| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139 |
- ############################################################################
- # MaxKey
- ############################################################################
- # Login configuration
- #enable captcha
- config.login.captcha=true
- #enable two factor,use one time password
- config.login.onetimepwd=true
- #enable social sign on
- config.login.socialsignon=true
- #Enable kerberos/SPNEGO
- config.login.kerberos=true
- #wsFederation
- config.login.wsfederation=false
- #remeberme
- config.login.remeberme=true
- #validity
- config.login.remeberme.validity=
- #to default application web site
- config.login.default.uri=appList
- config.ipaddress.whitelist=false
- ############################################################################
- # Kerberos Login configuration
- ############################################################################
- #short name of user domain must be in upper case,eg:CONNSEC
- config.support.kerberos.default.userdomain=CONNSEC
- #short name of user domain must be in upper case,eg:CONNSEC.COM
- config.support.kerberos.default.fulluserdomain=CONNSEC.COM
- #last 8Bit crypto for Kerberos web Authentication
- config.support.kerberos.default.crypto=846KZSzYq56M6d5o
- #Kerberos Authentication server RUL
- config.support.kerberos.default.redirecturi=http://sso.maxkey.org/kerberos/authn/
- ############################################################################
- # HTTPHEADER Login configuration
- ############################################################################
- config.support.httpheader.enable=false
- config.support.httpheader.headername=header-user
- # iv-user is for IBM Security Access Manager
- #config.httpheader.headername=iv-user
- ############################################################################
- # BASIC Login support configuration
- ############################################################################
- config.support.basic.enable=false
- #############################################################################
- # WsFederation Login support configuration
- #identifier: the identifer for the ADFS server
- #url: the login url for ADFS
- #principal: the name of the attribute/assertion returned by ADFS that contains the principal's username.
- #relyingParty: the identifier of the CAS Server as it has been configured in ADFS.
- #tolerance: (optional) the amount of drift to allow when validating the timestamp on the token. Default: 10000 (ms)
- #attributeMutator: (optional) a class (defined by you) that can modify the attributes/assertions returned by the ADFS server
- #signingCertificate: ADFS's signing certificate used to validate the token/assertions issued by ADFS.
- ############################################################################
- config.support.wsfederation.identifier=http://adfs.connsec.com/adfs/services/trust
- config.support.wsfederation.url=https://adfs.connsec.com/adfs/ls/
- config.support.wsfederation.principal=upn
- config.support.wsfederation.relyingParty=urn:federation:connsec
- config.support.wsfederation.signingCertificate=adfs-signing.crt
- config.support.wsfederation.tolerance=10000
- config.support.wsfederation.upn.suffix=connsec.com
- config.support.wsfederation.logoutUrl=https://adfs.connsec.com/adfs/ls/?wa=wsignout1.0
- #############################################################################
- #############################################################################
- config.oidc.metadata.issuer=http://${config.server.name}/maxkey
- config.oidc.metadata.authorizationEndpoint=http://${config.server.name}/maxkey/oauth/v20/authorize
- config.oidc.metadata.tokenEndpoint=http://${config.server.name}/maxkey/oauth/v20/token
- config.oidc.metadata.userinfoEndpoint=http://${config.server.name}/maxkey/api/connect/userinfo
- #############################################################################
- ############################################################################
- # Social Sign On Configuration #
- #you config client.id & client.secret only
- ############################################################################
- ############################################################################
- #sina weibo
- config.socialsignon.sinaweibo.provider=sinaweibo
- config.socialsignon.sinaweibo.provider.name=\u65B0\u6D6A\u5FAE\u535A
- config.socialsignon.sinaweibo.icon=images/social/sinaweibo.png
- config.socialsignon.sinaweibo.client.id=3379757634
- config.socialsignon.sinaweibo.client.secret=1adfdf9800299037bcab9d1c238664ba
- config.socialsignon.sinaweibo.account.id=id
- config.socialsignon.sinaweibo.sortorder=1
- #Google
- config.socialsignon.google.provider=google
- config.socialsignon.google.provider.name=Google
- config.socialsignon.google.icon=images/social/google.png
- config.socialsignon.google.client.id=519914515488.apps.googleusercontent.com
- config.socialsignon.google.client.secret=3aTW3Iw7e11QqMnHxciCaXTt
- config.socialsignon.google.account.id=id
- config.socialsignon.google.sortorder=2
- #QQ
- config.socialsignon.qq.provider=qq
- config.socialsignon.qq.provider.name=QQ
- config.socialsignon.qq.icon=images/social/qq.png
- config.socialsignon.qq.client.id=101224990
- config.socialsignon.qq.client.secret=09d7481b68d888f01831e3ef7c1c3015
- config.socialsignon.qq.account.id=openid
- config.socialsignon.qq.sortorder=4
- #dingtalk
- config.socialsignon.dingtalk.provider=dingtalk
- config.socialsignon.dingtalk.provider.name=dingtalk
- config.socialsignon.dingtalk.icon=images/social/dingtalk.png
- config.socialsignon.dingtalk.client.id=dingoawf2jyiwh2uzqnphg
- config.socialsignon.dingtalk.client.secret=Crm7YJbMKfRlvG2i1SHpg4GHVpqF_oXiEjhmRQyiSiuzNRWpbFh9i0UjDTfhOoN9
- config.socialsignon.dingtalk.account.id=openid
- config.socialsignon.dingtalk.sortorder=4
- #Microsoft
- config.socialsignon.microsoft.provider=microsoft
- config.socialsignon.microsoft.provider.name=Microsoft
- config.socialsignon.microsoft.icon=images/social/live.png
- config.socialsignon.microsoft.client.id=24aa73b6-7928-4e64-bd64-d8682e650f95
- config.socialsignon.microsoft.client.secret=PF[_AthtjVrtWVO2mNy@CJxY1@Z8FNf5
- config.socialsignon.microsoft.account.id=id
- config.socialsignon.microsoft.sortorder=5
- #facebook
- config.socialsignon.facebook.provider=facebook
- config.socialsignon.facebook.provider.name=facebook
- config.socialsignon.facebook.icon=images/social/facebook.png
- config.socialsignon.facebook.client.id=appKey
- config.socialsignon.facebook.client.secret=appSecret
- config.socialsignon.facebook.account.id=id
- config.socialsignon.facebook.sortorder=7
|
