This topic has not yet been written. The content below is from the topic description.
The optional element is used to configure the authentication method that should be used, the realm name that should be used for the application, and the attributes that are needed by the form login mechanism. Figure 1.7. element [Image http://docs.redhat.com/docs/en-US/JBoss_Enterprise_Application_Platform/5/html/Security_Guide/images/webapp_login_config.jpg] The child element specifies the authentication mechanism for the web application. As a prerequisite to gaining access to any web resources that are protected by an authorization constraint, a user must have authenticated using the configured mechanism. Legal values are BASIC, DIGEST, FORM, and CLIENT-CERT. The child element specifies the realm name to use in HTTP basic and digest authorization. The child element specifies the log in as well as error pages that should be used in form-based login. If the value is not FORM, then form-login-config and its child elements are ignored.