scriptedrest2dj/conf/authentication.json

5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay{
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay    "serverAuthContext" : {
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay        "sessionModule" : {
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay            "name" : "JWT_SESSION",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay            "properties" : {
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "keyAlias" : "openidm-localhost",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "privateKeyPassword" : "&{openidm.keystore.password}",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "keystoreType" : "&{openidm.keystore.type}",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "keystoreFile" : "&{openidm.keystore.location}",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "keystorePassword" : "&{openidm.keystore.password}",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "maxTokenLifeMinutes" : "120",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "tokenIdleTimeMinutes" : "30",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "sessionOnly" : true
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay            }
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay        },
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay        "authModules" : [
194cdefb77cf5217ac87c29c6412db51bd6b8c8dBrendan Mmiller            {
194cdefb77cf5217ac87c29c6412db51bd6b8c8dBrendan Mmiller                "name" : "STATIC_USER",
194cdefb77cf5217ac87c29c6412db51bd6b8c8dBrendan Mmiller                "properties" : {
194cdefb77cf5217ac87c29c6412db51bd6b8c8dBrendan Mmiller                    "queryOnResource" : "repo/internal/user",
194cdefb77cf5217ac87c29c6412db51bd6b8c8dBrendan Mmiller                    "username" : "anonymous",
194cdefb77cf5217ac87c29c6412db51bd6b8c8dBrendan Mmiller                    "password" : "anonymous",
194cdefb77cf5217ac87c29c6412db51bd6b8c8dBrendan Mmiller                    "defaultUserRoles" : [ "openidm-reg" ]
194cdefb77cf5217ac87c29c6412db51bd6b8c8dBrendan Mmiller                },
194cdefb77cf5217ac87c29c6412db51bd6b8c8dBrendan Mmiller                "enabled" : true
194cdefb77cf5217ac87c29c6412db51bd6b8c8dBrendan Mmiller            },
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay            {
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "name" : "MANAGED_USER",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "properties" : {
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "queryId" : "credential-query",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "queryOnResource" : "managed/user",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "propertyMapping" : {
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                        "authenticationId" : "username",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                        "userCredential" : "password",
48a99a679220c6522d8b11dc1305f7780ae02a8eJake Feasel                        "userRoles" : "authzRoles"
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    },
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "defaultUserRoles" : [ ]
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                },
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "enabled" : true
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay            },
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay            {
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "name" : "INTERNAL_USER",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "properties" : {
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "queryId" : "credential-internaluser-query",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "queryOnResource" : "repo/internal/user",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "propertyMapping" : {
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                        "authenticationId" : "username",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                        "userCredential" : "password",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                        "userRoles" : "roles"
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    },
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "defaultUserRoles" : [ ]
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                },
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "enabled" : true
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay            },
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay            {   "name" : "CLIENT_CERT",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "properties" : {
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "queryOnResource" : "security/truststore",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "defaultUserRoles" : [ "openidm-cert" ],
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "allowedAuthenticationIdPatterns" : [
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    ]
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                },
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "enabled" : true
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay            },
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay            {
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "name" : "PASSTHROUGH",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "properties" : {
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "augmentSecurityContext": {
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                        "type" : "text/javascript",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                        "file" : "auth/populateAsManagedUser.js"
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    },
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "queryOnResource" : "system/scriptedrest/account",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "propertyMapping" : {
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                        "authenticationId" : "uid"
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    },
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "managedUserLink" : "systemScriptedRestAccount_managedUser",
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    "defaultUserRoles" : [
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                        "openidm-authorized"
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                    ]
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                },
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay                "enabled" : true
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay            }
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay        ]
5f22ff8ce7baf0b39668468cc854eec3eb946003Jason Lemay    }
48a99a679220c6522d8b11dc1305f7780ae02a8eJake Feasel}