sample3/conf/authentication.json

	authentication.json revision 194cdefb77cf5217ac87c29c6412db51bd6b8c8d
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott{
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott    "serverAuthContext" : {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott        "sessionModule" : {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott            "name" : "JWT_SESSION",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott            "properties" : {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "keyAlias" : "openidm-localhost",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "privateKeyPassword" : "&{openidm.keystore.password}",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "keystoreType" : "&{openidm.keystore.type}",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "keystoreFile" : "&{openidm.keystore.location}",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "keystorePassword" : "&{openidm.keystore.password}",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "maxTokenLifeMinutes" : "120",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "tokenIdleTimeMinutes" : "30",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "sessionOnly" : true
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott            }
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott        },
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott        "authModules" : [
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott            {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "name" : "STATIC_USER",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "properties" : {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "queryOnResource" : "repo/internal/user",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "username" : "anonymous",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "password" : "anonymous",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "defaultUserRoles" : [ "openidm-reg" ]
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                },
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "enabled" : true
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott            },
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott            {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "name" : "MANAGED_USER",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "properties" : {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "queryId" : "credential-query",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "queryOnResource" : "managed/user",
9d1321897216c79ea0639b6d8e0f92d0565876b6Jason Lemay                    "propertyMapping" : {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                        "authenticationId" : "username",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                        "userCredential" : "password",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                        "userRoles" : "roles"
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    },
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "defaultUserRoles" : [ ]
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                },
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "enabled" : true
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott            },
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott            {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "name" : "INTERNAL_USER",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "properties" : {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "queryId" : "credential-internaluser-query",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "queryOnResource" : "repo/internal/user",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "propertyMapping" : {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                        "authenticationId" : "username",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                        "userCredential" : "password",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                        "userRoles" : "roles"
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    },
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "defaultUserRoles" : [ ]
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                },
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "enabled" : true
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott            },
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott            {   "name" : "CLIENT_CERT",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "properties" : {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "queryOnResource" : "security/truststore",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "defaultUserRoles" : [ "openidm-cert" ],
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "allowedAuthenticationIdPatterns" : [
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    ]
9d1321897216c79ea0639b6d8e0f92d0565876b6Jason Lemay                },
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "enabled" : true
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott            },
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott            {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "name" : "PASSTHROUGH",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "properties" : {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "augmentSecurityContext": {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                        "type" : "text/javascript",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                        "file" : "auth/populateAsManagedUser.js"
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    },
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "queryOnResource" : "system/scriptedsql/account",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "propertyMapping" : {
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                        "authenticationId" : "uid"
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    },
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "managedUserLink" : "systemHrdb_managedUser",
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    "defaultUserRoles" : [
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                        "openidm-authorized"
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                    ]
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                },
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott                "enabled" : true
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott            }
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott        ]
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott    }
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott}
e87637336bc6799910991bebc7cda8d7966eb4d5Robert Wapshott