support/jboss/etc/jboss-beans.xml

<?xml version="1.0" encoding="UTF-8"?>

<deployment xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
            xsi:schemaLocation="urn:jboss:bean-deployer bean-deployer_1_0.xsd"
            xmlns="urn:jboss:bean-deployer">

    <!-- ===================================================================================
         Authentication (log-in) Configuration
         =================================================================================== -->
    <!--
         Sample Realm used by the JSecurity Authenticator (defined below).

         The following 4 bean definitions are only here as an example and show how to create a
         purely RAM-based module, where the users are statically defined in memory.  Naturally, this
         isn't an option for a proper application, where users are custom and vary in quantity.

         You should comment-out/remove these 4
         beans and swap them out for a better store (preferrably a module that accesses a
         relational database or at the very least the file system.
    -->
    <bean name="shaCredentialMatcher" class="org.jsecurity.authc.credential.Sha1CredentialsMatcher">
        <property name="base64Encoded">true</property>
    </bean>
    <bean name="sampleAccount1" class="org.jsecurity.ri.authc.module.memory.AccountEntry">
        <property name="username">user1</property>
        <property name="password">s9qne0wEqVUbh4HQMZH+CY8yXmc=</property><!-- 'user1' SHA-1 Base64 -->
        <property name="roles">role1, role2</property>
    </bean>
    <bean name="sampleAccount2" class="org.jsecurity.ri.authc.module.memory.AccountEntry">
        <property name="username">user2</property>
        <property name="password">oYgcBu7JbbmQHHu/5BxCo/COnLQ=</property><!-- 'user2' SHA-1 Base64 -->
        <property name="roles">role2</property>
    </bean>
    <bean name="memoryRealmRealm" class="org.jsecurity.ri.authc.module.memory.MemoryRealmRealm">
        <property name="credentialsMatcher">
            <inject bean="shaCredentialMatcher"/> </property>
        <property name="accounts">
            <set>
                <inject bean="sampleAccount1"/>
                <inject bean="sampleAccount2"/>
            </set>
        </property>
        <create method="init"/>
    </bean>

    <!-- Root JSecurity Authenticator - coordinates and uses a configured set of
         Realms to implement PAM behavior.  Add modules as necessary.  -->
    <bean name="authenticator" class="org.jsecurity.authc.pam.ModularRealmAuthenticator">
        <property name="realm"><inject bean="memoryRealmRealm"/></property>
        <property name="modules">
            <list>
                <!-- Remove in favor of a module that accesses your application's data store: -->
                <inject bean="memoryRealmRealm"/>
            </list>
        </property>
        <create method="init"/>
    </bean>


    <!-- ===================================================================================
         Authorization (access control) Configuration
         =================================================================================== -->

    <!-- ===================================================================================
         Session Management Configuration
         =================================================================================== -->
    <bean name="sessionManager" class="org.jsecurity.session.mgt.DefaultSessionManager">
        <create method="init"/>
    </bean>

</deployment>