Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- cas.server.name: https://localhost:8080
- cas.server.prefix: https://localhost:8080/cas
- logging.config: file:/etc/cas/config/log4j2.xml
- cas.serviceRegistry.config.location:file:/etc/cas/services
- server.port = 8080
- cas.authn.oidc.issuer=https://localhost:8080/cas/oidc
- server.ssl.keyStore=file:/home/.keystore
- server.ssl.keyStorePassword=changeit
- server.ssl.keyPassword=changeit
- server.ssl.keyAlias=tomcat
- cas.authn.accept.users =
- #Ldap authentication section
- #cas.authn.ldap[0].type=AD
- #cas.authn.ldap[0].ldapUrl=ldap://172.16.20.21:389
- #cas.authn.ldap[0].useSsl=false
- #cas.authn.ldap[0].useStartTls=false
- #cas.authn.ldap[0].connectTimeout=3000
- #cas.authn.ldap[0].baseDn=cn=Users,dc=uib,dc=dev
- #cas.authn.ldap[0].userFilter=sAMAccountName={user}
- #cas.authn.ldap[0].subtreeSearch=true
- #cas.authn.ldap[0].bindDn=cn=Administrator,cn=Users,dc=uib,dc=dev
- #cas.authn.ldap[0].bindCredential=Pr0xym-1T
- #cas.authn.ldap[0].dnFormat=cn=%s,cn=Users,dc=uib,dc=dev
- #cas.authn.ldap[0].principalAttributeId=sAMAccountName
- #cas.authn.ldap[0].principalAttributePassword=userPassword
- #cas.authn.ldap[0].minPoolSize=10
- #cas.authn.ldap[0].maxPoolSize=1
- #cas.authn.ldap[0].validateOnCheckout=false
- #cas.authn.ldap[0].validatePeriodically=true
- #cas.authn.ldap[0].validatePeriod=300
- #cas.authn.ldap[0].idleTime=600
- #cas.authn.ldap[0].prunePeriod=300
- #cas.authn.ldap[0].blockWaitTime=3000
- # cas.authn.ldap[0].usePasswordPolicy=true
- cas.authn.rest.uri=http://192.168.211.190:8090/Cas-Api-Auth/Ajec_sso_api_auth/casAuth
- #Themes properties
- cas.theme.defaultThemeName=ajman
- cas.theme.paramName=ajman
- #Services registry section
- #cas.serviceRegistry.initFromJson=true
- #cas.serviceRegistry.jpa.healthQuery=SELECT 1
- #cas.serviceRegistry.jpa.url=jdbc:mysql://localhost:3306/CAS
- #cas.serviceRegistry.jpa.dialect=org.hibernate.dialect.MySQL5Dialect
- #cas.serviceRegistry.jpa.user=root
- #cas.serviceRegistry.jpa.ddlAuto=update
- #cas.serviceRegistry.jpa.password=Pr0xym-1T
- #cas.serviceRegistry.jpa.driverClass=com.mysql.cj.jdbc.Driver
- #cas.serviceRegistry.jpa.isolateInternalQueries=false
- #cas.serviceRegistry.jpa.failFast=true
- #cas.serviceRegistry.jpa.leakThreshold=10
- #cas.serviceRegistry.jpa.batchSize=1
- #cas.serviceRegistry.jpa.defaultCatalog=
- #cas.serviceRegistry.jpa.defaultSchema=
- #cas.serviceRegistry.jpa.autocommit=true
- #cas.serviceRegistry.jpa.idleTimeout=5000
- cas.serviceRegistry.initFromJson=true
- cas.serviceRegistry.jpa.healthQuery=select 1
- cas.serviceRegistry.jpa.url=jdbc:sqlserver://192.168.212.226;useNTLMv2=true;database=AJMANPROD;
- cas.serviceRegistry.jpa.dialect=org.hibernate.dialect.SQLServer2012Dialect
- cas.serviceRegistry.jpa.user=ssouser12
- cas.serviceRegistry.jpa.ddlAuto=update
- cas.serviceRegistry.jpa.password=Pr0xym-1T
- cas.serviceRegistry.jpa.driverClass=com.microsoft.sqlserver.jdbc.SQLServerDriver
- #Synchronize and resolve attributes
- cas.authn.attributeRepository.ldap[0].attributes.uid=uid
- cas.authn.attributeRepository.ldap[0].attributes.displayName=displayName
- cas.authn.attributeRepository.ldap[0].attributes.cn=commonName
- cas.authn.attributeRepository.ldap[0].attributes.affiliation=groupMembership
- #cas.authn.attributeRepository.ldap[0].attributes.cn=cn
- cas.authn.attributeRepository.ldap[0].attributes.emailAjecUser=emailAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.sAMAccountName=sAMAccountName
- cas.authn.attributeRepository.ldap[0].attributes.userName=userName
- cas.authn.attributeRepository.ldap[0].attributes.accountTypeAjecUser=accountTypeAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.trustLevel=trustLevel
- cas.authn.attributeRepository.ldap[0].attributes.passportNumberAjecUser=passportNumberAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.countryCodeAjecUser=countryCodeAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.tradeLicenseNumberAjecUser=tradeLicenseNumberAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.emirateAjecUser=emirateAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.companyNameAjecUser=companyNameAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.mobileNumber=mobileNumber
- cas.authn.attributeRepository.ldap[0].attributes.genderAjecUser=genderAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.birthDateAjecUser=birthDateAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.contactLanguageAjecUser=contactLanguageAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.contactMethodAjecUser=contactMethodAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.addressAjecUser=addressAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.password=password
- cas.authn.attributeRepository.ldap[0].attributes.eidAjecUser=eidAjecUser
- cas.authn.attributeRepository.ldap[0].attributes.accountExpires=accountExpires
- cas.authn.attributeRepository.ldap[0].attributes.accountTypeUser=accountTypeUser
- cas.authn.attributeRepository.ldap[0].attributes.tokenAjecUser=tokenAjecUser
- #cas.authn.attributeRepository.ldap[0].attributes.userPassword=userPassword
- cas.authn.attributeRepository.ldap[0].attributes.lastName=lastName
- cas.authn.attributeRepository.ldap[0].attributes.firstName=firstName
- cas.authn.ldap[0].principalAttributeList=cn,sAMAccountName,sn,co,givenName,accountTypeUser,genderAjecUser,birthDateAjecUser
- cas.authn.attributeRepository.defaultAttributesToRelease=cn,sAMAccountName,sn,co,givenName,accountTypeUser,genderAjecUser,birthDateAjecUser
- #cas.authn.attributeRepository.ldap[0].ldapUrl=ldap://172.16.20.21:389
- # cas.authn.attributeRepository.ldap[0].connectionStrategy=
- #cas.authn.attributeRepository.ldap[0].order=0
- #cas.authn.attributeRepository.ldap[0].useSsl=false
- #cas.authn.attributeRepository.ldap[0].useStartTls=false
- #cas.authn.attributeRepository.ldap[0].connectTimeout=5000
- #cas.authn.attributeRepository.ldap[0].baseDn=cn=Users,dc=uib,dc=dev
- #cas.authn.attributeRepository.ldap[0].userFilter=sAMAccountName={user}
- #cas.authn.attributeRepository.ldap[0].subtreeSearch=true
- #cas.authn.attributeRepository.ldap[0].bindDn=cn=Administrator,cn=Users,dc=uib,dc=dev
- #cas.authn.attributeRepository.ldap[0].bindCredential=Pr0xym-1T
- # cas.authn.attributeRepository.ldap[0].trustCertificates=
- # cas.authn.attributeRepository.ldap[0].keystore=
- # cas.authn.attributeRepository.ldap[0].keystorePassword=
- # cas.authn.attributeRepository.ldap[0].keystoreType=JKS|JCEKS|PKCS12
- # cas.authn.attributeRepository.ldap[0].poolPassivator=NONE|CLOSE|BIND
- #cas.authn.attributeRepository.ldap[0].minPoolSize=3
- #cas.authn.attributeRepository.ldap[0].maxPoolSize=10
- # cas.authn.attributeRepository.ldap[0].validateOnCheckout=true
- # cas.authn.attributeRepository.ldap[0].validatePeriodically=true
- # cas.authn.attributeRepository.ldap[0].validatePeriod=600
- # cas.authn.attributeRepository.ldap[0].validateTimeout=5000
- # cas.authn.attributeRepository.ldap[0].failFast=true
- # cas.authn.attributeRepository.ldap[0].idleTime=500
- # cas.authn.attributeRepository.ldap[0].prunePeriod=600
- # cas.authn.attributeRepository.ldap[0].blockWaitTime=5000
- # cas.authn.attributeRepository.ldap[0].providerClass=org.ldaptive.provider.unboundid.UnboundIDProvider
- # cas.authn.attributeRepository.ldap[0].validator.type=NONE|SEARCH|COMPARE
- # cas.authn.attributeRepository.ldap[0].validator.baseDn=
- # cas.authn.attributeRepository.ldap[0].validator.searchFilter=(objectClass=*)
- # cas.authn.attributeRepository.ldap[0].validator.scope=OBJECT|ONELEVEL|SUBTREE
- # cas.authn.attributeRepository.ldap[0].validator.attributeName=objectClass
- # cas.authn.attributeRepository.ldap[0].validator.attributeValues=top
- # cas.authn.attributeRepository.ldap[0].validator.dn=
- # Map fixed claims to CAS attributes
- cas.authn.oidc.claimsMap.eidAjecUserClaim=eidAjecUser
- cas.authn.oidc.claimsMap.passportNumberAjecUserClaim=passportNumberAjecUser
- cas.authn.oidc.claimsMap.emailAjecUserClaim=emailAjecUser
- cas.authn.oidc.claimsMap.sAMAccountNameClaim=sAMAccountName
- cas.authn.oidc.claimsMap.userNameClaim=userName
- cas.authn.oidc.claimsMap.contactLanguageAjecUserClaim=contactLanguageAjecUser
- #cas.authn.oidc.claimsMap.passwordClaim=password
- #cas.authn.oidc.claimsMap.userPasswordClaim=userPassword
- cas.authn.oidc.claimsMap.lastNameClaim=lastName
- cas.authn.oidc.claimsMap.contactMethodAjecUserClaim=contactMethodAjecUser
- cas.authn.oidc.claimsMap.tokenAjecUserClaim=tokenAjecUser
- cas.authn.oidc.claimsMap.tradeLicenseNumberAjecUserClaim=tradeLicenseNumberAjecUser
- cas.authn.oidc.claimsMap.accountExpiresClaim=accountExpires
- cas.authn.oidc.claimsMap.accountTypeAjecUserClaim=accountTypeAjecUser
- cas.authn.oidc.claimsMap.trustLevelClaim=trustLevel
- cas.authn.oidc.claimsMap.companyNameAjecUserClaim=companyNameAjecUser
- cas.authn.oidc.claimsMap.addressAjecUserClaim=addressAjecUser
- cas.authn.oidc.claimsMap.countryCodeAjecUserClaim=countryCodeAjecUser
- cas.authn.oidc.claimsMap.emirateAjecUserClaim=emirateAjecUser
- cas.authn.oidc.claimsMap.mobileNumberClaim = mobileNumber
- cas.authn.oidc.claimsMap.firstNameClaim = firstName
- cas.authn.oidc.claims=firstNameClaim,mobileNumberClaim,passportNumberAjecUserClaim,addressAjecUserClaim,countryCodeAjecUserClaim,companyNameAjecUserClaim,emirateAjecUserClaim,emailAjecUserClaim,accountTypeAjecUserClaim,trustLevelClaim,accountExpiresClaim,tradeLicenseNumberAjecUserClaim,tokenAjecUserClaim,contactMethodAjecUserClaim,lastNameClaim,contactLanguageAjecUserClaim,userNameClaim,sAMAccountNameClaim,sub,name,preferred_username,family_name,given_name,middle_name,given_name,profile,picture,nickname,website,zoneinfo,locale,updated_at,birthdate,email,email_verified,phone_number,phone_number_verified,address,emailAjecUser,birthDateAjecUser,eidAjecUserClaim
- cas.authn.oidc.scopes=openid,profile,email,address,phone,offline_access,ajman_profile
- cas.authn.oidc.userDefinedScopes.ajman_profile=firstNameClaim,mobileNumberClaim,passportNumberAjecUserClaim,companyNameAjecUserClaim,countryCodeAjecUserClaim,addressAjecUserClaim,emirateAjecUserClaim,companyNameAjecUser,countryCodeAjecUser,accountExpiresClaim,cn,accountTypeAjecUserClaim,trustLevelClaim,tradeLicenseNumberAjecUserClaim,tradeLicenseNumberAjecUserClaim,userNameClaim,tokenAjecUserClaim,contactMethodAjecUserClaim,lastNameClaim,passportNumberAjecUserClaim,contactLanguageAjecUserClaim,userPasswordClaim,passwordClaim,sAMAccountNameClaim,emailAjecUserClaim,birthDateAjecUser,eidAjecUserClaim
- #Rest Access Properties
- cas.rest.attributeName=cn
- cas.rest.attributeValue=Administrator
- cas.rest.throttler=neverThrottle
- cas.serviceRegistry.watcherEnabled=true
- cas.serviceRegistry.repeatInterval=120000
- # IP address may be enough to protect all endpoints.
- # If you wish to protect the admin pages via CAS itself, configure the rest.
- #cas.adminPagesSecurity.ip=127\.0\.0\.1
- cas.adminPagesSecurity.loginUrl=https://localhost:8080/cas/login
- cas.adminPagesSecurity.service=https://localhost:8080/cas/status/dashboard
- cas.adminPagesSecurity.users=file:/etc/cas/config/adminusers.properties
- cas.adminPagesSecurity.adminRoles=ROLE_ADMIN
- cas.adminPagesSecurity.actuatorEndpointsEnabled=true
- #MYSQL CONFIGURATION
- # cas.ticket.registry.jpa.ticketLockType=NONE
- # cas.ticket.registry.jpa.jpaLockingTimeout=3600
- ##cas.ticket.registry.jpa.healthQuery=SELECT 1
- # cas.ticket.registry.jpa.isolateInternalQueries=false
- ##cas.ticket.registry.jpa.url=jdbc:mysql://localhost:3306/CAS
- # cas.ticket.registry.jpa.failFast=true
- ##cas.ticket.registry.jpa.dialect=org.hibernate.dialect.MySQL5Dialect
- # cas.ticket.registry.jpa.leakThreshold=10
- # cas.ticket.registry.jpa.jpaLockingTgtEnabled=true
- # cas.ticket.registry.jpa.batchSize=1
- # cas.ticket.registry.jpa.defaultCatalog=
- # cas.ticket.registry.jpa.defaultSchema=
- ##cas.ticket.registry.jpa.user=root
- ##cas.ticket.registry.jpa.ddlAuto=update
- ##cas.ticket.registry.jpa.password=Pr0xym-1T
- # cas.ticket.registry.jpa.autocommit=false
- ##cas.ticket.registry.jpa.driverClass=com.mysql.cj.jdbc.Driver
- # cas.ticket.registry.jpa.idleTimeout=5000
- # cas.ticket.registry.jpa.dataSourceName=
- # cas.ticket.registry.jpa.dataSourceProxy=false
- # cas.ticket.registry.jpa.pool.suspension=false
- # cas.ticket.registry.jpa.pool.minSize=6
- # cas.ticket.registry.jpa.pool.maxSize=18
- # cas.ticket.registry.jpa.pool.maxWait=2000
- # cas.ticket.registry.jpa.crypto.signing.key=
- # cas.ticket.registry.jpa.crypto.signing.keySize=512
- # cas.ticket.registry.jpa.crypto.encryption.key=
- # cas.ticket.registry.jpa.crypto.encryption.keySize=16
- # cas.ticket.registry.jpa.crypto.alg=AES
- #SQLSERVER CONFIGURATION
- # cas.ticket.registry.jpa.ticketLockType=NONE
- # cas.ticket.registry.jpa.jpaLockingTimeout=3600
- cas.ticket.registry.jpa.healthQuery=select 1
- # cas.ticket.registry.jpa.isolateInternalQueries=false
- cas.ticket.registry.jpa.url=jdbc:sqlserver://192.168.212.226;useNTLMv2=true;database=AJMANPROD;
- # cas.ticket.registry.jpa.failFast=true
- cas.ticket.registry.jpa.dialect=org.hibernate.dialect.SQLServer2012Dialect
- # cas.ticket.registry.jpa.leakThreshold=10
- # cas.ticket.registry.jpa.jpaLockingTgtEnabled=true
- # cas.ticket.registry.jpa.batchSize=1
- # cas.ticket.registry.jpa.defaultCatalog=
- # cas.ticket.registry.jpa.defaultSchema=
- cas.ticket.registry.jpa.user=ssouser12
- cas.ticket.registry.jpa.ddlAuto=update
- cas.ticket.registry.jpa.password=Pr0xym-1T
- # cas.ticket.registry.jpa.autocommit=false
- cas.ticket.registry.jpa.driverClass=com.microsoft.sqlserver.jdbc.SQLServerDriver
- # cas.ticket.registry.jpa.idleTimeout=5000
- # cas.ticket.registry.jpa.dataSourceName=
- # cas.ticket.registry.jpa.dataSourceProxy=false
- # cas.ticket.registry.jpa.pool.suspension=false
- # cas.ticket.registry.jpa.pool.minSize=6
- # cas.ticket.registry.jpa.pool.maxSize=18
- # cas.ticket.registry.jpa.pool.maxWait=2000
- # cas.ticket.registry.jpa.crypto.signing.key=
- # cas.ticket.registry.jpa.crypto.signing.keySize=512
- # cas.ticket.registry.jpa.crypto.encryption.key=
- # cas.ticket.registry.jpa.crypto.encryption.keySize=16
- # cas.ticket.registry.jpa.crypto.alg=AES
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement