in the definition of the security check in the adapter descriptor, which also sets the default property values: see Defining security checks. The default values of custom security-check configuration properties can be customized, at the adapter level, for a specific MobileFirst Server instance. The values of both custom and predefined security-check configuration properties can be further customized for a specific application version. See the detailed customization instructions in the following topics:
Note:
  • The security-check definition, which contains the basic configuration, is defined in the XML descriptor file of the adapter that defines the security check.
  • Runtime adapter customizations of the defined configuration properties for a specific server instance are defined in the adapter runtime-configuration JSON file.
  • Application customizations of the security-check configuration properties are defined in the application-descriptor JSON file.
Parent topic: Security checks