<?xml version="1.0"?><configuration> <connectionStrings> <remove name="Lo

1. <?xml version="1.0"?>
2. <configuration>
3. <connectionStrings>
4. <remove name="LocalSqlServer"/>
5. <add name="LocalSqlServer" connectionString="Server=SHOUSHOUPCSQL2016; Initial Catalog=db; User ID=sa; Password=123456; Connect Timeout=10000; pooling='true'; Max Pool Size=200"/>
6. </connectionStrings>
7. <appSettings>
8. <add key="aspnet:UseTaskFriendlySynchronizationContext" value="true"/>
9. <add key="HOST" value=""/>
10. <add key="SID" value=""/>
11. <add key="UserID" value=""/>
12. <add key="Password" value=""/>
13. <add key="CC" value=""/>
14. </appSettings>
15.  
16. <system.web>
17. <compilation debug="true" targetFramework="4.6"/>
18. <httpRuntime targetFramework="4.5" enableVersionHeader="false" maxRequestLength="2097151"/>
19. <httpModules>
20. <add name="ApplicationInsightsWebTracking" type="Microsoft.ApplicationInsights.Web.ApplicationInsightsHttpModule, Microsoft.AI.Web"/>
21. </httpModules>
22. <sessionState timeout="2"/>
23. </system.web>
24. <system.serviceModel>
25. <services>
26. <service behaviorConfiguration="ServiceBehaviour" name="MOH.MOHServices">
27. <endpoint behaviorConfiguration="webHttpServiceBehavior" binding="webHttpBinding"
28. contract="MOH.IMOHServices" />
29. </service>
30. </services>
31. <behaviors>
32. <endpointBehaviors>
33. <behavior name="webHttpServiceBehavior">
34. <!-- Important this is the behavior that makes a normal WCF service to REST based service-->
35. <webHttp/>
36. </behavior>
37. </endpointBehaviors>
38. <serviceBehaviors>
39. <behavior name="ServiceBehaviour">
40. <serviceAuthorization serviceAuthorizationManagerType="MOH.RestAuthorizationManager, MOH"/>
41. <serviceMetadata httpGetEnabled="true" httpsGetEnabled="true"/>
42. <serviceDebug includeExceptionDetailInFaults="true"/>
43. <serviceThrottling maxConcurrentCalls="16" maxConcurrentInstances="1000" maxConcurrentSessions="10"/>
44. </behavior>
45. </serviceBehaviors>
46. </behaviors>
47. <bindings>
48. <basicHttpBinding>
49. <binding maxBufferPoolSize="2147483647" maxBufferSize="2147483647" maxReceivedMessageSize="2147483647" messageEncoding="Text">
50. <readerQuotas maxDepth="2000000" maxStringContentLength="2147483647" maxArrayLength="2147483647" maxBytesPerRead="2147483647" maxNameTableCharCount="2147483647"/>
51. </binding>
52. </basicHttpBinding>
53. </bindings>
54. <serviceHostingEnvironment aspNetCompatibilityEnabled="true" multipleSiteBindingsEnabled="true"/>
55. </system.serviceModel>
56.  
57. <system.webServer>
58. <security>
59. <requestFiltering>
60. <verbs>
61. <add verb="OPTIONS" allowed="false"/>
62. <add verb="TRACE" allowed="false"/>
63. <add verb="HEAD" allowed="false"/>
64. </verbs>
65. <requestLimits maxAllowedContentLength="2000000000" maxUrl="4096" maxQueryString="9999999"/>
66. </requestFiltering>
67. </security>
68. <modules runAllManagedModulesForAllRequests="true">
69. <remove name="ApplicationInsightsWebTracking"/>
70. <add name="ApplicationInsightsWebTracking" type="Microsoft.ApplicationInsights.Web.ApplicationInsightsHttpModule, Microsoft.AI.Web" preCondition="managedHandler"/>
71. </modules>
72. <!--
73. To browse web app root directory during debugging, set the value below to true.
74. Set to false before deployment to avoid disclosing web app folder information.
75. -->
76. <directoryBrowse enabled="false"/>
77. <validation validateIntegratedModeConfiguration="false"/>
78. <httpProtocol>
79. <customHeaders>
80. <remove name="X-Powered-By"/>
81. <add name="X-XSS-Protection" value="1; mode=block"/>
82. <add name="Strict-Transport-Security" value="max-age=31536000; includeSubDomains; preload"/>
83. <add name="X-Frame-Options" value="DENY"/>
84. <add name="X-Content-Type-Options" value="nosniff"/>
85. </customHeaders>
86. </httpProtocol>
87. </system.webServer>
88. </configuration>