RestSecurity.xml revision 06b16f5d7356f342d87e72fd8746b71673a71ff1
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE ServicesConfiguration
PUBLIC "=//iPlanet//Service Management Services (SMS) 1.0 DTD//EN"
<!--
DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
Copyright 2013-2015 ForgeRock AS.
The contents of this file are subject to the terms
of the Common Development and Distribution License
(the License). You may not use this file except in
compliance with the License.
You can obtain a copy of the License at
See the License for the specific language governing
permission and limitations under the License.
When distributing Covered Code, include this CDDL
Header Notice in each file and include the License file
If applicable, add the following below the CDDL Header,
with the fields enclosed by brackets [] replaced by
your own identifying information:
"Portions copyright [year] [name of copyright owner]"
-->
<ServicesConfiguration>
<Service name="RestSecurity" version="1.0">
<Schema
serviceHierarchy="/DSAMEConfig/ForgeRockRestSecurityService"
i18nFileName="RestSecurity"
revisionNumber="1"
resourceName="security"
i18nKey="forgerock-restSecurity-service-description">
<Organization>
<!-- General configuration -->
<AttributeSchema name="forgerockRESTSecurityCaptchaSiteKey"
type="single"
syntax="string"
resourceName="captchaSiteKey"
i18nKey="a001">
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityCaptchaSecretKey"
type="single"
syntax="string"
resourceName="captchaSecretKey"
i18nKey="a002">
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityCaptchaVerificationUrl"
type="single"
syntax="string"
resourceName="captchaVerificationUrl"
i18nKey="a003">
<DefaultValues>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityKBAQuestions"
type="list"
syntax="string"
resourceName="kbaQuestions"
i18nKey="a011">
<DefaultValues>
<Value>1|en|What is the name of your favourite restaurant?</Value>
<Value>2|en|What was the model of your first car?</Value>
<Value>3|en|What was the name of your childhood pet?</Value>
<Value>4|en|What is your mother's maiden name?</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityAnswersUserMustProvide"
type="single"
syntax="number_range" rangeStart="0" rangeEnd="30"
resourceName="kbaAnswersUserMustProvide"
i18nKey="a012">
<DefaultValues>
<Value>1</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityQuestionsUserMustAnswer"
type="single"
syntax="number_range" rangeStart="0" rangeEnd="50"
resourceName="kbaQuestionsUserMustAnswer"
i18nKey="a013">
<DefaultValues>
<Value>1</Value>
</DefaultValues>
</AttributeSchema>
<!-- User registration -->
<AttributeSchema name="forgerockRESTSecuritySelfRegistrationEnabled"
type="single"
syntax="boolean"
resourceName="selfRegistrationEnabled"
i18nKey="a101">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecuritySelfRegCaptchaEnabled"
type="single"
syntax="boolean"
resourceName="selfRegCaptchaEnabled"
i18nKey="a202">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecuritySelfRegEmailVerificationEnabled"
type="single"
syntax="boolean"
resourceName="selfRegEmailVerificationEnabled"
i18nKey="a203">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecuritySelfRegKbaEnabled"
type="single"
syntax="boolean"
resourceName="selfRegKbaEnabled"
i18nKey="a204">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecuritySelfRegTokenTTL"
type="single"
syntax="number_range" rangeStart="0" rangeEnd="2147483647"
resourceName="selfRegistrationTokenLifetime"
i18nKey="a102">
<DefaultValues>
<Value>900</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecuritySelfRegEmailSubject"
type="list"
syntax="string"
resourceName="registrationEmailSubject"
i18nKey="a221">
<DefaultValues>
<Value>en|Registration email</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecuritySelfRegEmailBody"
type="list"
syntax="string"
resourceName="registrationEmailBody"
i18nKey="a222">
<DefaultValues>
<Value>en|Click on this <a href="%link%">link</a> to register</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecuritySelfRegistrationValidUserAttributes"
type="list"
syntax="string"
resourceName="selfRegistrationValidAttributes"
i18nKey="a231">
<DefaultValues>
<Value>mail</Value>
<Value>inetUserStatus</Value>
<Value>sn</Value>
<Value>username</Value>
<Value>userPassword</Value>
<Value>kbaInfo</Value>
<Value>givenName</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecuritySuccessfulUserRegistrationDestination"
type="single_choice"
syntax="string"
resourceName="userRegisteredDestination"
i18nKey="a107">
<ChoiceValues>
<ChoiceValue i18nKey="a107a">default</ChoiceValue>
<ChoiceValue i18nKey="a107b">login</ChoiceValue>
<ChoiceValue i18nKey="a107c">autologin</ChoiceValue>
</ChoiceValues>
<DefaultValues>
<Value>default</Value>
</DefaultValues>
</AttributeSchema>
<!-- Forgotten password -->
<AttributeSchema name="forgerockRESTSecurityForgotPasswordEnabled"
type="single"
syntax="boolean"
resourceName="forgotPasswordEnabled"
i18nKey="a104">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotPassCaptchaEnabled"
type="single"
syntax="boolean"
resourceName="forgotPassCaptchaEnabled"
i18nKey="a302">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotPassEmailVerificationEnabled"
type="single"
syntax="boolean"
resourceName="forgetPassEmailVerificationEnabled"
i18nKey="a303">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotPassKbaEnabled"
type="single"
syntax="boolean"
resourceName="forgotPassKbaEnabled"
i18nKey="a304">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotPassTokenTTL"
type="single"
syntax="number_range" rangeStart="0" rangeEnd="2147483647"
resourceName="forgotPasswordTokenLifetime"
i18nKey="a105">
<DefaultValues>
<Value>900</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotPassEmailSubject"
type="list"
syntax="string"
resourceName="forgottenPasswordEmailSubject"
i18nKey="a321">
<DefaultValues>
<Value>en|Forgotten password email</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotPassEmailBody"
type="list"
syntax="string"
resourceName="forgottenPasswordEmailBody"
i18nKey="a322">
<DefaultValues>
<Value>en|Click on this <a href="%link%">link</a> to reset your password
</Value>
</DefaultValues>
</AttributeSchema>
<!-- Forgotten username -->
<AttributeSchema name="forgerockRESTSecurityForgotUsernameEnabled"
type="single"
syntax="boolean"
resourceName="forgotUsernameEnabled"
i18nKey="a401">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotUsernameCaptchaEnabled"
type="single"
syntax="boolean"
resourceName="forgotUsernameCaptchaEnabled"
i18nKey="a402">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotUsernameKbaEnabled"
type="single"
syntax="boolean"
resourceName="forgotUsernameKbaEnabled"
i18nKey="a403">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotUsernameEmailUsernameEnabled"
type="single"
syntax="boolean"
resourceName="forgotUsernameEmailUsernameEnabled"
i18nKey="a404">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotUsernameShowUsernameEnabled"
type="single"
syntax="boolean"
resourceName="forgotUsernameShowUsernameEnabled"
i18nKey="a405">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotUsernameTokenTTL"
type="single"
syntax="number_range" rangeStart="0" rangeEnd="2147483647"
resourceName="forgotUsernameTokenLifetime"
i18nKey="a411">
<DefaultValues>
<Value>900</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotUsernameEmailSubject"
type="list"
syntax="string"
resourceName="forgottenUsernameEmailSubject"
i18nKey="a421">
<DefaultValues>
<Value>en|Forgotten username email</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotUsernameEmailBody"
type="list"
syntax="string"
resourceName="forgottenUsernameEmailBody"
i18nKey="a422">
<DefaultValues>
<Value>en|Your username is %username%.</Value>
</DefaultValues>
</AttributeSchema>
<!-- Profile management -->
<AttributeSchema name="forgerockRESTSecurityProtectedUserAttributes"
type="list"
syntax="string"
resourceName="protectedUserAttributes"
i18nKey="a108">
</AttributeSchema>
<!-- Advanced configuration -->
<AttributeSchema name="forgerockRESTSecuritySelfRegConfirmationUrl"
type="single"
syntax="url"
resourceName="selfRegistrationConfirmationUrl"
i18nKey="a103">
<DefaultValues>
<Value>@SERVER_PROTO@://@SERVER_HOST@:@SERVER_PORT@/@SERVER_URI@/XUI/#register/</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotPassConfirmationUrl"
type="single"
syntax="url"
resourceName="forgotPasswordConfirmationUrl"
i18nKey="a106">
<DefaultValues>
<Value>@SERVER_PROTO@://@SERVER_HOST@:@SERVER_PORT@/@SERVER_URI@/XUI/#passwordReset/</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecuritySelfRegServiceConfigClass"
type="single"
syntax="string"
resourceName="selfRegistrationServiceConfigClass"
i18nKey="a603">
<DefaultValues>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotPassServiceConfigClass"
type="single"
syntax="string"
resourceName="forgotPasswordServiceConfigClass"
i18nKey="a604">
<DefaultValues>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerockRESTSecurityForgotUsernameServiceConfigClass"
type="single"
syntax="string"
resourceName="forgotUsernameServiceConfigClass"
i18nKey="a605">
<DefaultValues>
</DefaultValues>
</AttributeSchema>
</Organization>
</Schema>
</Service>
</ServicesConfiguration>