API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Oct 7th, 2017
226
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 14.87 KB | None | 0 0
raw download clone embed print report
  1. cas.server.name: https://ajec.proxym-it.tn:9443
  2. cas.server.prefix: https://ajec.proxym-it.tn:9443/cas
  3. logging.config=classpath:log4j2.xml
  4. #logging.config: /etc/cas/config/log4j2.xml
  5. cas.serviceRegistry.config.location: file:/etc/cas/services
  6.  
  7. server.port = 8090
  8.  
  9. server.ssl.keyStore=file:/etc/cas/.keystore
  10. server.ssl.keyStorePassword=changeit
  11. server.ssl.keyPassword=changeit
  12. server.ssl.keyAlias=tomcat
  13.  
  14. cas.authn.accept.users =
  15. cas.authn.oidc.skew=5
  16. cas.authn.oidc.issuer=https://ajec.proxym-it.tn:9443/cas/oidc
  17. #cas.authn.oidc.jwksFile=classpath:/keystore.jwks
  18.  
  19. cas.authn.oauth.refreshToken.timeToKillInSeconds=2592000
  20. cas.theme.defaultThemeName=ajman
  21. cas.theme.paramName=ajman
  22. #cas.tgc.path=
  23. #cas.tgc.maxAge=-1
  24. #cas.tgc.domain=
  25. #tgc.signing.key=b2VrFNqSrnPJ5F1CU9zKNNMTSpQWVEaQ-6SuBNKfGdyLNTJIotPhUWWxttJt279YTQly207kONyDH5fsqnA9Pw
  26. #cas.tgc.name=TGC
  27. #tgc.encryption.key=Gh_fukqGuGN0qtHdeKWWuIbUKaEz7TLqZMxi5aY0enA
  28. #cas.tgc.secure=true
  29. #cas.tgc.httpOnly=true
  30. #cas.tgc.rememberMeMaxAge=1209600
  31. #cas.tgc.cipherEnabled=true
  32.  
  33. #cas.tgc.encryptionKey=Gh_fukqGuGN0qtHdeKWWuIbUKaEz7TLqZMxi5aY0enA
  34. #cas.tgc.signingKey=b2VrFNqSrnPJ5F1CU9zKNNMTSpQWVEaQ-6SuBNKfGdyLNTJIotPhUWWxttJt279YTQly207kONyDH5fsqnA9Pw
  35. #cas.tgc.cipherEnabled=true
  36.  
  37. #cas.ticket.security.encryptionKey=Gh_fukqGuGN0qtHdeKWWuIbUKaEz7TLqZMxi5aY0enA
  38. #cas.ticket.security.signingKey=b2VrFNqSrnPJ5F1CU9zKNNMTSpQWVEaQ-6SuBNKfGdyLNTJIotPhUWWxttJt279YTQly207kONyDH5fsqnA9Pw
  39.  
  40. #Ldap authentication section
  41. #cas.authn.ldap[0].type=AD
  42. #cas.authn.ldap[0].ldapUrl=ldap://172.16.20.21:389
  43. #cas.authn.ldap[0].useSsl=false
  44. #cas.authn.ldap[0].useStartTls=false
  45. #cas.authn.ldap[0].connectTimeout=3000
  46. #cas.authn.ldap[0].baseDn=cn=Users,dc=uib,dc=dev
  47. #cas.authn.ldap[0].userFilter=sAMAccountName={user}
  48. #cas.authn.ldap[0].subtreeSearch=true
  49. #cas.authn.ldap[0].bindDn=cn=Administrator,cn=Users,dc=uib,dc=dev
  50. #cas.authn.ldap[0].bindCredential=Pr0xym-1T
  51. #cas.authn.ldap[0].dnFormat=cn=%s,cn=Users,dc=uib,dc=dev
  52. #cas.authn.ldap[0].principalAttributeId=sAMAccountName
  53. #cas.authn.ldap[0].principalAttributePassword=userPassword
  54. #cas.authn.ldap[0].minPoolSize=10
  55. #cas.authn.ldap[0].maxPoolSize=1
  56. #cas.authn.ldap[0].validateOnCheckout=false
  57. #cas.authn.ldap[0].validatePeriodically=true
  58. #cas.authn.ldap[0].validatePeriod=300
  59. #cas.authn.ldap[0].idleTime=600
  60. #cas.authn.ldap[0].prunePeriod=300
  61. #cas.authn.ldap[0].blockWaitTime=3000
  62. # cas.authn.ldap[0].usePasswordPolicy=true
  63.  
  64. #Services registry section
  65.  
  66.  
  67.  
  68. cas.authn.rest.uri=http://ajec.proxym-it.tn:8090/Cas-Api-Auth/Ajec_sso_api_auth/casAuth
  69.  
  70.  
  71.  
  72. #cas.serviceRegistry.initFromJson=false
  73. #cas.serviceRegistry.jpa.healthQuery=SELECT 1
  74. #cas.serviceRegistry.jpa.url=jdbc:mysql://localhost:3306/CASV2
  75. #cas.serviceRegistry.jpa.dialect=org.hibernate.dialect.MySQL5Dialect
  76. #cas.serviceRegistry.jpa.user=root
  77. #cas.serviceRegistry.jpa.ddlAuto=update
  78. #cas.serviceRegistry.jpa.password=Pr0xym-1T
  79. #cas.serviceRegistry.jpa.driverClass=com.mysql.cj.jdbc.Driver
  80. #cas.serviceRegistry.jpa.isolateInternalQueries=false
  81. #cas.serviceRegistry.jpa.failFast=true
  82. #cas.serviceRegistry.jpa.leakThreshold=10
  83. #cas.serviceRegistry.jpa.batchSize=1
  84. #cas.serviceRegistry.jpa.defaultCatalog=
  85. #cas.serviceRegistry.jpa.defaultSchema=
  86. #cas.serviceRegistry.jpa.autocommit=true
  87. #cas.serviceRegistry.jpa.idleTimeout=5000
  88. # cas.serviceRegistry.initFromJson=false
  89.  
  90.  
  91. #Synchronize and resolve attributes
  92. cas.authn.attributeRepository.ldap[0].attributes.uid=userName
  93. cas.authn.attributeRepository.ldap[0].attributes.displayName=displayName
  94. cas.authn.attributeRepository.ldap[0].attributes.cn=emailAjecUser
  95. cas.authn.attributeRepository.ldap[0].attributes.affiliation=groupMembership
  96. #cas.authn.attributeRepository.ldap[0].attributes.cn=cn
  97. cas.authn.attributeRepository.ldap[0].attributes.emailAjecUser=emailAjecUser
  98. cas.authn.attributeRepository.ldap[0].attributes.sAMAccountName=sAMAccountName
  99. cas.authn.attributeRepository.ldap[0].attributes.userName=userName
  100. cas.authn.attributeRepository.ldap[0].attributes.accountTypeAjecUser=accountTypeAjecUser
  101. cas.authn.attributeRepository.ldap[0].attributes.trustLevel=trustLevel
  102. cas.authn.attributeRepository.ldap[0].attributes.passportNumberAjecUser=passportNumberAjecUser
  103. cas.authn.attributeRepository.ldap[0].attributes.countryCodeAjecUser=countryCodeAjecUser
  104. cas.authn.attributeRepository.ldap[0].attributes.tradeLicenseNumberAjecUser=tradeLicenseNumberAjecUser
  105. cas.authn.attributeRepository.ldap[0].attributes.emirateAjecUser=emirateAjecUser
  106. cas.authn.attributeRepository.ldap[0].attributes.companyNameAjecUser=companyNameAjecUser
  107. cas.authn.attributeRepository.ldap[0].attributes.mobileNumber=mobileNumber
  108. cas.authn.attributeRepository.ldap[0].attributes.genderAjecUser=genderAjecUser
  109. cas.authn.attributeRepository.ldap[0].attributes.birthDateAjecUser=birthDateAjecUser
  110. cas.authn.attributeRepository.ldap[0].attributes.contactLanguageAjecUser=contactLanguageAjecUser
  111. cas.authn.attributeRepository.ldap[0].attributes.contactMethodAjecUser=contactMethodAjecUser
  112. cas.authn.attributeRepository.ldap[0].attributes.addressAjecUser=addressAjecUser
  113. cas.authn.attributeRepository.ldap[0].attributes.password=password
  114. cas.authn.attributeRepository.ldap[0].attributes.eidAjecUser=eidAjecUser
  115. cas.authn.attributeRepository.ldap[0].attributes.accountExpires=accountExpires
  116. cas.authn.attributeRepository.ldap[0].attributes.accountTypeUser=accountTypeUser
  117. cas.authn.attributeRepository.ldap[0].attributes.tokenAjecUser=tokenAjecUser
  118. #cas.authn.attributeRepository.ldap[0].attributes.userPassword=userPassword
  119. cas.authn.attributeRepository.ldap[0].attributes.lastName=lastName
  120. cas.authn.attributeRepository.ldap[0].attributes.firstName=firstName
  121. #cas.authn.ldap[0].principalAttributeList=cn,sAMAccountName,sn,co,givenName,accountTypeUser,genderAjecUser,birthDateAjecUser
  122. cas.authn.attributeRepository.defaultAttributesToRelease=cn,sAMAccountName,sn,co,givenName,accountTypeUser,genderAjecUser,birthDateAjecUser,mobileNumber
  123.  
  124. # Map fixed claims to CAS attributes
  125. cas.authn.oidc.claimsMap.eidAjecUserClaim=eidAjecUser
  126. cas.authn.oidc.claimsMap.passportNumberAjecUserClaim=passportNumberAjecUser
  127. cas.authn.oidc.claimsMap.emailAjecUserClaim=emailAjecUser
  128. cas.authn.oidc.claimsMap.sAMAccountNameClaim=sAMAccountName
  129. cas.authn.oidc.claimsMap.userNameClaim=userName
  130. cas.authn.oidc.claimsMap.contactLanguageAjecUserClaim=contactLanguageAjecUser
  131. #cas.authn.oidc.claimsMap.passwordClaim=password
  132. #cas.authn.oidc.claimsMap.userPasswordClaim=userPassword
  133. cas.authn.oidc.claimsMap.lastNameClaim=lastName
  134. cas.authn.oidc.claimsMap.contactMethodAjecUserClaim=contactMethodAjecUser
  135. cas.authn.oidc.claimsMap.tokenAjecUserClaim=tokenAjecUser
  136. cas.authn.oidc.claimsMap.tradeLicenseNumberAjecUserClaim=tradeLicenseNumberAjecUser
  137. cas.authn.oidc.claimsMap.accountExpiresClaim=accountExpires
  138. cas.authn.oidc.claimsMap.accountTypeAjecUserClaim=accountTypeAjecUser
  139. cas.authn.oidc.claimsMap.trustLevelClaim=trustLevel
  140. cas.authn.oidc.claimsMap.companyNameAjecUserClaim=companyNameAjecUser
  141. cas.authn.oidc.claimsMap.addressAjecUserClaim=addressAjecUser
  142. cas.authn.oidc.claimsMap.countryCodeAjecUserClaim=countryCodeAjecUser
  143. cas.authn.oidc.claimsMap.emirateAjecUserClaim=emirateAjecUser
  144. cas.authn.oidc.claimsMap.mobileNumberClaim = mobileNumber
  145. cas.authn.oidc.claimsMap.firstNameClaim = firstName
  146. cas.authn.oidc.claims=firstNameClaim,mobileNumberClaim,passportNumberAjecUserClaim,addressAjecUserClaim,countryCodeAjecUserClaim,companyNameAjecUserClaim,emirateAjecUserClaim,emailAjecUserClaim,accountTypeAjecUserClaim,trustLevelClaim,accountExpiresClaim,tradeLicenseNumberAjecUserClaim,tokenAjecUserClaim,contactMethodAjecUserClaim,lastNameClaim,contactLanguageAjecUserClaim,userNameClaim,sAMAccountNameClaim,sub,name,preferred_username,family_name,given_name,middle_name,given_name,profile,picture,nickname,website,zoneinfo,locale,updated_at,birthdate,email,email_verified,phone_number,phone_number_verified,address,emailAjecUser,birthDateAjecUser,eidAjecUserClaim
  147. cas.authn.oidc.scopes=openid,profile,email,address,phone,offline_access,ajman_profile
  148.  
  149. cas.authn.oidc.userDefinedScopes.ajman_profile=firstNameClaim,mobileNumberClaim,passportNumberAjecUserClaim,companyNameAjecUserClaim,countryCodeAjecUserClaim,addressAjecUserClaim,emirateAjecUserClaim,companyNameAjecUser,countryCodeAjecUser,accountExpiresClaim,cn,accountTypeAjecUserClaim,trustLevelClaim,tradeLicenseNumberAjecUserClaim,tradeLicenseNumberAjecUserClaim,userNameClaim,tokenAjecUserClaim,contactMethodAjecUserClaim,lastNameClaim,passportNumberAjecUserClaim,contactLanguageAjecUserClaim,userPasswordClaim,passwordClaim,sAMAccountNameClaim,emailAjecUserClaim,birthDateAjecUser,eidAjecUserClaim
  150.  
  151.  
  152.  
  153.  
  154. cas.authn.attributeRepository.ldap[0].ldapUrl=ldap://172.16.20.21:389
  155. # cas.authn.attributeRepository.ldap[0].connectionStrategy=
  156. cas.authn.attributeRepository.ldap[0].order=0
  157. cas.authn.attributeRepository.ldap[0].useSsl=false
  158. cas.authn.attributeRepository.ldap[0].useStartTls=false
  159. cas.authn.attributeRepository.ldap[0].connectTimeout=5000
  160. cas.authn.attributeRepository.ldap[0].baseDn=cn=Users,dc=uib,dc=dev
  161. cas.authn.attributeRepository.ldap[0].userFilter=(|(sAMAccountName={user})(emailAjecUser={user}))
  162. cas.authn.attributeRepository.ldap[0].subtreeSearch=true
  163. cas.authn.attributeRepository.ldap[0].bindDn=cn=Administrator,cn=Users,dc=uib,dc=dev
  164. cas.authn.attributeRepository.ldap[0].bindCredential=Pr0xym-1T
  165. # cas.authn.attributeRepository.ldap[0].trustCertificates=
  166. # cas.authn.attributeRepository.ldap[0].keystore=
  167. # cas.authn.attributeRepository.ldap[0].keystorePassword=
  168. # cas.authn.attributeRepository.ldap[0].keystoreType=JKS|JCEKS|PKCS12
  169. # cas.authn.attributeRepository.ldap[0].poolPassivator=NONE|CLOSE|BIND
  170. cas.authn.attributeRepository.ldap[0].minPoolSize=3
  171. cas.authn.attributeRepository.ldap[0].maxPoolSize=10
  172. # cas.authn.attributeRepository.ldap[0].validateOnCheckout=true
  173. # cas.authn.attributeRepository.ldap[0].validatePeriodically=true
  174. # cas.authn.attributeRepository.ldap[0].validatePeriod=600
  175.  
  176.  
  177.  
  178. #Rest Access Properties
  179. cas.rest.attributeName=cn
  180. cas.rest.attributeValue=Administrator
  181. cas.rest.throttler=neverThrottle
  182.  
  183. #cas.serviceRegistry.watcherEnabled=false
  184. #cas.serviceRegistry.repeatInterval=10000
  185.  
  186. # IP address may be enough to protect all endpoints.
  187. # If you wish to protect the admin pages via CAS itself, configure the rest.
  188. #cas.adminPagesSecurity.ip=127\.0\.0\.1
  189. cas.adminPagesSecurity.loginUrl=https://ajec.proxym-it.tn:9443/cas/login
  190. cas.adminPagesSecurity.service=https://ajec.proxym-it.tn:9443/cas/status/dashboard
  191. cas.adminPagesSecurity.users=file:/etc/cas/config/adminusers.properties
  192. cas.adminPagesSecurity.adminRoles=ROLE_ADMIN,ROLE_USER
  193.  
  194. #cas.adminPagesSecurity.actuatorEndpointsEnabled=true
  195. # cas.ticket.st.maxLength=20
  196.  
  197. cas.ticket.st.numberOfUses=10
  198. cas.ticket.st.timeToKillInSeconds=1000
  199. cas.ticket.registry.cleaner.enabled=false
  200.  
  201. # cas.ticket.registry.jpa.ticketLockType=NONE
  202. # cas.ticket.registry.jpa.jpaLockingTimeout=3600
  203. #cas.ticket.registry.jpa.healthQuery=SELECT 1
  204. # cas.ticket.registry.jpa.isolateInternalQueries=false
  205. #cas.ticket.registry.jpa.url=jdbc:mysql://localhost:3306/CASV2
  206. # cas.ticket.registry.jpa.failFast=true
  207. #cas.ticket.registry.jpa.dialect=org.hibernate.dialect.MySQL5Dialect
  208. # cas.ticket.registry.jpa.leakThreshold=10
  209. # cas.ticket.registry.jpa.jpaLockingTgtEnabled=true
  210. # cas.ticket.registry.jpa.batchSize=1
  211. # cas.ticket.registry.jpa.defaultCatalog=
  212. # cas.ticket.registry.jpa.defaultSchema=
  213. #cas.ticket.registry.jpa.user=root
  214. #cas.ticket.registry.jpa.ddlAuto=update
  215. #cas.ticket.registry.jpa.password=Pr0xym-1T
  216. # cas.ticket.registry.jpa.autocommit=false
  217. #cas.ticket.registry.jpa.driverClass=com.mysql.cj.jdbc.Driver
  218. # cas.ticket.registry.jpa.idleTimeout=5000
  219. # cas.ticket.registry.jpa.dataSourceName=
  220. # cas.ticket.registry.jpa.dataSourceProxy=false
  221. # cas.ticket.registry.jpa.pool.suspension=false
  222. # cas.ticket.registry.jpa.pool.minSize=6
  223. # cas.ticket.registry.jpa.pool.maxSize=18
  224. # cas.ticket.registry.jpa.pool.maxWait=2000
  225. # cas.ticket.registry.jpa.crypto.signing.key=
  226. # cas.ticket.registry.jpa.crypto.signing.keySize=512
  227. # cas.ticket.registry.jpa.crypto.encryption.key=
  228. # cas.ticket.registry.jpa.crypto.encryption.keySize=16
  229. # cas.ticket.registry.jpa.crypto.alg=AES
  230.  
  231.  
  232. #Services registry section
  233.  
  234. #cas.serviceRegistry.initFromJson=true
  235. #cas.serviceRegistry.jpa.healthQuery=SELECT 1
  236. #cas.serviceRegistry.jpa.url=jdbc:mysql://localhost:3306/CAS
  237. #cas.serviceRegistry.jpa.dialect=org.hibernate.dialect.MySQL5Dialect
  238. #cas.serviceRegistry.jpa.user=root
  239. #cas.serviceRegistry.jpa.ddlAuto=update
  240. #cas.serviceRegistry.jpa.password=Pr0xym-1T
  241. #cas.serviceRegistry.jpa.driverClass=com.mysql.cj.jdbc.Driver
  242. #cas.serviceRegistry.jpa.isolateInternalQueries=false
  243. #cas.serviceRegistry.jpa.failFast=true
  244. #cas.serviceRegistry.jpa.leakThreshold=10
  245. #cas.serviceRegistry.jpa.batchSize=1
  246. #cas.serviceRegistry.jpa.defaultCatalog=
  247. #cas.serviceRegistry.jpa.defaultSchema=
  248. #cas.serviceRegistry.jpa.autocommit=true
  249. cas.serviceRegistry.jpa.idleTimeout=30000
  250. cas.serviceRegistry.initFromJson=true
  251. cas.serviceRegistry.jpa.healthQuery=select 1
  252. cas.serviceRegistry.jpa.url=jdbc:sqlserver://172.16.20.8;useNTLMv2=true;database=CASDatabase;
  253. cas.serviceRegistry.jpa.dialect=org.hibernate.dialect.SQLServer2012Dialect
  254. cas.serviceRegistry.jpa.user=sa
  255. cas.serviceRegistry.jpa.ddlAuto=update
  256. cas.serviceRegistry.jpa.password=Pr0xym-1T
  257. cas.serviceRegistry.jpa.driverClass=com.microsoft.sqlserver.jdbc.SQLServerDriver
  258.  
  259. connection.hikari.timeout=30000
  260. connection.hikari.max.lifetime=400000
  261. connection.hikari.pool.max.size=64
  262. hikari.leak.detection.threshold.time.millis=15000
  263.  
  264.  
  265. #SQLSERVER TICKETING CONFIGURATION
  266. # cas.ticket.registry.jpa.ticketLockType=NONE
  267. # cas.ticket.registry.jpa.jpaLockingTimeout=3600
  268. cas.ticket.registry.jpa.healthQuery=select 1
  269. # cas.ticket.registry.jpa.isolateInternalQueries=false
  270. cas.ticket.registry.jpa.url=jdbc:sqlserver://172.16.20.8;useNTLMv2=true;database=CASDatabase;
  271. # cas.ticket.registry.jpa.failFast=true
  272. cas.ticket.registry.jpa.dialect=org.hibernate.dialect.SQLServer2012Dialect
  273. cas.ticket.registry.jpa.leakThreshold=10
  274. # cas.ticket.registry.jpa.jpaLockingTgtEnabled=true
  275. # cas.ticket.registry.jpa.batchSize=1
  276. # cas.ticket.registry.jpa.defaultCatalog=
  277. # cas.ticket.registry.jpa.defaultSchema=
  278. cas.ticket.registry.jpa.user=sa
  279. cas.ticket.registry.jpa.ddlAuto=update
  280. cas.ticket.registry.jpa.password=Pr0xym-1T
  281. # cas.ticket.registry.jpa.autocommit=false
  282. cas.ticket.registry.jpa.driverClass=com.microsoft.sqlserver.jdbc.SQLServerDriver
  283. cas.ticket.registry.jpa.idleTimeout=30000
  284. # cas.ticket.registry.jpa.dataSourceName=
  285. # cas.ticket.registry.jpa.dataSourceProxy=false
  286.  
  287. cas.ticket.registry.jpa.pool.suspension=false
  288. cas.ticket.registry.jpa.pool.minSize=5
  289. cas.ticket.registry.jpa.pool.maxSize=10
  290. cas.ticket.registry.jpa.pool.maxWait=2000
  291.  
  292. # cas.ticket.registry.jpa.crypto.signing.key=
  293. # cas.ticket.registry.jpa.crypto.signing.keySize=512
  294. # cas.ticket.registry.jpa.crypto.encryption.key=
  295. # cas.ticket.registry.jpa.crypto.encryption.keySize=16
  296. # cas.ticket.registry.jpa.crypto.alg=AES
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!