OAuth2Provider.xml revision 582e60f5478cf04cad2b208c3e8013fef3617942
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE ServicesConfiguration
PUBLIC "=//iPlanet//Service Management Services (SMS) 1.0 DTD//EN"
<!--
/*
* The contents of this file are subject to the terms of the Common Development and
* Distribution License (the License). You may not use this file except in compliance with the
* License.
*
* You can obtain a copy of the License at legal/CDDLv1.0.txt. See the License for the
* specific language governing permission and limitations under the License.
*
* When distributing Covered Software, include this CDDL Header Notice in each file and include
* the License file at legal/CDDLv1.0.txt. If applicable, add the following below the CDDL
* Header, with the fields enclosed by brackets [] replaced by your own identifying
* information: "Portions Copyrighted [year] [name of copyright owner]".
*
* Copyright 2012-2015 ForgeRock AS.
*/
-->
<ServicesConfiguration>
<Service name="OAuth2Provider" version="1.0">
<Schema
serviceHierarchy="/DSAMEConfig/ForgerockOAuth2ProviderService"
i18nFileName="OAuth2Provider"
revisionNumber="1"
i18nKey="forgerock-oauth2-provider-description"
resourceName="oauth-oidc">
<Organization>
<AttributeSchema name="forgerock-oauth2-provider-authorization-code-lifetime"
type="single"
syntax="number_range" rangeStart="0" rangeEnd="2147483647"
validator="RequiredValueValidator"
i18nKey="a100" resourceName="codeLifetime">
<DefaultValues>
<Value>10</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-refresh-token-lifetime"
type="single"
syntax="number_range" rangeStart="0" rangeEnd="2147483647"
validator="RequiredValueValidator"
i18nKey="a101" resourceName="refreshTokenLifetime">
<DefaultValues>
<Value>600</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-access-token-lifetime"
type="single"
syntax="number_range" rangeStart="0" rangeEnd="2147483647"
validator="RequiredValueValidator"
i18nKey="a102" resourceName="accessTokenLifetime">
<DefaultValues>
<Value>60</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-issue-refresh-token"
type="single"
syntax="boolean"
i18nKey="a103" resourceName="issueRefreshToken">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-issue-refresh-token-on-refreshing-token"
type="single"
syntax="boolean"
i18nKey="a103a" resourceName="issueRefreshTokenOnRefreshedToken">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-scope-implementation-class"
type="single"
syntax="string"
validator="RequiredValueValidator"
i18nKey="a104" resourceName="scopeImplementationClass">
<DefaultValues>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-oidc-claims-extension-script"
type="single_choice"
uitype="scriptSelect"
syntax="string"
i18nKey="a104aa"
resourceName="oidcClaimsScript">
<ChoiceValues>
<AttributeValuePair>
<Attribute name="ContextId"/>
<Value>OIDC_CLAIMS</Value>
</AttributeValuePair>
</ChoiceValuesClassName>
</ChoiceValues>
<DefaultValues>
<Value>&GlobalOidcClaimsScriptId;</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-response-type-map-class"
type="list"
syntax="string"
i18nKey="a105"
resourceName="responseTypeClasses">
<DefaultValues>
</DefaultValues>
</AttributeSchema>
<AttributeSchema
name="forgerock-oauth2-provider-authentication-attributes"
type="list"
syntax="string"
i18nKey="a106"
resourceName="authenticationAttributes">
<DefaultValues>
<Value>uid</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-saved-consent-attribute"
type="single"
syntax="string"
resourceName="savedConsentAttribute"
i18nKey="a107">
<DefaultValues>
<Value></Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema
name="forgerock-oauth2-provider-supported-scopes"
type="list"
syntax="string"
resourceName="supportedScopes"
i18nKey="a108">
<DefaultValues>
<Value>openid</Value>
<Value>profile</Value>
<Value>email</Value>
<Value>address</Value>
<Value>phone</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema
name="forgerock-oauth2-provider-jkws-uri"
type="single"
syntax="string"
resourceName="jkwsURI"
i18nKey="a109">
<DefaultValues>
<Value></Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema
name="forgerock-oauth2-provider-subject-types-supported"
type="list"
syntax="string"
resourceName="supportedSubjectTypes"
i18nKey="a110">
<DefaultValues>
<Value>public</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema
name="forgerock-oauth2-provider-id-token-signing-algorithms-supported"
type="list"
syntax="string"
resourceName="supportedIDTokenSigningAlgorithms"
i18nKey="a111">
<DefaultValues>
<Value>HS256</Value>
<Value>HS384</Value>
<Value>HS512</Value>
<Value>RS256</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema
name="forgerock-oauth2-provider-supported-claims"
type="list"
syntax="string"
resourceName="supportedClaims"
i18nKey="a112">
<DefaultValues>
<Value>email</Value>
<Value>address</Value>
<Value>phone_number</Value>
<Value>given_name</Value>
<Value>zoneinfo</Value>
<Value>family_name</Value>
<Value>locale</Value>
<Value>name</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema
name="forgerock-oauth2-provider-default-scopes"
type="list"
syntax="string"
resourceName="defaultScopes"
i18nKey="a122">
<DefaultValues>
<Value>openid</Value>
<Value>profile</Value>
<Value>email</Value>
<Value>address</Value>
<Value>phone</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-jwt-token-lifetime"
type="single"
syntax="number_range" rangeStart="0" rangeEnd="2147483647"
validator="RequiredValueValidator"
resourceName="jwtTokenLifetime"
i18nKey="a113">
<DefaultValues>
<Value>600</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-keypair-name"
type="single"
syntax="string"
validator="RequiredValueValidator"
resourceName="keypairName"
i18nKey="a114">
<DefaultValues>
<Value>test</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-claims-parameter-supported"
type="single"
syntax="boolean"
resourceName="claimsParameterSupported"
i18nKey="a123">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-hash-salt"
type="single"
syntax="string"
resourceName="hashSalt"
i18nKey="a124">
<DefaultValues>
<Value>changeme</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-allow-open-dynamic-registration"
type="single"
syntax="boolean"
resourceName="allowDynamicRegistration"
i18nKey="a115">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-generate-registration-access-tokens"
type="single"
syntax="boolean"
resourceName="generateRegistrationAccessTokens"
i18nKey="a116">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="MapValueValidator"
type="validator"
syntax="string">
<DefaultValues>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-loa-mapping"
type="list"
syntax="string"
uitype="maplist"
validator="MapValueValidator"
resourceName="loaMapping"
i18nKey="a117">
<ChoiceValues>
<ChoiceValuesClassName
className="com.sun.identity.authentication.service.ConfiguredAuthServices"/>
</ChoiceValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-default-acr"
type="single"
syntax="string"
resourceName="defaultACR"
i18nKey="a118">
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-amr-mappings"
type="list"
syntax="string"
uitype="maplist"
validator="MapValueValidator"
resourceName="amrMappings"
i18nKey="a119">
<ChoiceValues>
<ChoiceValuesClassName
className="com.sun.identity.authentication.service.AllConfiguredModuleInstances"/>
</ChoiceValues>
</AttributeSchema>
<AttributeSchema
name="forgerock-oauth2-provider-modified-attribute-name"
type="single"
syntax="string"
resourceName="modifiedTimestampAttribute"
i18nKey="a120">
<DefaultValues>
<Value>modifyTimestamp</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema
name="forgerock-oauth2-provider-created-attribute-name"
type="single"
syntax="string"
resourceName="createdTimestampAttribute"
i18nKey="a121">
<DefaultValues>
<Value>createTimestamp</Value>
</DefaultValues>
</AttributeSchema>
</Organization>
</Schema>
</Service>
</ServicesConfiguration>