Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- cas.server.name: https://ajec.proxym-it.tn:9443
- cas.server.prefix: https://ajec.proxym-it.tn:9443/cas
- logging.config=classpath:log4j2.xml
- #logging.config: /etc/cas/config/log4j2.xml
- cas.serviceRegistry.config.location: file:/etc/cas/services
- server.port = 8090
- server.ssl.keyStore=file:/etc/cas/.keystore
- server.ssl.keyStorePassword=changeit
- server.ssl.keyPassword=changeit
- server.ssl.keyAlias=tomcat
- cas.authn.accept.users =
- cas.authn.oidc.skew=5
- cas.authn.oidc.issuer=https://ajec.proxym-it.tn:9443/cas/oidc
- #cas.authn.oidc.jwksFile=classpath:/keystore.jwks
- cas.authn.oauth.refreshToken.timeToKillInSeconds=2592000
- cas.theme.defaultThemeName=ajman
- cas.theme.paramName=ajman
- #cas.tgc.path=
- #cas.tgc.maxAge=-1
- #cas.tgc.domain=
- #tgc.signing.key=b2VrFNqSrnPJ5F1CU9zKNNMTSpQWVEaQ-6SuBNKfGdyLNTJIotPhUWWxttJt279YTQly207kONyDH5fsqnA9Pw
- #cas.tgc.name=TGC
- #tgc.encryption.key=Gh_fukqGuGN0qtHdeKWWuIbUKaEz7TLqZMxi5aY0enA
- #cas.tgc.secure=true
- #cas.tgc.httpOnly=true
- #cas.tgc.rememberMeMaxAge=1209600
- #cas.tgc.cipherEnabled=true
- #cas.tgc.encryptionKey=Gh_fukqGuGN0qtHdeKWWuIbUKaEz7TLqZMxi5aY0enA
- #cas.tgc.signingKey=b2VrFNqSrnPJ5F1CU9zKNNMTSpQWVEaQ-6SuBNKfGdyLNTJIotPhUWWxttJt279YTQly207kONyDH5fsqnA9Pw
- #cas.tgc.cipherEnabled=true
- #cas.ticket.security.encryptionKey=Gh_fukqGuGN0qtHdeKWWuIbUKaEz7TLqZMxi5aY0enA
- #cas.ticket.security.signingKey=b2VrFNqSrnPJ5F1CU9zKNNMTSpQWVEaQ-6SuBNKfGdyLNTJIotPhUWWxttJt279YTQly207kONyDH5fsqnA9Pw
- #Ldap authentication section
- #cas.authn.ldap[0].type=AD
- #cas.authn.ldap[0].ldapUrl=ldap://172.16.20.21:389
- #cas.authn.ldap[0].useSsl=false
- #cas.authn.ldap[0].useStartTls=false
- #cas.authn.ldap[0].connectTimeout=3000
- #cas.authn.ldap[0].baseDn=cn=Users,dc=uib,dc=dev
- #cas.authn.ldap[0].userFilter=sAMAccountName={user}
- #cas.authn.ldap[0].subtreeSearch=true
- #cas.authn.ldap[0].bindDn=cn=Administrator,cn=Users,dc=uib,dc=dev
- #cas.authn.ldap[0].bindCredential=Pr0xym-1T
- #cas.authn.ldap[0].dnFormat=cn=%s,cn=Users,dc=uib,dc=dev
- #cas.authn.ldap[0].principalAttributeId=sAMAccountName
- #cas.authn.ldap[0].principalAttributePassword=userPassword
- #cas.authn.ldap[0].minPoolSize=10
- #cas.authn.ldap[0].maxPoolSize=1
- #cas.authn.ldap[0].validateOnCheckout=false
- #cas.authn.ldap[0].validatePeriodically=true
- #cas.authn.ldap[0].validatePeriod=300
- #cas.authn.ldap[0].idleTime=600
- #cas.authn.ldap[0].prunePeriod=300
- #cas.authn.ldap[0].blockWaitTime=3000
- # cas.authn.ldap[0].usePasswordPolicy=true
- #Services registry section
- cas.authn.rest.uri=http://ajec.proxym-it.tn:8090/Cas-Api-Auth/Ajec_sso_api_auth/casAuth
- #cas.serviceRegistry.initFromJson=false
- #cas.serviceRegistry.jpa.healthQuery=SELECT 1
- #cas.serviceRegistry.jpa.url=jdbc:mysql://localhost:3306/CASV2
- #cas.serviceRegistry.jpa.dialect=org.hibernate.dialect.MySQL5Dialect
- #cas.serviceRegistry.jpa.user=root
- #cas.serviceRegistry.jpa.ddlAuto=update
- #cas.serviceRegistry.jpa.password=Pr0xym-1T
- #cas.serviceRegistry.jpa.driverClass=com.mysql.cj.jdbc.Driver
- #cas.serviceRegistry.jpa.isolateInternalQueries=false
- #cas.serviceRegistry.jpa.failFast=true
- #cas.serviceRegistry.jpa.leakThreshold=10
- #cas.serviceRegistry.jpa.batchSize=1
- #cas.serviceRegistry.jpa.defaultCatalog=
- #cas.serviceRegistry.jpa.defaultSchema=
- #cas.serviceRegistry.jpa.autocommit=true
- #cas.serviceRegistry.jpa.idleTimeout=5000
- # cas.serviceRegistry.initFromJson=false
- #Synchronize and resolve attributes
- cas.authn.attributeRepository.ldap[0].attributes.uid=userName
- cas.authn.attributeRepository.ldap[0].attributes.displayName=displayName
- cas.authn.attributeRepository.ldap[0].attributes.cn=emailAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.affiliation=groupMembership
- #cas.authn.attributeRepository.ldap[0].attributes.cn=cn
- cas.authn.attributeRepository.ldap[0].attributes.emailAjecUser=emailAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.sAMAccountName=sAMAccountName
- cas.authn.attributeRepository.ldap[0].attributes.userName=userName
- cas.authn.attributeRepository.ldap[0].attributes.accountTypeAjecUser=accountTypeAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.trustLevel=trustLevel
- cas.authn.attributeRepository.ldap[0].attributes.passportNumberAjecUser=passportNumberAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.countryCodeAjecUser=countryCodeAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.tradeLicenseNumberAjecUser=tradeLicenseNumberAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.emirateAjecUser=emirateAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.companyNameAjecUser=companyNameAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.mobileNumber=mobileNumber
- cas.authn.attributeRepository.ldap[0].attributes.genderAjecUser=genderAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.birthDateAjecUser=birthDateAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.contactLanguageAjecUser=contactLanguageAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.contactMethodAjecUser=contactMethodAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.addressAjecUser=addressAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.password=password
- cas.authn.attributeRepository.ldap[0].attributes.eidAjecUser=eidAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.accountExpires=accountExpires
- cas.authn.attributeRepository.ldap[0].attributes.accountTypeUser=accountTypeUser
- cas.authn.attributeRepository.ldap[0].attributes.tokenAjecUser=tokenAjecUser
- #cas.authn.attributeRepository.ldap[0].attributes.userPassword=userPassword
- cas.authn.attributeRepository.ldap[0].attributes.lastName=lastName
- cas.authn.attributeRepository.ldap[0].attributes.firstName=firstName
- #cas.authn.ldap[0].principalAttributeList=cn,sAMAccountName,sn,co,givenName,accountTypeUser,genderAjecUser,birthDateAjecUser
- cas.authn.attributeRepository.defaultAttributesToRelease=cn,sAMAccountName,sn,co,givenName,accountTypeUser,genderAjecUser,birthDateAjecUser,mobileNumber
- # Map fixed claims to CAS attributes
- cas.authn.oidc.claimsMap.eidAjecUserClaim=eidAjecUser
- cas.authn.oidc.claimsMap.passportNumberAjecUserClaim=passportNumberAjecUser
- cas.authn.oidc.claimsMap.emailAjecUserClaim=emailAjecUser
- cas.authn.oidc.claimsMap.sAMAccountNameClaim=sAMAccountName
- cas.authn.oidc.claimsMap.userNameClaim=userName
- cas.authn.oidc.claimsMap.contactLanguageAjecUserClaim=contactLanguageAjecUser
- #cas.authn.oidc.claimsMap.passwordClaim=password
- #cas.authn.oidc.claimsMap.userPasswordClaim=userPassword
- cas.authn.oidc.claimsMap.lastNameClaim=lastName
- cas.authn.oidc.claimsMap.contactMethodAjecUserClaim=contactMethodAjecUser
- cas.authn.oidc.claimsMap.tokenAjecUserClaim=tokenAjecUser
- cas.authn.oidc.claimsMap.tradeLicenseNumberAjecUserClaim=tradeLicenseNumberAjecUser
- cas.authn.oidc.claimsMap.accountExpiresClaim=accountExpires
- cas.authn.oidc.claimsMap.accountTypeAjecUserClaim=accountTypeAjecUser
- cas.authn.oidc.claimsMap.trustLevelClaim=trustLevel
- cas.authn.oidc.claimsMap.companyNameAjecUserClaim=companyNameAjecUser
- cas.authn.oidc.claimsMap.addressAjecUserClaim=addressAjecUser
- cas.authn.oidc.claimsMap.countryCodeAjecUserClaim=countryCodeAjecUser
- cas.authn.oidc.claimsMap.emirateAjecUserClaim=emirateAjecUser
- cas.authn.oidc.claimsMap.mobileNumberClaim = mobileNumber
- cas.authn.oidc.claimsMap.firstNameClaim = firstName
- cas.authn.oidc.claims=firstNameClaim,mobileNumberClaim,passportNumberAjecUserClaim,addressAjecUserClaim,countryCodeAjecUserClaim,companyNameAjecUserClaim,emirateAjecUserClaim,emailAjecUserClaim,accountTypeAjecUserClaim,trustLevelClaim,accountExpiresClaim,tradeLicenseNumberAjecUserClaim,tokenAjecUserClaim,contactMethodAjecUserClaim,lastNameClaim,contactLanguageAjecUserClaim,userNameClaim,sAMAccountNameClaim,sub,name,preferred_username,family_name,given_name,middle_name,given_name,profile,picture,nickname,website,zoneinfo,locale,updated_at,birthdate,email,email_verified,phone_number,phone_number_verified,address,emailAjecUser,birthDateAjecUser,eidAjecUserClaim
- cas.authn.oidc.scopes=openid,profile,email,address,phone,offline_access,ajman_profile
- cas.authn.oidc.userDefinedScopes.ajman_profile=firstNameClaim,mobileNumberClaim,passportNumberAjecUserClaim,companyNameAjecUserClaim,countryCodeAjecUserClaim,addressAjecUserClaim,emirateAjecUserClaim,companyNameAjecUser,countryCodeAjecUser,accountExpiresClaim,cn,accountTypeAjecUserClaim,trustLevelClaim,tradeLicenseNumberAjecUserClaim,tradeLicenseNumberAjecUserClaim,userNameClaim,tokenAjecUserClaim,contactMethodAjecUserClaim,lastNameClaim,passportNumberAjecUserClaim,contactLanguageAjecUserClaim,userPasswordClaim,passwordClaim,sAMAccountNameClaim,emailAjecUserClaim,birthDateAjecUser,eidAjecUserClaim
- cas.authn.attributeRepository.ldap[0].ldapUrl=ldap://172.16.20.21:389
- # cas.authn.attributeRepository.ldap[0].connectionStrategy=
- cas.authn.attributeRepository.ldap[0].order=0
- cas.authn.attributeRepository.ldap[0].useSsl=false
- cas.authn.attributeRepository.ldap[0].useStartTls=false
- cas.authn.attributeRepository.ldap[0].connectTimeout=5000
- cas.authn.attributeRepository.ldap[0].baseDn=cn=Users,dc=uib,dc=dev
- cas.authn.attributeRepository.ldap[0].userFilter=(|(sAMAccountName={user})(emailAjecUser={user}))
- cas.authn.attributeRepository.ldap[0].subtreeSearch=true
- cas.authn.attributeRepository.ldap[0].bindDn=cn=Administrator,cn=Users,dc=uib,dc=dev
- cas.authn.attributeRepository.ldap[0].bindCredential=Pr0xym-1T
- # cas.authn.attributeRepository.ldap[0].trustCertificates=
- # cas.authn.attributeRepository.ldap[0].keystore=
- # cas.authn.attributeRepository.ldap[0].keystorePassword=
- # cas.authn.attributeRepository.ldap[0].keystoreType=JKS|JCEKS|PKCS12
- # cas.authn.attributeRepository.ldap[0].poolPassivator=NONE|CLOSE|BIND
- cas.authn.attributeRepository.ldap[0].minPoolSize=3
- cas.authn.attributeRepository.ldap[0].maxPoolSize=10
- # cas.authn.attributeRepository.ldap[0].validateOnCheckout=true
- # cas.authn.attributeRepository.ldap[0].validatePeriodically=true
- # cas.authn.attributeRepository.ldap[0].validatePeriod=600
- #Rest Access Properties
- cas.rest.attributeName=cn
- cas.rest.attributeValue=Administrator
- cas.rest.throttler=neverThrottle
- #cas.serviceRegistry.watcherEnabled=false
- #cas.serviceRegistry.repeatInterval=10000
- # IP address may be enough to protect all endpoints.
- # If you wish to protect the admin pages via CAS itself, configure the rest.
- #cas.adminPagesSecurity.ip=127\.0\.0\.1
- cas.adminPagesSecurity.loginUrl=https://ajec.proxym-it.tn:9443/cas/login
- cas.adminPagesSecurity.service=https://ajec.proxym-it.tn:9443/cas/status/dashboard
- cas.adminPagesSecurity.users=file:/etc/cas/config/adminusers.properties
- cas.adminPagesSecurity.adminRoles=ROLE_ADMIN,ROLE_USER
- #cas.adminPagesSecurity.actuatorEndpointsEnabled=true
- # cas.ticket.st.maxLength=20
- cas.ticket.st.numberOfUses=10
- cas.ticket.st.timeToKillInSeconds=1000
- cas.ticket.registry.cleaner.enabled=false
- # cas.ticket.registry.jpa.ticketLockType=NONE
- # cas.ticket.registry.jpa.jpaLockingTimeout=3600
- #cas.ticket.registry.jpa.healthQuery=SELECT 1
- # cas.ticket.registry.jpa.isolateInternalQueries=false
- #cas.ticket.registry.jpa.url=jdbc:mysql://localhost:3306/CASV2
- # cas.ticket.registry.jpa.failFast=true
- #cas.ticket.registry.jpa.dialect=org.hibernate.dialect.MySQL5Dialect
- # cas.ticket.registry.jpa.leakThreshold=10
- # cas.ticket.registry.jpa.jpaLockingTgtEnabled=true
- # cas.ticket.registry.jpa.batchSize=1
- # cas.ticket.registry.jpa.defaultCatalog=
- # cas.ticket.registry.jpa.defaultSchema=
- #cas.ticket.registry.jpa.user=root
- #cas.ticket.registry.jpa.ddlAuto=update
- #cas.ticket.registry.jpa.password=Pr0xym-1T
- # cas.ticket.registry.jpa.autocommit=false
- #cas.ticket.registry.jpa.driverClass=com.mysql.cj.jdbc.Driver
- # cas.ticket.registry.jpa.idleTimeout=5000
- # cas.ticket.registry.jpa.dataSourceName=
- # cas.ticket.registry.jpa.dataSourceProxy=false
- # cas.ticket.registry.jpa.pool.suspension=false
- # cas.ticket.registry.jpa.pool.minSize=6
- # cas.ticket.registry.jpa.pool.maxSize=18
- # cas.ticket.registry.jpa.pool.maxWait=2000
- # cas.ticket.registry.jpa.crypto.signing.key=
- # cas.ticket.registry.jpa.crypto.signing.keySize=512
- # cas.ticket.registry.jpa.crypto.encryption.key=
- # cas.ticket.registry.jpa.crypto.encryption.keySize=16
- # cas.ticket.registry.jpa.crypto.alg=AES
- #Services registry section
- #cas.serviceRegistry.initFromJson=true
- #cas.serviceRegistry.jpa.healthQuery=SELECT 1
- #cas.serviceRegistry.jpa.url=jdbc:mysql://localhost:3306/CAS
- #cas.serviceRegistry.jpa.dialect=org.hibernate.dialect.MySQL5Dialect
- #cas.serviceRegistry.jpa.user=root
- #cas.serviceRegistry.jpa.ddlAuto=update
- #cas.serviceRegistry.jpa.password=Pr0xym-1T
- #cas.serviceRegistry.jpa.driverClass=com.mysql.cj.jdbc.Driver
- #cas.serviceRegistry.jpa.isolateInternalQueries=false
- #cas.serviceRegistry.jpa.failFast=true
- #cas.serviceRegistry.jpa.leakThreshold=10
- #cas.serviceRegistry.jpa.batchSize=1
- #cas.serviceRegistry.jpa.defaultCatalog=
- #cas.serviceRegistry.jpa.defaultSchema=
- #cas.serviceRegistry.jpa.autocommit=true
- cas.serviceRegistry.jpa.idleTimeout=30000
- cas.serviceRegistry.initFromJson=true
- cas.serviceRegistry.jpa.healthQuery=select 1
- cas.serviceRegistry.jpa.url=jdbc:sqlserver://172.16.20.8;useNTLMv2=true;database=CASDatabase;
- cas.serviceRegistry.jpa.dialect=org.hibernate.dialect.SQLServer2012Dialect
- cas.serviceRegistry.jpa.user=sa
- cas.serviceRegistry.jpa.ddlAuto=update
- cas.serviceRegistry.jpa.password=Pr0xym-1T
- cas.serviceRegistry.jpa.driverClass=com.microsoft.sqlserver.jdbc.SQLServerDriver
- connection.hikari.timeout=30000
- connection.hikari.max.lifetime=400000
- connection.hikari.pool.max.size=64
- hikari.leak.detection.threshold.time.millis=15000
- #SQLSERVER TICKETING CONFIGURATION
- # cas.ticket.registry.jpa.ticketLockType=NONE
- # cas.ticket.registry.jpa.jpaLockingTimeout=3600
- cas.ticket.registry.jpa.healthQuery=select 1
- # cas.ticket.registry.jpa.isolateInternalQueries=false
- cas.ticket.registry.jpa.url=jdbc:sqlserver://172.16.20.8;useNTLMv2=true;database=CASDatabase;
- # cas.ticket.registry.jpa.failFast=true
- cas.ticket.registry.jpa.dialect=org.hibernate.dialect.SQLServer2012Dialect
- cas.ticket.registry.jpa.leakThreshold=10
- # cas.ticket.registry.jpa.jpaLockingTgtEnabled=true
- # cas.ticket.registry.jpa.batchSize=1
- # cas.ticket.registry.jpa.defaultCatalog=
- # cas.ticket.registry.jpa.defaultSchema=
- cas.ticket.registry.jpa.user=sa
- cas.ticket.registry.jpa.ddlAuto=update
- cas.ticket.registry.jpa.password=Pr0xym-1T
- # cas.ticket.registry.jpa.autocommit=false
- cas.ticket.registry.jpa.driverClass=com.microsoft.sqlserver.jdbc.SQLServerDriver
- cas.ticket.registry.jpa.idleTimeout=30000
- # cas.ticket.registry.jpa.dataSourceName=
- # cas.ticket.registry.jpa.dataSourceProxy=false
- cas.ticket.registry.jpa.pool.suspension=false
- cas.ticket.registry.jpa.pool.minSize=5
- cas.ticket.registry.jpa.pool.maxSize=10
- cas.ticket.registry.jpa.pool.maxWait=2000
- # cas.ticket.registry.jpa.crypto.signing.key=
- # cas.ticket.registry.jpa.crypto.signing.keySize=512
- # cas.ticket.registry.jpa.crypto.encryption.key=
- # cas.ticket.registry.jpa.crypto.encryption.keySize=16
- # cas.ticket.registry.jpa.crypto.alg=AES
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement