authentication.json revision 94dade725a55de70aec65a84bc4949882e5277b1
03831d35f7499c87d51205817c93e9a8d42c4baestevel "serverAuthContext" : {
03831d35f7499c87d51205817c93e9a8d42c4baestevel "sessionModule" : {
03831d35f7499c87d51205817c93e9a8d42c4baestevel "name" : "JWT_SESSION",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "properties" : {
03831d35f7499c87d51205817c93e9a8d42c4baestevel "keyAlias" : "openidm-localhost",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "privateKeyPassword" : "&{openidm.keystore.password}",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "keystoreType" : "&{openidm.keystore.type}",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "keystoreFile" : "&{openidm.keystore.location}",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "keystorePassword" : "&{openidm.keystore.password}",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "maxTokenLifeMinutes" : "120",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "tokenIdleTimeMinutes" : "30",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "sessionOnly" : true
03831d35f7499c87d51205817c93e9a8d42c4baestevel "authModules" : [
03831d35f7499c87d51205817c93e9a8d42c4baestevel "name" : "MANAGED_USER",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "properties" : {
03831d35f7499c87d51205817c93e9a8d42c4baestevel "queryId" : "credential-query",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "queryOnResource" : "managed/user",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "propertyMapping" : {
52f4394b704526bb3aa41e8729fd03e754732822jfrank "authenticationId" : "username",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "userCredential" : "password",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "userRoles" : "roles"
03831d35f7499c87d51205817c93e9a8d42c4baestevel "defaultUserRoles" : [ ]
03831d35f7499c87d51205817c93e9a8d42c4baestevel "enabled" : true
03831d35f7499c87d51205817c93e9a8d42c4baestevel "name" : "INTERNAL_USER",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "properties" : {
03831d35f7499c87d51205817c93e9a8d42c4baestevel "queryId" : "credential-internaluser-query",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "queryOnResource" : "repo/internal/user",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "propertyMapping" : {
03831d35f7499c87d51205817c93e9a8d42c4baestevel "authenticationId" : "username",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "userCredential" : "password",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "userRoles" : "roles"
03831d35f7499c87d51205817c93e9a8d42c4baestevel "defaultUserRoles" : [ ]
03831d35f7499c87d51205817c93e9a8d42c4baestevel "enabled" : true
03831d35f7499c87d51205817c93e9a8d42c4baestevel { "name" : "CLIENT_CERT",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "properties" : {
03831d35f7499c87d51205817c93e9a8d42c4baestevel "queryOnResource" : "security/truststore",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "defaultUserRoles" : [ "openidm-cert" ],
03831d35f7499c87d51205817c93e9a8d42c4baestevel "allowedAuthenticationIdPatterns" : [ ]
03831d35f7499c87d51205817c93e9a8d42c4baestevel "enabled" : true
03831d35f7499c87d51205817c93e9a8d42c4baestevel "name" : "PASSTHROUGH",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "properties" : {
03831d35f7499c87d51205817c93e9a8d42c4baestevel "augmentSecurityContext" : {
03831d35f7499c87d51205817c93e9a8d42c4baestevel "queryOnResource" : "system/ad/account",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "propertyMapping" : {
03831d35f7499c87d51205817c93e9a8d42c4baestevel "authenticationId" : "sAMAccountName"
03831d35f7499c87d51205817c93e9a8d42c4baestevel "managedUserLink" : "systemAdAccounts_managedUser",
03831d35f7499c87d51205817c93e9a8d42c4baestevel "defaultUserRoles" : [
03831d35f7499c87d51205817c93e9a8d42c4baestevel "openidm-authorized"
03831d35f7499c87d51205817c93e9a8d42c4baestevel "enabled" : true