AMConfig.properties.template revision 2fe1e6ab330f5f88e97684012ff29cde7e61c9c4
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# Copyright (c) 2006 Sun Microsystems Inc. All Rights Reserved
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# The contents of this file are subject to the terms
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# of the Common Development and Distribution License
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# (the License). You may not use this file except in
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# compliance with the License.
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# You can obtain a copy of the License at
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# See the License for the specific language governing
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# permission and limitations under the License.
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# When distributing Covered Code, include this CDDL
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# Header Notice in each file and include the License file
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# If applicable, add the following below the CDDL Header,
148c5f43199ca0b43fc8e3b643aab11cd66ea327Alan Wright# with the fields enclosed by brackets [] replaced by
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# your own identifying information:
148c5f43199ca0b43fc8e3b643aab11cd66ea327Alan Wright# "Portions Copyrighted [year] [name of copyright owner]"
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# $Id: AMClient.properties,v 1.24 2009/08/12 17:43:03 beomsuk Exp $
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw# Portions Copyrighted 2010-2015 ForgeRock AS.
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw/* The following keys are used to configure the Debug service.
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw * Possible values for the key 'level' are: off | error | warning | message.
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw * The key 'directory' specifies the output directory where the debug files
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw * will be created.
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw * Trailing spaces are significant.
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw * Windows: Use forward slashes "/" separate directories, not backslash "\".
8d7e41661dc4633488e93b13363137523ce59977jose borrego * Windows: Spaces in the file name are allowed for Windows.
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.iplanet.services.debug.level=@DEBUG_LEVEL@
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.iplanet.services.debug.directory=@DEBUG_DIR@
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * Server mode should be 'false'
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * Cache enable / disable properties
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * Refresh time for appssotoken, value in minutes
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.iplanet.am.client.appssotoken.refreshtime=3
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * Logging status
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * SDK package name
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.iplanet.am.sdk.package=com.iplanet.am.sdk.remote
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * Configure remote plugin classes for configuration (SMS)
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.sun.identity.sm.sms_object_class_name=com.sun.identity.sm.jaxrpc.SMSJAXRPCObject
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * Notification URL
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintoshcom.sun.identity.client.notification.url=@NOTIFICATION_URL@
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * Security Credentails to read the configuration data
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintoshcom.sun.identity.agents.app.username=@APPLICATION_USER@
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintoshcom.iplanet.am.service.password=@APPLICATION_PASSWD@
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintoshcom.iplanet.am.service.secret=@ENCODED_APPLICATION_PASSWORD@
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * Encryption key that will be used to encrypt and decypt
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * data to communicate with the server.
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * This key is needed to decrypt passwords stored
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * in the SMS configuration.
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * Encryption key that will be used to encrypt and decypt
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * data used locally within the client.
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.sun.identity.client.encryptionKey=@ENCRYPTION_KEY_LOCAL@
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * Encryption: The key "com.iplanet.security.encryptor" specifies
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * the encrypting class implementation.
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * Available classes are:
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.iplanet.security.encryptor=com.iplanet.services.util.JCEEncryption
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * Property to enable/disable the notifications for am.sdk and IdRepo Caches.
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * If set to "true" notifications are enabled and disabled if set to "false".
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintoshcom.sun.identity.idm.remote.notification.enabled=false
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * Property to enable/disable the notifications for service management caches.
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * If set to "true" notifications are enabled and disabled if set to "false".
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintoshcom.sun.identity.sm.notification.enabled=false
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * Cache update time (in minutes) for am.sdk & IdRepo Caches
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * if notification URL is not provided or if notifications are disabled.
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * 1. This property is applicable only if
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * is not provided or if 'com.sun.identity.idm.remote.notification.enabled'
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * is set to 'false'.
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * 2. If the polling time is set as 0, then polling is disabled.
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * Cache update time (in minutes) for service configutation data,
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * if notification URL is not provided or if notifications are disabled.
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * 1. This property is applicable only if
fd9ee8b58485b20072eeef1310a88ff348d5e7fajoyce mcintosh * is not provided or if 'com.sun.identity.sm.notification.enabled' is
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * set to 'false'.
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * 2. If the cache time is set as 0, then no cache updates will occur.
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* The following are the properties to configure service management Cache for
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* TTL. If the property 'com.sun.identity.sm.cache.ttl.enable' is set to
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* true, the cache entries will expire based on the time specified in the
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* property "com.sun.identity.sm.cache.ttl" (in minutes).
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* The following are the properties to configure IdRepo cache for TTL.
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* If the property 'com.sun.identity.idm.cache.entry.expire.enabled' is set to
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* true, the cache entries will expire based on the time specified in the
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* properties below. The properties 'com.sun.identity.idm.cache.user.expire.time'
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* & 'com.sun.identity.idm.cache.default.expire.time' specify time in minutes
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* for which the user & non-user entries respectively remain valid after their
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross* last modification. In other words after this specified period of time
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross* elapses (after the last modification/read from the directory), the data
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* for the entry that is cached will expire. At that instant new requests for
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* data for these entries will result in reading it from the IdRepo plugins.
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.sun.identity.idm.cache.entry.expire.enabled=true
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.sun.identity.idm.cache.entry.user.expire.time=1
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.sun.identity.idm.cache.entry.default.expire.time=1
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* The following are the properties to configure AMSDK plugin Cache for TTL.
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross* If the property 'com.iplanet.am.sdk.cache.entry.expire.enabled' is set to
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross* true, the cache entries will expire based on the time specified in the
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* properties below. The properties 'com.iplanet.am.sdk.cache.user.expire.time'
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross* & 'com.iplanet.am.sdk.cache.default.expire.time' specify time in minutes for
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross* which the user & non-user entries respectively remain valid after their last
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross* modification. In other words after this specified period of time elapses
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh* (after the last modification/read from the directory), the data for the
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross* entry that is cached will expire. At that instant new requests for data for
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross* these entries will result in reading it from the Directory.
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Rosscom.iplanet.am.sdk.cache.entry.expire.enabled=true
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.iplanet.am.sdk.cache.entry.user.expire.time=1
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.iplanet.am.sdk.cache.entry.default.expire.time=1
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintosh * Server protocol, host and port to be used by Client Services
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.iplanet.am.services.deploymentDescriptor=@DEPLOY_URI@
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.iplanet.am.console.protocol=@CONSOLE_PROTOCOL@
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.iplanet.am.console.deploymentDescriptor=@CONSOLE_DEPLOY_URI@
1fdeec650620e8498c06f832ea4bd2292f7e9632joyce mcintoshcom.iplanet.am.console.remote=@CONSOLE_REMOTE@
8d7e41661dc4633488e93b13363137523ce59977jose borrego * Session related properties.
8d7e41661dc4633488e93b13363137523ce59977jose borregocom.iplanet.am.session.client.polling.enable=true
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw * Identify cert db directory path, prefix and password file
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw * to initialize JSS Socket Factory when Web Container is configured SSL
2c1b14e51525da2c09064641416fc4aed457c72fjose borregocom.iplanet.am.admin.cli.certdb.dir=@CONTAINER_CERTDB_DIR@
8d7e41661dc4633488e93b13363137523ce59977jose borregocom.iplanet.am.admin.cli.certdb.prefix=@CONTAINER_CERTDB_PREFIX@
8d7e41661dc4633488e93b13363137523ce59977jose borregocom.iplanet.am.admin.cli.certdb.passfile=@BASEDIR@/@PRODUCT_DIR@/config/.wtpass
2c1b14e51525da2c09064641416fc4aed457c72fjose borrego * Identify property value for SSL ApprovalCallback / HostnameVerifier
8d7e41661dc4633488e93b13363137523ce59977jose borrego * If com.iplanet.services.comm is configured as protocol handler
da6c28aaf62fa55f0fdb8004aa40f88f23bf53f0amw * and the checkSubjectAltName or resolveIPAddress feature is enabled,
8d7e41661dc4633488e93b13363137523ce59977jose borrego * com.iplanet.am.admin.cli.certdb.prefix will have to be created under
8d7e41661dc4633488e93b13363137523ce59977jose borrego * the directory of com.iplanet.am.admin.cli.certdb.dir before server is
8d7e41661dc4633488e93b13363137523ce59977jose borrego * restarted.
8d7e41661dc4633488e93b13363137523ce59977jose borregocom.iplanet.am.jssproxy.trustAllServerCerts=false
8d7e41661dc4633488e93b13363137523ce59977jose borregocom.iplanet.am.jssproxy.checkSubjectAltName=false
29bd28862cfb8abbd3a0f0a4b17e08bbc3652836Alan Wright/**************************************************************
8d7e41661dc4633488e93b13363137523ce59977jose borrego * Policy Client parameters
8d7e41661dc4633488e93b13363137523ce59977jose borrego **************************************************************/
8d7e41661dc4633488e93b13363137523ce59977jose borrego/* Policy decision log parameters. Possible values for logging.level
8d7e41661dc4633488e93b13363137523ce59977jose borrego * are NONE, ALLOW, DENY, BOTH, and DECISION */
8d7e41661dc4633488e93b13363137523ce59977jose borregocom.sun.identity.agents.server.log.file.name=amRemotePolicyLog
8d7e41661dc4633488e93b13363137523ce59977jose borrego/* Notification URL for updating cache */
8d7e41661dc4633488e93b13363137523ce59977jose borregocom.sun.identity.agents.notification.enabled=false
8d7e41661dc4633488e93b13363137523ce59977jose borregocom.sun.identity.agents.notification.url=@NOTIFICATION_URL@
a0aa776e20803c84edd153d9cb584fd67163aef3Alan Wright/* Cache time in minutes */
8d7e41661dc4633488e93b13363137523ce59977jose borrego/* Information to cache. Possible value are "subtree" or "self" */
8d7e41661dc4633488e93b13363137523ce59977jose borregocom.sun.identity.policy.client.cacheMode=subtree
8d7e41661dc4633488e93b13363137523ce59977jose borrego/* Policy client clock skew value in seconds */
8d7e41661dc4633488e93b13363137523ce59977jose borrego* Explicitly disable monitoring services in the client applications.
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross* Specify if allow to use cached data for HttpURLConnection
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross * Property to enable or disable to use the metro implementation
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross * for ws-trust client.
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Rosscom.sun.identity.wss.trustclient.enablemetro=false
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross * Property to use the SOAP version for ws-trust client. The containers
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross * that do not support JavaEE5 should use the version 1.1 but make sure that
8d7e41661dc4633488e93b13363137523ce59977jose borrego * the STS service is compatible with 1.1 version.
8d7e41661dc4633488e93b13363137523ce59977jose borrego * This property defines interval in seconds for web services security
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross * cache timeout.
8d7e41661dc4633488e93b13363137523ce59977jose borregocom.sun.identity.wss.security.cache.timeout.interval=300
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross * This property defines an interval in seconds for cleaning up the
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross * web services security cache.
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Rosscom.sun.identity.wss.security.cache.cleanup.interval=60
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross * This property indicates a plugin class for WSSCacheRepository that can be
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross * used for storing web services security cache persistently.
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Rosscom.sun.identity.wss.security.cacherepository.plugin=
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross * This property is used by the standone SAML Tokens in web services security
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross * for the issuer name. If this property is not set, they will use the server
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Ross * host name as the default.
1ed6b69a5ca1ca3ee5e9a4931f74e2237c7e1c9fGordon Rosscom.sun.identity.wss.security.samlassertion.issuer=
serviceType=iPlanetAMWebAgentService|class=com.sun.identity.policy.plugins.HttpURLResourceName|wildcard=*|delimiter=/|caseSensitive=false|oneLevelWildCard=-*-
* com.iplanet.services.comm (uses JSS)
* com.sun.identity.protocol (pure Java)
com.sun.identity.plugin.configuration.class=@CONFIGURATION_PROVIDER_CLASS@
# com.sun.identity.plugin.datastore.DataStoreProvider interface.
com.sun.identity.plugin.datastore.class.default=@DATASTORE_PROVIDER_CLASS@
# com.sun.identity.plugin.session.SessionProvider interface.
com.sun.identity.plugin.session.class=@SESSION_PROVIDER_CLASS@
com.sun.identity.saml.xmlsig.signatureprovider.class=com.sun.identity.saml.xmlsig.AMSignatureProvider
com.sun.identity.saml.xmlsig.storepass=@BASE_DIR@/.storepass
com.sun.identity.saml.xmlsig.keypass=@BASE_DIR@/.keypass
# by the "com.sun.identity.saml.xmlsig.keystore" property).
# http://www.w3.org/2001/10/xml-exc-c14n# (default)
# http://www.w3.org/2001/10/xml-exc-c14n#WithComments
# http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments
# http://www.w3.org/2000/09/xmldsig#rsa-sha1 (default)
# http://www.w3.org/2000/09/xmldsig#hmac-sha1
# http://www.w3.org/2000/09/xmldsig#dsa-sha1
# http://www.w3.org/2001/04/xmldsig-more#rsa-md5
# http://www.w3.org/2001/04/xmldsig-more#rsa-ripemd160
# http://www.w3.org/2001/04/xmldsig-more#rsa-sha256
# http://www.w3.org/2001/04/xmldsig-more#rsa-sha384
# http://www.w3.org/2001/04/xmldsig-more#rsa-sha512
# http://www.w3.org/2001/04/xmldsig-more#hmac-md5
# http://www.w3.org/2001/04/xmldsig-more#hmac-ripemd160
# http://www.w3.org/2001/04/xmldsig-more#hmac-sha256
# http://www.w3.org/2001/04/xmldsig-more#hmac-sha384
# http://www.w3.org/2001/04/xmldsig-more#hmac-sha512
# http://www.w3.org/2001/10/xml-exc-c14n# (default)
# http://www.w3.org/2001/10/xml-exc-c14n#WithComments
# http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments
# http://www.w3.org/2000/09/xmldsig#base64
# http://www.w3.org/2000/09/xmldsig#enveloped-signature
# http://www.nue.et-inf.uni-siegen.de/~geuer-pollmann/#xpathFilter
com.sun.identity.liberty.ws.jaxb.namespacePrefixMappingList=S=http://schemas.xmlsoap.org/soap/envelope/|sb=urn:liberty:sb:2003-08|pp=urn:liberty:id-sis-pp:2003-08|ispp=http://www.sun.com/identity/liberty/pp|is=urn:liberty:is:2003-08
# com.sun.identity.liberty.ws.wsc.certalias specifies default certificate
# com.sun.identity.liberty.ws.ta.certalias specifies certificate
# com.sun.identity.liberty.ws.trustedca.certaliases specifies certificate
com.sun.identity.liberty.ws.trustedca.certaliases=test:SunSTS|test:@SERVER_HOST@
com.sun.identity.liberty.ws.security.TokenProviderImpl=com.sun.identity.liberty.ws.security.LibSecurityTokenProvider
com.sun.identity.liberty.interaction.wspRedirectHandler=@SERVER_PROTOCOL@://@SERVER_HOST@:@SERVER_PORT@/@DEPLOY_URI@/WSPRedirectHandler
com.sun.identity.liberty.interaction.wscSpecifiedInteractionChoice=interactIfNeeded
com.sun.identity.liberty.authnsvc.url=@SERVER_PROTOCOL@://@SERVER_HOST@:@SERVER_PORT@/@DEPLOY_URI@/Liberty/authnsvc
com.sun.identity.jsr196.authenticated.user=AUTHENTICATED_USERS