OAuth2Provider.xml revision 7daa28ae7aca9a3019dbb719cc8428894b412f9f
2N/A<?xml version="1.0" encoding="UTF-8"?>
2N/A<!DOCTYPE ServicesConfiguration
2N/A PUBLIC "=//iPlanet//Service Management Services (SMS) 1.0 DTD//EN"
2N/A "jar://com/sun/identity/sm/sms.dtd">
2N/A<!--
2N/A/*
2N/A * The contents of this file are subject to the terms of the Common Development and
2N/A * Distribution License (the License). You may not use this file except in compliance with the
2N/A * License.
2N/A *
2N/A * You can obtain a copy of the License at legal/CDDLv1.0.txt. See the License for the
2N/A * specific language governing permission and limitations under the License.
2N/A *
2N/A * When distributing Covered Software, include this CDDL Header Notice in each file and include
2N/A * the License file at legal/CDDLv1.0.txt. If applicable, add the following below the CDDL
2N/A * Header, with the fields enclosed by brackets [] replaced by your own identifying
2N/A * information: "Portions Copyrighted [year] [name of copyright owner]".
2N/A *
2N/A * Copyright 2012-2014 ForgeRock AS.
2N/A */
2N/A-->
2N/A
2N/A<ServicesConfiguration>
2N/A <Service name="OAuth2Provider" version="1.0">
2N/A <Schema
2N/A serviceHierarchy="/DSAMEConfig/ForgerockOAuth2ProviderService"
2N/A i18nFileName="OAuth2Provider"
2N/A revisionNumber="1"
2N/A i18nKey="forgerock-oauth2-provider-description">
2N/A <Organization>
2N/A <AttributeSchema name="forgerock-oauth2-provider-authorization-code-lifetime"
2N/A type="single"
2N/A syntax="number_range" rangeStart="0" rangeEnd="2147483647"
2N/A validator="RequiredValueValidator"
2N/A i18nKey="a100">
2N/A <DefaultValues>
2N/A <Value>10</Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A
2N/A <AttributeSchema name="forgerock-oauth2-provider-refresh-token-lifetime"
2N/A type="single"
2N/A syntax="number_range" rangeStart="0" rangeEnd="2147483647"
2N/A validator="RequiredValueValidator"
2N/A i18nKey="a101">
2N/A <DefaultValues>
2N/A <Value>600</Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A
2N/A <AttributeSchema name="forgerock-oauth2-provider-access-token-lifetime"
2N/A type="single"
2N/A syntax="number_range" rangeStart="0" rangeEnd="2147483647"
2N/A validator="RequiredValueValidator"
2N/A i18nKey="a102">
2N/A <DefaultValues>
2N/A <Value>60</Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A
2N/A <AttributeSchema name="forgerock-oauth2-provider-issue-refresh-token"
2N/A type="single"
2N/A syntax="boolean"
2N/A validator="RequiredValueValidator"
2N/A i18nKey="a103">
2N/A <BooleanValues>
2N/A <BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
2N/A <BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
2N/A </BooleanValues>
2N/A <DefaultValues>
2N/A <Value>true</Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A
2N/A <AttributeSchema name="forgerock-oauth2-provider-issue-refresh-token-on-refreshing-token"
2N/A type="single"
2N/A syntax="boolean"
2N/A validator="RequiredValueValidator"
2N/A i18nKey="a103a">
2N/A <BooleanValues>
2N/A <BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
2N/A <BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
2N/A </BooleanValues>
2N/A <DefaultValues>
2N/A <Value>true</Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A
2N/A <AttributeSchema name="forgerock-oauth2-provider-scope-implementation-class"
2N/A type="single"
2N/A syntax="string"
2N/A validator="RequiredValueValidator"
2N/A i18nKey="a104">
2N/A <DefaultValues>
2N/A <Value>org.forgerock.openam.oauth2.provider.impl.ScopeImpl</Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A <AttributeSchema name="forgerock-oauth2-provider-response-type-map-class"
2N/A type="list"
2N/A syntax="string"
2N/A i18nKey="a105">
2N/A <DefaultValues>
2N/A <Value>token|org.forgerock.restlet.ext.oauth2.flow.responseTypes.TokenResponseType</Value>
2N/A <Value>code|org.forgerock.restlet.ext.oauth2.flow.responseTypes.CodeResponseType</Value>
2N/A <Value>id_token|org.forgerock.restlet.ext.oauth2.flow.responseTypes.IDTokenResponseType</Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A
2N/A <AttributeSchema
2N/A name="forgerock-oauth2-provider-authentication-attributes"
2N/A type="list"
2N/A syntax="string"
2N/A i18nKey="a106">
2N/A <DefaultValues>
2N/A <Value>uid</Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A
2N/A <AttributeSchema name="forgerock-oauth2-provider-saved-consent-attribute"
2N/A type="single"
2N/A syntax="string"
2N/A i18nKey="a107">
2N/A <DefaultValues>
2N/A <Value></Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A <!--
2N/A <AttributeSchema
2N/A name="forgerock-oauth2-provider-supported-scopes"
2N/A type="list"
2N/A syntax="string"
2N/A i18nKey="a108">
2N/A <DefaultValues>
2N/A <Value>openid</Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A -->
2N/A <AttributeSchema
2N/A name="forgerock-oauth2-provider-jkws-uri"
2N/A type="single"
2N/A syntax="string"
2N/A i18nKey="a109">
2N/A <DefaultValues>
2N/A <Value></Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A
2N/A <AttributeSchema
2N/A name="forgerock-oauth2-provider-subject-types-supported"
2N/A type="list"
2N/A syntax="string"
2N/A i18nKey="a110">
2N/A <DefaultValues>
2N/A <Value>public</Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A
2N/A <AttributeSchema
2N/A name="forgerock-oauth2-provider-id-token-signing-algorithms-supported"
2N/A type="list"
2N/A syntax="string"
2N/A i18nKey="a111">
2N/A <DefaultValues>
2N/A <Value>HS256</Value>
2N/A <Value>HS384</Value>
2N/A <Value>HS512</Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A
2N/A <AttributeSchema
2N/A name="forgerock-oauth2-provider-supported-claims"
2N/A type="list"
2N/A syntax="string"
2N/A i18nKey="a112">
2N/A <DefaultValues>
2N/A <Value>openid</Value>
2N/A <Value>profile</Value>
2N/A <Value>email</Value>
2N/A <Value>address</Value>
2N/A <Value>phone</Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A
2N/A <AttributeSchema name="forgerock-oauth2-provider-jwt-token-lifetime"
2N/A type="single"
2N/A syntax="number_range" rangeStart="0" rangeEnd="2147483647"
2N/A validator="RequiredValueValidator"
2N/A i18nKey="a113">
2N/A <DefaultValues>
2N/A <Value>600</Value>
2N/A </DefaultValues>
2N/A </AttributeSchema>
2N/A
<AttributeSchema name="forgerock-oauth2-provider-keypair-name"
type="single"
syntax="string"
validator="RequiredValueValidator"
i18nKey="a114">
<DefaultValues>
<Value>test</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-allow-open-dynamic-registration"
type="single"
syntax="boolean"
validator="RequiredValueValidator"
i18nKey="a115">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-generate-registration-access-tokens"
type="single"
syntax="boolean"
validator="RequiredValueValidator"
i18nKey="a116">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<SubSchema name="serverconfig" inheritance="multiple">
<AttributeSchema name="forgerock-oauth2-provider-authorization-code-lifetime"
type="single"
syntax="number_range" rangeStart="0" rangeEnd="2147483647"
validator="RequiredValueValidator"
i18nKey="a100">
<DefaultValues>
<Value>10</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-refresh-token-lifetime"
type="single"
syntax="number_range" rangeStart="0" rangeEnd="2147483647"
validator="RequiredValueValidator"
i18nKey="a101">
<DefaultValues>
<Value>600</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-access-token-lifetime"
type="single"
syntax="number_range" rangeStart="0" rangeEnd="2147483647"
validator="RequiredValueValidator"
i18nKey="a102">
<DefaultValues>
<Value>60</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-issue-refresh-token"
type="single"
syntax="boolean"
validator="RequiredValueValidator"
i18nKey="a103">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-issue-refresh-token-on-refreshing-token"
type="single"
syntax="boolean"
validator="RequiredValueValidator"
i18nKey="a103a">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-scope-implementation-class"
type="single"
syntax="string"
validator="RequiredValueValidator"
i18nKey="a104">
<DefaultValues>
<Value>org.forgerock.openam.oauth2.provider.impl.ScopeImpl</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-response-type-map-class"
type="list"
syntax="string"
i18nKey="a105">
<DefaultValues>
<Value>token|org.forgerock.restlet.ext.oauth2.flow.responseTypes.TokenResponseType</Value>
<Value>code|org.forgerock.restlet.ext.oauth2.flow.responseTypes.CodeResponseType</Value>
<Value>id_token|org.forgerock.restlet.ext.oauth2.flow.responseTypes.IDTokenResponseType</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema
name="forgerock-oauth2-provider-authentication-attributes"
type="list"
syntax="string"
i18nKey="a106">
<DefaultValues>
<Value>uid</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-saved-consent-attribute"
type="single"
syntax="string"
i18nKey="a107">
<DefaultValues>
<Value></Value>
</DefaultValues>
</AttributeSchema>
<!--
<AttributeSchema
name="forgerock-oauth2-provider-supported-scopes"
type="list"
syntax="string"
i18nKey="a108">
<DefaultValues>
<Value>openid</Value>
</DefaultValues>
</AttributeSchema>
-->
<AttributeSchema
name="forgerock-oauth2-provider-jkws-uri"
type="single"
syntax="string"
i18nKey="a109">
<DefaultValues>
<Value></Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema
name="forgerock-oauth2-provider-subject-types-supported"
type="list"
syntax="string"
i18nKey="a110">
<DefaultValues>
<Value>public</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema
name="forgerock-oauth2-provider-id-token-signing-algorithms-supported"
type="list"
syntax="string"
i18nKey="a111">
<DefaultValues>
<Value>HS256</Value>
<Value>HS384</Value>
<Value>HS512</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema
name="forgerock-oauth2-provider-supported-claims"
type="list"
syntax="string"
i18nKey="a112">
<DefaultValues>
<Value>openid</Value>
<Value>profile</Value>
<Value>email</Value>
<Value>address</Value>
<Value>phone</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-jwt-token-lifetime"
type="single"
syntax="number_range" rangeStart="0" rangeEnd="2147483647"
validator="RequiredValueValidator"
i18nKey="a113">
<DefaultValues>
<Value>600</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-keypair-name"
type="single"
syntax="string"
validator="RequiredValueValidator"
i18nKey="a114">
<DefaultValues>
<Value>test</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-allow-open-dynamic-registration"
type="single"
syntax="boolean"
validator="RequiredValueValidator"
i18nKey="a115">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="forgerock-oauth2-provider-generate-registration-access-tokens"
type="single"
syntax="boolean"
validator="RequiredValueValidator"
i18nKey="a116">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
</SubSchema>
</Organization>
</Schema>
</Service>
</ServicesConfiguration>