This inner class defines a "control flag" type and four specific instances of that type. The constants defined by this class specify whether a login module is required or optional, and have the following meanings:

REQUIRED

Authentication by this module must be successful, or the overall login process will fail. However, even if authentication fails for this module, the LoginContext continues to attempt authentication with any other modules in the list. (This can server to disguise the source of the authentication failure from an attacker)

REQUSITE

Authentication by this module must be successful, or the overall login process will fail. If authentication fails for this module, the LoginContext does not try any further login modules.

SUFFICIENT

Authentication by this module is not required, and the overall login process can still succeed if all REQUIRED and REQUISITE modules successfully authenticate the user. However, if authentication by this module does succeed, the LoginContext does not try any further login modules, but instead returns immediately.

OPTIONAL

Authentication by this module is not required. Whether or not it succeeds, the LoginContext continues to with any other modules on the list.

public static class AppConfigurationEntry.LoginModuleControlFlag {
// No Constructor
// Public Constants
     public static final AppConfigurationEntry.LoginModuleControlFlag OPTIONAL;  
     public static final AppConfigurationEntry.LoginModuleControlFlag REQUIRED;  
     public static final AppConfigurationEntry.LoginModuleControlFlag REQUISITE;  
     public static final AppConfigurationEntry.LoginModuleControlFlag SUFFICIENT;  
// Public Methods Overriding Object
     public String toString( );  
}

Passed To

AppConfigurationEntry.AppConfigurationEntry( )

Returned By

AppConfigurationEntry.getControlFlag( )