forked from pac4j/dropwizard-pac4j-demo
-
Notifications
You must be signed in to change notification settings - Fork 0
/
demo-config.yml
65 lines (63 loc) · 2.19 KB
/
demo-config.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
server:
type: simple
applicationContextPath: /
adminContextPath: /admin
connector:
type: http
port: 8080
pac4j:
callbackUrl: /callback
ajaxRequestResolver:
class: org.pac4j.core.http.ajax.DefaultAjaxRequestResolver
clientsProperties:
facebook.id: 145278422258960
facebook.secret: be21409ba8f39b5dae2a7de525484da8
saml.keystorePath: resource:samlKeystore.jks
saml.keystorePassword: pac4j-demo-passwd
saml.privateKeyPassword: pac4j-demo-passwd
saml.identityProviderMetadataPath: resource:metadata-okta.xml
saml.maximumAuthenticationLifetime: 3600
saml.serviceProviderEntityId: http://localhost:8080/callback?client_name=SAML2Client
saml.serviceProviderMetadataPath: sp-metadata.xml
anonymous: fakevalue
ldap.type: direct
ldap.url: ldap://ldap.jumpcloud.com:389
ldap.useStartTls: false
ldap.useSsl: false
ldap.dnFormat: uid=%s,ou=Users,o=58e69adc0914b437324e7632,dc=jumpcloud,dc=com
ldap.usersDn: ou=Users,o=58e69adc0914b437324e7632,dc=jumpcloud,dc=com
ldap.principalAttributeId: uid
ldap.principalAttributes: mail
ldap.enhanceWithEntryResolver: false
formClient.loginUrl: /login.html
formClient.authenticator: ldap
encoder.spring.type: standard
encoder.spring.standard.secret: salt
db.jdbcUrl: jdbc:h2:mem:test
# username/password to authenticate on the DB
db.username: username
db.password: password
# pac4j username, password and other attributes stored in the columns
db.usernameAttribute: username
db.userPasswordAttribute: password
db.userAttributes: firstname
db.passwordEncoder: encoder.spring
indirectBasicAuth.authenticator: db
indirectBasicAuth.realName: DB authentication realm
authorizers:
mustBeAuth:
class: org.pac4j.core.authorization.authorizer.IsAuthenticatedAuthorizer
redirectionUrl: /?mustBeAuth
mustBeAnon:
class: org.pac4j.core.authorization.authorizer.IsAnonymousAuthorizer
redirectionUrl: /?mustBeAnon
matchers:
excludedFbPath:
class: org.pac4j.core.matching.PathMatcher
excludedPaths:
- /facebook/notprotected.html
logging:
level: INFO
loggers:
org.pac4j: DEBUG
org.ldaptive: DEBUG