989 lines
34 KiB
YAML
989 lines
34 KiB
YAML
schemaVersion: "1.0"
|
|
variables:
|
|
agov_dev_idm-db-management:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
options:
|
|
- "complete"
|
|
- "schema"
|
|
- "disabled"
|
|
value: "complete"
|
|
requireOverloading: true
|
|
agov_dev_idm_db-db-management:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
options:
|
|
- "complete"
|
|
- "schema"
|
|
- "disabled"
|
|
value: "disabled"
|
|
requireOverloading: true
|
|
auth-session-store-database-host:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.HostPortProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 2
|
|
portRequired: false
|
|
value: "mariadb-agov-dev.mariadb.database.azure.com:3306"
|
|
requireOverloading: true
|
|
auth-session-store-database-management:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
options:
|
|
- "complete"
|
|
- "schema"
|
|
- "disabled"
|
|
- "recommended"
|
|
value: "complete"
|
|
requireOverloading: true
|
|
auth-session-store-database-name:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
value: "nevisauth"
|
|
requireOverloading: true
|
|
auth-session-store-database-password:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
secret: true
|
|
value: "sample password"
|
|
requireOverloading: true
|
|
auth-session-store-database-user:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "adndbadmin"
|
|
requireOverloading: true
|
|
auth-session-store-root-credential:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "root-adn-agov-nevisidm-01-dev-idm"
|
|
requireOverloading: true
|
|
auth-session-store-root-credential-namespace:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "adn-agov-nevisidm-01-dev-idm"
|
|
requireOverloading: true
|
|
auth-session-store-schema-user:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "nevisauth"
|
|
requireOverloading: true
|
|
auth_realm_main_idp-language-cookie-domain:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: ".agov-d.azure.adnovum.net"
|
|
requireOverloading: true
|
|
auth_realm_main_sts_parameters:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.TextProperty"
|
|
parameters:
|
|
required: false
|
|
syntax: "YAML"
|
|
value: "cert.source: \"#{request:actorCertAsString}\"\ntechuser.client.name: Default\n\
|
|
accounts.client.name: agov\nshadow-accounts.client.name: AGOV-S\nsaml.assertion.audience:\
|
|
\ \"https://me.agov-d.azure.adnovum.net/account/api/saml2/service-provider-metadata/agovidpdirect\"\
|
|
\nsaml.assertion.acsurl: \"https://me.agov-d.azure.adnovum.net/login/saml2/sso/agovidp\"\
|
|
\nsaml.assertion.max_age: 30"
|
|
requireOverloading: true
|
|
auth_soap-backend-addresses:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.URLProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
schemeInputMode: "OPTIONAL"
|
|
allowedSchemes: "http,https"
|
|
hostNameInputMode: "REQUIRED"
|
|
portInputMode: "OPTIONAL"
|
|
pathInputMode: "OPTIONAL"
|
|
value: "https://auth:8991/nevisauth/services/"
|
|
requireOverloading: true
|
|
authentication-parameters:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.TextProperty"
|
|
parameters:
|
|
required: false
|
|
syntax: "YAML"
|
|
value: "fido2.serviceAndPort: fido2:9443\nrpId: auth.agov.admin.ch"
|
|
requireOverloading: true
|
|
backendAppIconUrl:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.URLProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
schemeInputMode: "OPTIONAL"
|
|
allowedSchemes: "http,https"
|
|
hostNameInputMode: "REQUIRED"
|
|
portInputMode: "OPTIONAL"
|
|
pathInputMode: "OPTIONAL"
|
|
value: "http://connect-application-billing.adn-agov-connect-01-dev:8082/connect/billing/relying-party/app-icon"
|
|
requireOverloading: true
|
|
ensure_recovery_code-parameters:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.TextProperty"
|
|
parameters:
|
|
required: false
|
|
syntax: "YAML"
|
|
value: "utility-service.baseUrl: http://me-application-me-be.adn-agov-me-01-dev:8081/utility\n\
|
|
cookie.domain: auth.agov-d.azure.adnovum.net\ntoken.algorithm: RS512\ntoken.time_to_live:\
|
|
\ 600\ntoken.keystoreref: DefaultKeyStore\ntoken.keyobjectref: DefaultSigner"
|
|
requireOverloading: true
|
|
env_ca-trusted-certificates:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.AttachmentProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
secretPreserving: true
|
|
value: null
|
|
requireOverloading: true
|
|
extid_user_verify-template-parameters:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.TextProperty"
|
|
parameters:
|
|
required: false
|
|
syntax: "YAML"
|
|
value: "client.name: agov\nattributes: loginId,extId,firstName,name,email\nproperties:\
|
|
\ eIdNumber,gender,placeOfBirth,svnr\nidm-service: idm\nagov.unitExtId: 1000\n\
|
|
agov.level100.roleExtid: aee52e9f-7084-4e55-9aea-9383ac7757f7"
|
|
requireOverloading: true
|
|
fido-session-store-database-host:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.HostPortProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 2
|
|
portRequired: false
|
|
value: "mariadb-agov-dev.mariadb.database.azure.com:3306"
|
|
requireOverloading: true
|
|
fido-session-store-database-management-fido2:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
options:
|
|
- "complete"
|
|
- "schema"
|
|
- "disabled"
|
|
- "recommended"
|
|
value: "recommended"
|
|
requireOverloading: true
|
|
fido-session-store-database-management-uaf:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
options:
|
|
- "complete"
|
|
- "schema"
|
|
- "disabled"
|
|
- "recommended"
|
|
value: "recommended"
|
|
requireOverloading: true
|
|
fido-session-store-database-name-fido2:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
value: "nevisfido_fido2"
|
|
requireOverloading: true
|
|
fido-session-store-database-name-uaf:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
value: "nevisfido_uaf"
|
|
requireOverloading: true
|
|
fido-session-store-database-password:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
secret: true
|
|
value: "sample password"
|
|
requireOverloading: true
|
|
fido-session-store-database-user:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "adndbadmin"
|
|
requireOverloading: true
|
|
fido-session-store-root-credential:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "root-adn-agov-nevisidm-01-dev-idm"
|
|
requireOverloading: true
|
|
fido-session-store-root-credential-namespace:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "adn-agov-nevisidm-01-dev-idm"
|
|
requireOverloading: true
|
|
fido-uaf-out-of-band-timeout:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.DurationProperty"
|
|
parameters:
|
|
required: true
|
|
value: "60"
|
|
requireOverloading: true
|
|
fido2-relying-party-id:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.HostProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
value: "adnovum.net"
|
|
requireOverloading: true
|
|
fido_uaf_extended_frontent_truststore-fw_proxy_ca_cert:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.AttachmentProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
value: null
|
|
requireOverloading: true
|
|
fido_uaf_instance-client-id:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
value: "agov"
|
|
requireOverloading: true
|
|
fido_uaf_instance-custom-uri-link:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "agovaccess-t://x-callback-url/authenticate"
|
|
requireOverloading: true
|
|
fido_uaf_instance-facets:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
value:
|
|
- "android:apk-key-hash:kb0yJ345nFUmt4nOYK5Li7KvwDDobMKPosY48Uwb0QI"
|
|
- "ios:bundle-id:ch.agov.accessapp.t"
|
|
requireOverloading: true
|
|
fido_uaf_instance-firebase-configuration:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.AttachmentProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
secret: true
|
|
value: null
|
|
requireOverloading: true
|
|
fido_uaf_instance-firebase-proxy-url:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.URLProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
schemeInputMode: "REQUIRED"
|
|
allowedSchemes: "http https"
|
|
hostNameInputMode: "REQUIRED"
|
|
portInputMode: "OPTIONAL"
|
|
pathInputMode: "NONE"
|
|
value: null
|
|
requireOverloading: true
|
|
idm-standard-settings:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.KeyValueProperty"
|
|
parameters:
|
|
separators:
|
|
- "="
|
|
switchedSeparators: []
|
|
valueFormat: ".*"
|
|
value:
|
|
- application.feature.multiclientmode.enabled: "true"
|
|
- application.modules.auditing.enabled: "true"
|
|
- application.feature.email.validation.enabled: "false"
|
|
- application.generators.extid.client: "uuid"
|
|
- application.generators.extid.user: "uuid"
|
|
- application.generators.extid.profile: "uuid"
|
|
- application.generators.extid.unit: "uuid"
|
|
- application.generators.extid.credential: "uuid"
|
|
- application.generators.extid.application: "uuid"
|
|
- application.generators.extid.role: "uuid"
|
|
- application.generators.extid.policyconfig: "uuid"
|
|
- application.generators.extid.template: "uuid"
|
|
- application.generators.extid.enterpriserole: "uuid"
|
|
- application.generators.extid.authorization: "uuid"
|
|
- application.modules.event.repeat.count: "0"
|
|
- application.modules.event.autostartup.enabled: "false"
|
|
- application.modules.auditing.autostartup.enabled: "false"
|
|
- application.modules.auditing.repeat.count: "0"
|
|
- application.modules.provisioning.enabled: "false"
|
|
- database.connection.xa.enabled: "false"
|
|
- database.connection.pool.size.min: "5"
|
|
- database.connection.pool.size.max: "10"
|
|
requireOverloading: true
|
|
idm_db-database-connection-url:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: null
|
|
requireOverloading: true
|
|
idm_db-database-host:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.HostPortProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 2
|
|
portRequired: false
|
|
value: "mariadb-agov-dev.mariadb.database.azure.com:3306"
|
|
requireOverloading: true
|
|
idm_db-database-jdbc-driver:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.AttachmentProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
allowedFileName: ".*\\.jar"
|
|
value: null
|
|
requireOverloading: true
|
|
idm_db-database-name:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
value: "nevisidm_dev"
|
|
requireOverloading: true
|
|
idm_db-database-password:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
secret: true
|
|
value: "sample password"
|
|
requireOverloading: true
|
|
idm_db-database-type:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
options:
|
|
- "MariaDB"
|
|
- "Oracle"
|
|
- "PostgreSQL"
|
|
value: "Oracle"
|
|
requireOverloading: true
|
|
idm_db-database-user:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "adndbadmin"
|
|
requireOverloading: true
|
|
idm_db-database-volume-claim:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: null
|
|
requireOverloading: true
|
|
idm_db-root-credential:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "root-adn-agov-nevisidm-01-dev-idm"
|
|
requireOverloading: true
|
|
idm_db-root-credential-namespace:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "adn-agov-nevisidm-01-dev-idm"
|
|
requireOverloading: true
|
|
idm_db-tls-encryption:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
options:
|
|
- "disabled"
|
|
- "trust"
|
|
- "verify-ca"
|
|
- "verify-full"
|
|
value: "trust"
|
|
requireOverloading: true
|
|
idm_db_tls_truststore-trusted-certificates:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.AttachmentProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
secretPreserving: true
|
|
value: null
|
|
requireOverloading: true
|
|
idm_post_processing-template-parameters:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.TextProperty"
|
|
parameters:
|
|
required: false
|
|
syntax: "YAML"
|
|
value: "attributes: loginId,extId,firstName,name,email"
|
|
requireOverloading: true
|
|
idm_x509_state-template-parameters:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.TextProperty"
|
|
parameters:
|
|
required: false
|
|
syntax: "YAML"
|
|
value: "client.name: Default"
|
|
requireOverloading: true
|
|
idp-authentication-session-timeout:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.DurationProperty"
|
|
parameters:
|
|
min: "5s"
|
|
max: "1h"
|
|
required: true
|
|
value: "2m"
|
|
requireOverloading: true
|
|
idp-cors-filter-template-parameters:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.TextProperty"
|
|
parameters:
|
|
required: false
|
|
syntax: "YAML"
|
|
value: "cors.allowed.fqdns: '{\"trustbroker.agov-d.azure.adnovum.net\", \"auth.agov-d.azure.adnovum.net\"\
|
|
}'"
|
|
requireOverloading: true
|
|
idp-idm-sectoken-signer-trust-additional-trusted-certificates:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.AttachmentProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
value: null
|
|
requireOverloading: true
|
|
idp-sp-connector-properties:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.AuthStateProperty"
|
|
parameters:
|
|
separators:
|
|
- "->"
|
|
- "="
|
|
switchedSeparators: []
|
|
problematicSeparator: "->"
|
|
value:
|
|
- out.authnContextClassRef: "${sess:contextClassRefToSet}"
|
|
requireOverloading: true
|
|
idp_agov-saml-issuer:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
format: "^[^\\s,]*$"
|
|
value: "https://idp.agov-d.azure.adnovum.net/SAML2/"
|
|
requireOverloading: true
|
|
idp_domain_settings:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.TextProperty"
|
|
parameters:
|
|
required: false
|
|
syntax: "YAML"
|
|
value: "cookie.domain: auth.agov-d.azure.adnovum.net"
|
|
requireOverloading: true
|
|
idp_pem_atb-trusted-certificates:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.AttachmentProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
secretPreserving: true
|
|
value: null
|
|
requireOverloading: true
|
|
idp_pem_signer-key-store-content:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.AttachmentProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
secretPreserving: true
|
|
value: null
|
|
requireOverloading: true
|
|
idp_sp_connector-sp-issuer:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
format: "^[^\\s,]*$"
|
|
value: "https://trustbroker.agov-d.azure.adnovum.net"
|
|
requireOverloading: true
|
|
idp_sp_connector-sp-url---assertion-consumer-services:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.URLProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
schemeInputMode: "OPTIONAL"
|
|
allowedSchemes: "http,https"
|
|
hostNameInputMode: "OPTIONAL"
|
|
portInputMode: "OPTIONAL"
|
|
pathInputMode: "OPTIONAL"
|
|
queryInputMode: "OPTIONAL"
|
|
value: "https://trustbroker.agov-d.azure.adnovum.net/adfs/ls"
|
|
requireOverloading: true
|
|
log_auth-default-log-level:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
options:
|
|
- "ERROR"
|
|
- "WARN"
|
|
- "INFO"
|
|
- "DEBUG"
|
|
- "TRACE"
|
|
value: "INFO"
|
|
requireOverloading: true
|
|
log_auth-log-levels:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.KeyValueProperty"
|
|
parameters:
|
|
separators:
|
|
- "="
|
|
switchedSeparators: []
|
|
value: []
|
|
requireOverloading: true
|
|
log_fido2-default-log-level:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
options:
|
|
- "ERROR"
|
|
- "WARN"
|
|
- "INFO"
|
|
- "DEBUG"
|
|
- "TRACE"
|
|
value: "DEBUG"
|
|
requireOverloading: true
|
|
log_fido2-log-levels:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.KeyValueProperty"
|
|
parameters:
|
|
separators:
|
|
- "="
|
|
switchedSeparators: []
|
|
value: null
|
|
requireOverloading: true
|
|
log_fido_uaf-default-log-level:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
options:
|
|
- "ERROR"
|
|
- "WARN"
|
|
- "INFO"
|
|
- "DEBUG"
|
|
- "TRACE"
|
|
value: "INFO"
|
|
requireOverloading: true
|
|
log_fido_uaf-log-levels:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.KeyValueProperty"
|
|
parameters:
|
|
separators:
|
|
- "="
|
|
switchedSeparators: []
|
|
value:
|
|
- OpTrace: "DEBUG"
|
|
requireOverloading: true
|
|
log_idm-default-log-level:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
options:
|
|
- "ERROR"
|
|
- "WARN"
|
|
- "INFO"
|
|
- "DEBUG"
|
|
- "TRACE"
|
|
value: "INFO"
|
|
requireOverloading: true
|
|
log_idm-log-levels:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.KeyValueProperty"
|
|
parameters:
|
|
separators:
|
|
- "="
|
|
switchedSeparators: []
|
|
value: null
|
|
requireOverloading: true
|
|
log_proxy-default-log-level:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
options:
|
|
- "ERROR"
|
|
- "NOTICE"
|
|
- "INFO"
|
|
- "DEBUG"
|
|
- "DEBUG_HIGH"
|
|
- "TRACE"
|
|
value: "DEBUG"
|
|
requireOverloading: true
|
|
log_proxy-log-levels:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.KeyValueProperty"
|
|
parameters:
|
|
separators:
|
|
- "="
|
|
- ":"
|
|
switchedSeparators: []
|
|
value: null
|
|
requireOverloading: true
|
|
nevisfido2-relying-party-id:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.HostProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
value: "agov-d.azure.adnovum.net"
|
|
requireOverloading: true
|
|
nevisfido2-relying-party-name:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
value: "AGOV-RelPartName"
|
|
requireOverloading: true
|
|
nevisfido2-relying-party-origins:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.URLProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
portInputMode: "OPTIONAL"
|
|
hostNameInputMode: "REQUIRED"
|
|
schemeInputMode: "REQUIRED"
|
|
pathInputMode: "NONE"
|
|
allowedSchemes: "http,https"
|
|
value: "https://me.agov-d.azure.adnovum.net"
|
|
requireOverloading: true
|
|
nevisfido_uaf_java_env-settings-java-opts:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
value: null
|
|
requireOverloading: true
|
|
nevisidm-custom-property-svnr-client-external-id:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "cfa9c9b9-119f-4dff-9bb8-86d7c0cf2720"
|
|
requireOverloading: true
|
|
nevisidm-database-root-credential:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "username: <root-user> password: <root-password>"
|
|
requireOverloading: true
|
|
nevisidm-encryption-key:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
secret: true
|
|
value: "this a sample password"
|
|
requireOverloading: true
|
|
nevisidm-mail-sender:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
format: "^\\S+@\\S+$"
|
|
value: "noreply-agov-dev@adnovum.ch"
|
|
requireOverloading: true
|
|
nevisidm-smtp-host:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "greenmail.adn-agov-mail-01-dev.svc"
|
|
requireOverloading: true
|
|
nevisidm-smtp-password:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: null
|
|
requireOverloading: true
|
|
nevisidm-smtp-port:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.PortProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "3025"
|
|
requireOverloading: true
|
|
nevisidm-smtp-ssltls-mode:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
options:
|
|
- "disabled"
|
|
- "STARTTLS"
|
|
value: "disabled"
|
|
requireOverloading: true
|
|
nevisidm-smtp-user:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: null
|
|
requireOverloading: true
|
|
nevislogrend-configuration-logrendproperties:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.KeyValueProperty"
|
|
parameters: {}
|
|
value:
|
|
- cache.revalidate.delay: "-1"
|
|
requireOverloading: true
|
|
new-nevisfido-uaf-instance-frontend-address:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.URLProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
schemeInputMode: "REQUIRED"
|
|
allowedSchemes: "http,https"
|
|
hostNameInputMode: "REQUIRED"
|
|
portInputMode: "OPTIONAL"
|
|
pathInputMode: "OPTIONAL"
|
|
value: "https://nevisidm.agov-d.azure.adnovum.net"
|
|
requireOverloading: true
|
|
observabilitysettings:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.KeyValueProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
value:
|
|
- connectionString: "InstrumentationKey=00000000-0000-0000-0000-000000000000"
|
|
- tracesEndpoint: "http://otel-otel-collector.adn-agov-monitoring-01-dev:4318/v1/traces"
|
|
- metricsEndpoint: "http://otel-otel-collector.adn-agov-monitoring-01-dev:4318/v1/metrics"
|
|
- logsEndpoint: "http://otel-otel-collector.adn-agov-monitoring-01-dev:4318/v1/logs"
|
|
requireOverloading: true
|
|
proxy-session-store-database-host:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.HostPortProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 2
|
|
portRequired: false
|
|
value: "mariadb-agov-dev.mariadb.database.azure.com:3306"
|
|
requireOverloading: true
|
|
proxy-session-store-database-management:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
options:
|
|
- "complete"
|
|
- "schema"
|
|
- "disabled"
|
|
- "recommended"
|
|
value: "disabled"
|
|
requireOverloading: true
|
|
proxy-session-store-database-name:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
value: "idp_replicated_session_store"
|
|
requireOverloading: true
|
|
proxy-session-store-database-password:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
secret: true
|
|
value: "sample password"
|
|
requireOverloading: true
|
|
proxy-session-store-database-user:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "adndbadmin"
|
|
requireOverloading: true
|
|
proxy-session-store-root-credential:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "root-adn-agov-nevisidm-01-dev-idm"
|
|
requireOverloading: true
|
|
proxy-session-store-root-credential-namespace:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
value: "adn-agov-nevisidm-01-dev-idm"
|
|
requireOverloading: true
|
|
proxyobservabilitysettings-metricsEndpoint:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.URLProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
schemeInputMode: "NONE"
|
|
hostNameInputMode: "REQUIRED"
|
|
portInputMode: "REQUIRED"
|
|
pathInputMode: "NONE"
|
|
value: "otel-otel-collector.adn-agov-monitoring-01-dev:4318"
|
|
requireOverloading: true
|
|
proxyobservabilitysettings-tracesEndpoint:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.URLProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
schemeInputMode: "NONE"
|
|
hostNameInputMode: "REQUIRED"
|
|
portInputMode: "REQUIRED"
|
|
pathInputMode: "NONE"
|
|
value: "otel-otel-collector.adn-agov-monitoring-01-dev:4318"
|
|
requireOverloading: true
|
|
recovery-pdf-script-parameters:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.KeyValueProperty"
|
|
parameters:
|
|
separators:
|
|
- "="
|
|
switchedSeparators: []
|
|
value:
|
|
- param_auth_signer_key: "keyvalue<br>anotherline"
|
|
requireOverloading: true
|
|
recovery_pdf_generation-backend-address:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.URLProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
schemeInputMode: "OPTIONAL"
|
|
allowedSchemes: "http,https"
|
|
hostNameInputMode: "REQUIRED"
|
|
portInputMode: "OPTIONAL"
|
|
pathInputMode: "OPTIONAL"
|
|
value: "http://me-application-me-be.adn-agov-me-01-dev:8081/utility/api/v1/recovery/pdf"
|
|
requireOverloading: true
|
|
request-validation-settings-modsecurity-log-only-mode:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
maxAllowed: 1
|
|
options:
|
|
- "enabled"
|
|
- "disabled"
|
|
value: "enabled"
|
|
requireOverloading: true
|
|
request-validation-settings-modsecurity-paranoia-level:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SelectionProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
options:
|
|
- "1"
|
|
- "2"
|
|
- "3"
|
|
- "4"
|
|
value: "3"
|
|
requireOverloading: true
|
|
requestedrolelevel-script-parameters:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.KeyValueProperty"
|
|
parameters:
|
|
separators:
|
|
- ":"
|
|
- "="
|
|
switchedSeparators: []
|
|
value:
|
|
- ? ""
|
|
: ""
|
|
requireOverloading: true
|
|
saml-idp-signer-pem-key-store-private-key-passphrase:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.SimpleTextProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
maxAllowed: 1
|
|
secret: true
|
|
value: "sample password"
|
|
requireOverloading: true
|
|
security-response-headers-response-headers:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.KeyValueProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
separators:
|
|
- ":"
|
|
switchedSeparators: []
|
|
value:
|
|
- Strict-Transport-Security: "max-age=63072000; includeSubDomains;"
|
|
- X-Content-Type-Options: "nosniff"
|
|
- Referrer-Policy: "strict-origin-when-cross-origin"
|
|
- X-Frame-Options: "DENY"
|
|
- Cross-Origin-Opener-Policy: "same-origin"
|
|
- Cross-Origin-Embedder-Policy: "require-corp"
|
|
- Cross-Origin-Resource-Policy: "same-site"
|
|
- Permissions-Policy: "geolocation=(), camera=(), microphone=(), interest-cohort=()"
|
|
- Content-Security-Policy-Report-Only: "default-src 'none'; script-src 'self'\
|
|
\ 'sha256-YPbtYpCQA51uSiLa2ux1TkGQoRDNbpdlYd50ospNgYw=' 'sha256-YPbtYpCQA51uSiLa2ux1TkGQoRDNbpdlYd50ospNgYw='\
|
|
\ 'sha256-uOoE0nq21NJDv37YLUOxV9aCnNstJ0GK7BiXNMXQAcI='; connect-src 'self';\
|
|
\ img-src 'self'; style-src 'self' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU='\
|
|
\ 'sha256-MdFWcEIx4V82/ap9SUt01BxZMN4eFGEl8hNDFEGIzJU=' 'sha256-ifPclQYYwRDXSPQgB9/6UgAgEICBpwegJBWNhOI8dOA='\
|
|
\ 'sha256-2diQqrANllVP9IWjXj1A6fjjvlPtpN6NXlmTiRJneCU=' 'sha256-JhfXJ5URuB/EAqhZ9vqgEO6trOuCE0w2/ChmfrVzxFo=';\
|
|
\ form-action 'self' https://trustbroker.agov-d.azure.adnovum.net/adfs/ls;\
|
|
\ font-src 'self'; "
|
|
requireOverloading: true
|
|
service_provider_state-registration-template-parameters:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.TextProperty"
|
|
parameters:
|
|
required: false
|
|
syntax: "YAML"
|
|
value: "issuer: https://auth.agov-d.azure.adnovum.net/SAML2/\ndirectAudience:\
|
|
\ https://me.agov-d.azure.adnovum.net/registration/api/saml2/service-provider-metadata/agovidpdirect\n\
|
|
agovmedirecturl: https://me.agov-d.azure.adnovum.net/registration/api/login/saml2/sso/agovidpdirect\n\
|
|
consumerURL: https://me.agov-d.azure.adnovum.net/login/saml2/sso/agovidp\nassertionValidityTime:\
|
|
\ 20 "
|
|
requireOverloading: true
|
|
service_provider_state-template-parameters:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.TextProperty"
|
|
parameters:
|
|
required: false
|
|
syntax: "YAML"
|
|
value: "issuer: https://me.agov-d.azure.adnovum.net/saml2/service-provider-metadata/agovidp\n\
|
|
agovmedirecturl: https://me.agov-d.azure.adnovum.net/account/api/login/saml2/sso/agovidpdirect\n\
|
|
directAudience: https://me.agov-d.azure.adnovum.net/account/api/saml2/service-provider-metadata/agovidpdirect\n\
|
|
consumerURL: https://me.agov-d.azure.adnovum.net/login/saml2/sso/agovidp\nassertionValidityTime:\
|
|
\ 20"
|
|
requireOverloading: true
|
|
sts_saml-template-parameters:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.TextProperty"
|
|
parameters:
|
|
required: false
|
|
syntax: "YAML"
|
|
value: "secToken.binary: true"
|
|
requireOverloading: true
|
|
sts_unametoken-template-parameters:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.TextProperty"
|
|
parameters:
|
|
required: false
|
|
syntax: "YAML"
|
|
value: "secToken.binary: true"
|
|
requireOverloading: true
|
|
technical_trust_store-additional-trusted-certificates:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.AttachmentProperty"
|
|
parameters:
|
|
minRequired: 0
|
|
value: null
|
|
requireOverloading: true
|
|
verify_shadow_user-parameters:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.TextProperty"
|
|
parameters:
|
|
required: false
|
|
syntax: "YAML"
|
|
value: "client.name: AGOV-S\nattributes: loginId,extId\n"
|
|
requireOverloading: true
|
|
virtual_host-frontend-addresses:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.URLProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
schemeInputMode: "REQUIRED"
|
|
allowedSchemes: "http,https"
|
|
hostNameInputMode: "REQUIRED"
|
|
portInputMode: "OPTIONAL"
|
|
pathInputMode: "OPTIONAL"
|
|
value: "https://nevisidm.agov-d.azure.adnovum.net"
|
|
requireOverloading: true
|
|
virtual_host_idp-frontend-addresses:
|
|
className: "ch.nevis.admin.v4.plugin.base.generation.property.URLProperty"
|
|
parameters:
|
|
minRequired: 1
|
|
schemeInputMode: "REQUIRED"
|
|
allowedSchemes: "http,https"
|
|
hostNameInputMode: "REQUIRED"
|
|
portInputMode: "OPTIONAL"
|
|
pathInputMode: "OPTIONAL"
|
|
value: "https://auth.agov-d.azure.adnovum.net"
|
|
requireOverloading: true
|