nevis
/
adn-post-iam-tknxchng-inv
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
adn-post-iam-tknxchng-inv/DEFAULT-ADN-POST-IAM-TKNXCH.../DEFAULT-ADN-POST-IAM-TKNXCH.../nai2/var/opt/nevisauth/default/conf/esauth4.xml

152 lines
9.8 KiB
XML
Raw Permalink Blame History

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE esauth-server SYSTEM "/opt/nevisauth/dtd/esauth4.dtd">
<esauth-server instance="nai2">
<!-- source: pattern://5a02ce1399ca42298422a320, pattern://8523f0587aa8cfa7008f8171 -->
<SessionCoordinator sessionInitialInactivityTimeout="600" sessionInactivityTimeout="28800" sessionMaxLifetime="28800" sessionIdPreGenerate="true">
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<LocalSessionStore maxSessions="100000"/>
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<TokenAssembler name="DefaultTokenAssembler">
<Selector default="true"/>
<!-- source: pattern://8523f0587aa8cfa7008f8171 -->
<TokenSpec ttl="28800">
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<field src="session" key="ch.nevis.session.sessid" as="sessid"/>
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<field src="session" key="ch.nevis.session.userid" as="userid"/>
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<field src="session" key="ch.nevis.session.authlevel" as="authLevel"/>
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<field src="session" key="ch.nevis.session.esauthid" as="esauthid"/>
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<field src="session" key="ch.nevis.session.entryid" as="entryid"/>
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<field src="session" key="ch.nevis.session.loginid" as="loginId"/>
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<field src="session" key="ch.nevis.session.domain" as="domain"/>
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<field src="session" key="ch.nevis.session.secroles" as="roles"/>
</TokenSpec>
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<Signer key="DefaultSigner"/>
</TokenAssembler>
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<KeyStore name="DefaultKeyStore">
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<KeyObject name="DefaultSigner" certificate="/var/opt/keys/own/nai2-sh4r3d-default-default-signer/cert.pem" privateKey="/var/opt/keys/own/nai2-sh4r3d-default-default-signer/keystore.jks" passPhrase="pipe:///var/opt/keys/own/nai2-sh4r3d-default-default-signer/keypass"/>
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<KeyObject name="DefaultSignerTrust" certificate="/var/opt/keys/trust/nai2-default-default-signer-trust/truststore.jks"/>
</KeyStore>
</SessionCoordinator>
<!-- source: pattern://5a02ce1399ca42298422a320 -->
<LocalOutOfContextDataStore reaperPeriod="60"/>
<!-- source: pattern://5a02ce1399ca42298422a320, pattern://8523f0587aa8cfa7008f8171 -->
<AuthEngine useLiteralDictionary="true" literalDictionaryLanguages="en,de,fr,it" inputLanguageCookie="LANG" compatLevel="none" addAutheLevelToSecRoles="true" classPath="/var/opt/nevisauth/default/plugin:/opt/nevisauth/plugin" propagateSession="false">
<!-- source: pattern://8523f0587aa8cfa7008f8171 -->
<Domain name="MockRelam" default="false" inactiveInterval="7200" reauthInterval="0" resetAuthenticationCondition="${inargs:cancel}">
<Entry method="authenticate" state="MockRelam_DispatchMockRequests"/>
<Entry method="stepup" state="MockRelam_Selector"/>
</Domain>
<AuthState name="MockRelam_DispatchMockRequests" class="ch.nevis.esauth.auth.states.standard.ConditionalDispatcherState" final="false">
<!-- source: pattern://1641a38402138546573b7e71 -->
<ResultCond name="jwk" next="MockRelam_jwkMock"/>
<!-- source: pattern://1641a38402138546573b7e71 -->
<ResultCond name="metadata" next="MockRelam_MetadataMock"/>
<!-- source: pattern://1641a38402138546573b7e71 -->
<ResultCond name="nomatch" next="MockRelam_KlpApiMock"/>
<!-- source: pattern://1641a38402138546573b7e71 -->
<ResultCond name="wellknown" next="MockRelam_wellKownMock"/>
<!-- source: pattern://1641a38402138546573b7e71 -->
<Response value="AUTH_ERROR">
<!-- source: pattern://1641a38402138546573b7e71 -->
<Arg name="ch.nevis.isiweb4.response.status" value="403"/>
</Response>
<!-- source: pattern://1641a38402138546573b7e71 -->
<property name="condition:jwk" value="${request:currentResource:/jwk:true}"/>
<!-- source: pattern://1641a38402138546573b7e71 -->
<property name="condition:metadata" value="${request:currentResource:/metadata:true}"/>
<!-- source: pattern://1641a38402138546573b7e71 -->
<property name="condition:wellknown" value="${request:currentResource:/.well-known:true}"/>
</AuthState>
<AuthState name="MockRelam_jwkMock" class="ch.nevis.esauth.auth.states.directResponse.DirectResponseState" final="true" resumeState="false">
<!-- source: pattern://02267b7a9895eef024fd806b -->
<Response value="AUTH_ERROR">
<!-- source: pattern://02267b7a9895eef024fd806b -->
<Gui name="none"/>
</Response>
<!-- source: pattern://02267b7a9895eef024fd806b -->
<property name="content" value="file:///var/opt/nevisauth/default/conf/mockrelam_jwkmock.json"/>
<!-- source: pattern://02267b7a9895eef024fd806b -->
<property name="contentType" value="application/json"/>
<!-- source: pattern://02267b7a9895eef024fd806b -->
<property name="statusCode" value="200"/>
</AuthState>
<AuthState name="MockRelam_MetadataMock" class="ch.nevis.esauth.auth.states.directResponse.DirectResponseState" final="true" resumeState="false">
<!-- source: pattern://0600a4bbdea68c3aaa2fd10f -->
<Response value="AUTH_ERROR">
<!-- source: pattern://0600a4bbdea68c3aaa2fd10f -->
<Gui name="none"/>
</Response>
<!-- source: pattern://0600a4bbdea68c3aaa2fd10f -->
<property name="content" value="file:///var/opt/nevisauth/default/conf/mockrelam_metadatamock.json"/>
<!-- source: pattern://0600a4bbdea68c3aaa2fd10f -->
<property name="contentType" value="application/json"/>
<!-- source: pattern://0600a4bbdea68c3aaa2fd10f -->
<property name="statusCode" value="200"/>
</AuthState>
<AuthState name="MockRelam_KlpApiMock" class="ch.nevis.esauth.auth.states.directResponse.DirectResponseState" final="true" resumeState="false">
<!-- source: pattern://3f7b857b6d35114fcd8c4984 -->
<Response value="AUTH_ERROR">
<!-- source: pattern://3f7b857b6d35114fcd8c4984 -->
<Gui name="none"/>
</Response>
<!-- source: pattern://3f7b857b6d35114fcd8c4984 -->
<property name="content" value="file:///var/opt/nevisauth/default/conf/mockrelam_klpapimock.json"/>
<!-- source: pattern://3f7b857b6d35114fcd8c4984 -->
<property name="contentType" value="application/json"/>
<!-- source: pattern://3f7b857b6d35114fcd8c4984 -->
<property name="statusCode" value="200"/>
</AuthState>
<AuthState name="MockRelam_wellKownMock" class="ch.nevis.esauth.auth.states.directResponse.DirectResponseState" final="true" resumeState="false">
<!-- source: pattern://1a11a59ad08eccffa1addc6a -->
<Response value="AUTH_ERROR">
<!-- source: pattern://1a11a59ad08eccffa1addc6a -->
<Gui name="none"/>
</Response>
<!-- source: pattern://1a11a59ad08eccffa1addc6a -->
<property name="content" value="file:///var/opt/nevisauth/default/conf/mockrelam_wellkownmock.json"/>
<!-- source: pattern://1a11a59ad08eccffa1addc6a -->
<property name="contentType" value="application/json"/>
<!-- source: pattern://1a11a59ad08eccffa1addc6a -->
<property name="statusCode" value="200"/>
</AuthState>
<AuthState name="MockRelam_Selector" class="ch.nevis.esauth.auth.states.standard.ConditionalDispatcherState" final="false">
<!-- source: pattern://8523f0587aa8cfa7008f8171 -->
<ResultCond name="nomatch" next="MockRelam_Prepare_Done"/>
<!-- source: pattern://8523f0587aa8cfa7008f8171 -->
<Response value="AUTH_ERROR">
<!-- source: pattern://8523f0587aa8cfa7008f8171 -->
<Arg name="ch.nevis.isiweb4.response.status" value="403"/>
</Response>
</AuthState>
<AuthState name="MockRelam_Prepare_Done" class="ch.nevis.esauth.auth.states.scripting.ScriptState" final="false">
<!-- source: pattern://8523f0587aa8cfa7008f8171 -->
<ResultCond name="default" next="MockRelam_Auth_Done"/>
<!-- source: pattern://8523f0587aa8cfa7008f8171 -->
<Response value="AUTH_DONE">
<!-- source: pattern://8523f0587aa8cfa7008f8171 -->
<Gui name="ContinueResponse"/>
</Response>
<!-- source: pattern://8523f0587aa8cfa7008f8171 -->
<property name="script" value="file:///var/opt/nevisauth/default/conf/prepare_done.groovy"/>
</AuthState>
<AuthState name="MockRelam_Auth_Done" class="ch.nevis.esauth.auth.states.standard.AuthDone" final="false">
<!-- source: pattern://8523f0587aa8cfa7008f8171 -->
<Response value="AUTH_DONE">
<!-- source: pattern://8523f0587aa8cfa7008f8171 -->
<Gui name="ContinueResponse"/>
</Response>
</AuthState>
</AuthEngine>
</esauth-server>
Reference in New Issue View Git Blame Copy Permalink