famSTS.xml revision 31efa30f058787c2c450472578e51d9f4760271a
1N/A<?xml version='1.0' encoding="ISO-8859-1"?>
1N/A
1N/A<!--
1N/A DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
1N/A
1N/A Copyright (c) 2007 Sun Microsystems Inc. All Rights Reserved
1N/A
1N/A The contents of this file are subject to the terms
1N/A of the Common Development and Distribution License
1N/A (the License). You may not use this file except in
1N/A compliance with the License.
1N/A
1N/A You can obtain a copy of the License at
1N/A https://opensso.dev.java.net/public/CDDLv1.0.html or
1N/A opensso/legal/CDDLv1.0.txt
1N/A See the License for the specific language governing
1N/A permission and limitations under the License.
1N/A
1N/A When distributing Covered Code, include this CDDL
1N/A Header Notice in each file and include the License file
1N/A at opensso/legal/CDDLv1.0.txt.
1N/A If applicable, add the following below the CDDL Header,
1N/A with the fields enclosed by brackets [] replaced by
1N/A your own identifying information:
1N/A "Portions Copyrighted [year] [name of copyright owner]"
1N/A
1N/A $Id: famSTS.xml,v 1.20 2010/01/15 18:54:35 mrudul_uchil Exp $
1N/A
1N/A Portions Copyrighted 2015 ForgeRock AS.
1N/A-->
1N/A
1N/A<!DOCTYPE ServicesConfiguration
1N/A PUBLIC "=//iPlanet//Service Management Services (SMS) 1.0 DTD//EN"
1N/A "jar://com/sun/identity/sm/sms.dtd">
1N/A
1N/A<ServicesConfiguration>
1N/A <Service name="sunFAMSTSService" version="1.0">
1N/A <Schema
1N/A serviceHierarchy=""
1N/A i18nFileName="famSTS"
1N/A revisionNumber="10"
1N/A i18nKey="sunSTS"
1N/A resourceName="sts"
1N/A propertiesViewBeanURL="/service/SecurityTokenService">
1N/A <Global>
1N/A <AttributeSchema name="stsIssuer"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="a101"
1N/A resourceName="issuer">
1N/A <DefaultValues>
1N/A <Value>SunSTS</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema name="stsEndPoint"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="a102"
1N/A resourceName="endpoint">
1N/A <DefaultValues>
1N/A <Value>@SERVER_PROTO@://@SERVER_HOST@:@SERVER_PORT@/@SERVER_URI@/sts</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema name="stsEncryptIssuedKey"
1N/A type="single"
1N/A syntax="boolean"
1N/A i18nKey="">
1N/A <DefaultValues>
1N/A <Value>true</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema name="stsEncryptIssuedToken"
1N/A type="single"
1N/A syntax="boolean"
1N/A i18nKey="">
1N/A <DefaultValues>
1N/A <Value>false</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema name="stsLifetime"
1N/A type="single"
1N/A syntax="number"
1N/A i18nKey="a105"
1N/A resourceName="lifetime">
1N/A <DefaultValues>
1N/A <Value>300000</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema name="stsTokenImplClass"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="">
1N/A <DefaultValues>
1N/A <Value>com.sun.xml.ws.security.trust.impl.WSTrustContractImpl</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema name="stsCertAlias"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="a107"
1N/A resourceName="certificateAlias">
1N/A <DefaultValues>
1N/A <Value>test</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema name="com.sun.identity.wss.sts.clientusertoken"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="a108"
1N/A resourceName="clientUserTokenClass">
1N/A <DefaultValues>
1N/A <Value>com.sun.identity.wss.sts.STSClientUserToken</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema
1N/A name="SecurityMech"
1N/A type="multiple_choice"
1N/A syntax="string"
1N/A i18nKey="a109"
1N/A resourceName="securityMechanism">
1N/A <ChoiceValues>
1N/A <ChoiceValuesClassName
1N/A className="com.sun.identity.wss.security.ConfiguredWSPSecurityMech" />
1N/A </ChoiceValues>
1N/A <DefaultValues>
1N/A <Value>urn:sun:wss:security:null:X509Token</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema
1N/A name="isRequestSign"
1N/A type="single"
1N/A syntax="boolean"
1N/A i18nKey="a110"
1N/A resourceName="isRequestSignatureVerified">
1N/A <BooleanValues>
1N/A <BooleanTrueValue i18nKey="a105">true</BooleanTrueValue>
1N/A <BooleanFalseValue i18nKey="a106">false</BooleanFalseValue>
1N/A </BooleanValues>
1N/A <DefaultValues>
1N/A <Value>true</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema
1N/A name="isRequestHeaderEncrypt"
1N/A type="single"
1N/A syntax="boolean"
1N/A i18nKey="a111"
1N/A resourceName="isRequestHeaderDecrypted">
1N/A <BooleanValues>
1N/A <BooleanTrueValue i18nKey="a105">true</BooleanTrueValue>
1N/A <BooleanFalseValue i18nKey="a106">false</BooleanFalseValue>
1N/A </BooleanValues>
1N/A <DefaultValues>
1N/A <Value>false</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema
1N/A name="isRequestEncrypt"
1N/A type="single"
1N/A syntax="boolean"
1N/A i18nKey="a112"
1N/A resourceName="isRequestDecrypted">
1N/A <BooleanValues>
1N/A <BooleanTrueValue i18nKey="a105">true</BooleanTrueValue>
1N/A <BooleanFalseValue i18nKey="a106">false</BooleanFalseValue>
1N/A </BooleanValues>
1N/A <DefaultValues>
1N/A <Value>false</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema
1N/A name="isResponseSign"
1N/A type="single"
1N/A syntax="boolean"
1N/A i18nKey="a113"
1N/A resourceName="isResponseSigned">
1N/A <BooleanValues>
1N/A <BooleanTrueValue i18nKey="a105">true</BooleanTrueValue>
1N/A <BooleanFalseValue i18nKey="a106">false</BooleanFalseValue>
1N/A </BooleanValues>
1N/A <DefaultValues>
1N/A <Value>false</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema
1N/A name="isResponseEncrypt"
1N/A type="single"
1N/A syntax="boolean"
1N/A i18nKey="a114"
1N/A resourceName="isResponseEncrypted">
1N/A <BooleanValues>
1N/A <BooleanTrueValue i18nKey="a105">true</BooleanTrueValue>
1N/A <BooleanFalseValue i18nKey="a106">false</BooleanFalseValue>
1N/A </BooleanValues>
1N/A <DefaultValues>
1N/A <Value>false</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema
1N/A name="privateKeyAlias"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="a115">
1N/A <DefaultValues>
1N/A <Value>test</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema
1N/A name="privateKeyType"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="a116">
1N/A <DefaultValues>
1N/A <Value>PublicKey</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A <AttributeSchema
1N/A name="publicKeyAlias"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="a117">
1N/A <DefaultValues>
1N/A <Value>test</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema
1N/A name="SigningRefType"
1N/A type="single_choice"
1N/A syntax="string"
1N/A i18nKey="a118"
1N/A resourceName="signingReferenceType">
1N/A <ChoiceValues>
1N/A <ChoiceValue i18nKey="a201">DirectReference</ChoiceValue>
1N/A <ChoiceValue i18nKey="a202">KeyIdentifierRef</ChoiceValue>
1N/A <ChoiceValue i18nKey="a203">X509IssuerSerialRef</ChoiceValue>
1N/A </ChoiceValues>
1N/A <DefaultValues>
1N/A <Value>DirectReference</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema
1N/A name="EncryptionAlgorithm"
1N/A type="single_choice"
1N/A syntax="string"
1N/A i18nKey="a119"
1N/A resourceName="encryptionAlgorithm">
1N/A <ChoiceValues>
1N/A <ChoiceValue i18nKey="a204">DESede</ChoiceValue>
1N/A <ChoiceValue i18nKey="a205">AES</ChoiceValue>
1N/A </ChoiceValues>
1N/A <DefaultValues>
1N/A <Value>AES</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema
1N/A name="EncryptionStrength"
1N/A type="single_choice"
1N/A syntax="number"
1N/A i18nKey="a120"
1N/A resourceName="encryptionStrength">
1N/A <ChoiceValues>
1N/A <ChoiceValue>0</ChoiceValue>
1N/A <ChoiceValue>112</ChoiceValue>
1N/A <ChoiceValue>128</ChoiceValue>
1N/A <ChoiceValue>168</ChoiceValue>
1N/A <ChoiceValue>192</ChoiceValue>
1N/A <ChoiceValue>256</ChoiceValue>
1N/A </ChoiceValues>
1N/A <DefaultValues>
1N/A <Value>128</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A
1N/A
1N/A <AttributeSchema name="trustedIssuers"
1N/A type="list"
1N/A syntax="string"
1N/A i18nKey="a121"
1N/A resourceName="trustedIssuers">
1N/A <DefaultValues>
1N/A <Value>test:SunSTS</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema name="trustedIPAddresses"
1N/A type="list"
1N/A syntax="string"
1N/A i18nKey="a122"
1N/A resourceName="trustedIpAddresses">
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema
1N/A name="UserCredential"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="a123"
1N/A resourceName="userCredential">
1N/A <DefaultValues>
1N/A <Value>UserName:test|UserPassword:test</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema name="KerberosDomainServer"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="a124"
1N/A resourceName="kerberosDomainServer">
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema
1N/A name="KerberosDomain"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="a125"
1N/A resourceName="kerberosDomain">
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema
1N/A name="KerberosServicePrincipal"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="a126"
1N/A resourceName="kerberosServicePrincipal">
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema
1N/A name="KerberosKeyTabFile"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="a127"
1N/A resourceName="kerberosKeyTabFile">
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema
1N/A name="isVerifyKrbSignature"
1N/A type="single"
1N/A syntax="boolean"
1N/A i18nKey="a128"
1N/A resourceName="isVerifyKerberosSignature">
1N/A <BooleanValues>
1N/A <BooleanTrueValue i18nKey="a105">true</BooleanTrueValue>
1N/A <BooleanFalseValue i18nKey="a106">false</BooleanFalseValue>
1N/A </BooleanValues>
1N/A <DefaultValues>
1N/A <Value>false</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema
1N/A name="SAMLAttributeMapping"
1N/A type="list"
1N/A syntax="string"
1N/A i18nKey="a129"
1N/A resourceName="samlAttributeMapping">
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema
1N/A name="NameIDMapper"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="a130"
1N/A resourceName="nameIdMapper">
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema
1N/A name="AttributeNamespace"
1N/A type="single"
1N/A syntax="string"
1N/A i18nKey="a131"
1N/A resourceName="attributeNamespace">
1N/A <DefaultValues>
1N/A <Value>http://www.sun.com</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema
1N/A name="includeMemberships"
1N/A type="single"
1N/A syntax="boolean"
1N/A i18nKey="a132">
1N/A <BooleanValues>
1N/A <BooleanTrueValue i18nKey="a105">true</BooleanTrueValue>
1N/A <BooleanFalseValue i18nKey="a106">false</BooleanFalseValue>
1N/A </BooleanValues>
1N/A <DefaultValues>
1N/A <Value>false</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema
1N/A name="AuthenticationChain"
1N/A type="single_choice"
1N/A syntax="string"
1N/A i18nKey="a133"
1N/A resourceName="authenticationChain">
1N/A <ChoiceValues>
1N/A <ChoiceValuesClassName className="com.sun.identity.authentication.service.ConfiguredAuthServices" />
1N/A </ChoiceValues>
1N/A <DefaultValues>
1N/A <Value>[Empty]</Value>
1N/A </DefaultValues>
1N/A </AttributeSchema>
1N/A
1N/A <AttributeSchema
1N/A name="DetectUserTokenReplay"
1N/A type="single"
syntax="boolean"
i18nKey="a134"
resourceName="detectUserTokenReplay">
<BooleanValues>
<BooleanTrueValue i18nKey="a105">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="a106">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema
name="DetectMessageReplay"
type="single"
syntax="boolean"
i18nKey="a135"
resourceName="detectMessageReplay">
<BooleanValues>
<BooleanTrueValue i18nKey="a105">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="a106">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema
name="SignedElements"
type="multiple_choice"
syntax="string"
i18nKey="a136"
resourceName="signedElements">
<ChoiceValues>
<ChoiceValuesClassName
className="com.sun.identity.wss.security.ConfiguredSignedElements" />
</ChoiceValues>
<DefaultValues>
<Value>Body</Value>
<Value>SecurityToken</Value>
<Value>Timestamp</Value>
<Value>To</Value>
<Value>From</Value>
<Value>ReplyTo</Value>
<Value>Action</Value>
<Value>MessageID</Value>
</DefaultValues>
</AttributeSchema>
</Global>
</Schema>
</Service>
</ServicesConfiguration>