remie: authserver/casserver/simple-cas4-overlay-template/src/main/webapp/WEB-INF/deployerConfigContext.xml@1afc9d2ab94d (annotated)

0 1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	1	<?xml version="1.0" encoding="UTF-8"?>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	2	<!--
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	3
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	4	Licensed to Jasig under one or more contributor license
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	5	agreements. See the NOTICE file distributed with this work
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	6	for additional information regarding copyright ownership.
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	7	Jasig licenses this file to you under the Apache License,
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	8	Version 2.0 (the "License"); you may not use this file
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	9	except in compliance with the License. You may obtain a
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	10	copy of the License at the following location:
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	11
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	12	http://www.apache.org/licenses/LICENSE-2.0
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	13
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	14	Unless required by applicable law or agreed to in writing,
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	15	software distributed under the License is distributed on an
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	16	"AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	17	KIND, either express or implied. See the License for the
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	18	specific language governing permissions and limitations
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	19	under the License.
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	20
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	21	-->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	22	<!--
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	23	\| deployerConfigContext.xml centralizes into one file some of the declarative configuration that
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	24	\| all CAS deployers will need to modify.
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	25	\|
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	26	\| This file declares some of the Spring-managed JavaBeans that make up a CAS deployment.
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	27	\| The beans declared in this file are instantiated at context initialization time by the Spring
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	28	\| ContextLoaderListener declared in web.xml. It finds this file because this
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	29	\| file is among those declared in the context parameter "contextConfigLocation".
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	30	\|
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	31	\| By far the most common change you will need to make in this file is to change the last bean
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	32	\| declaration to replace the default authentication handler with
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	33	\| one implementing your approach for authenticating usernames and passwords.
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	34	+-->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	35
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	36	<beans xmlns="http://www.springframework.org/schema/beans"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	37	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	38	xmlns:p="http://www.springframework.org/schema/p"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	39	xmlns:c="http://www.springframework.org/schema/c"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	40	xmlns:tx="http://www.springframework.org/schema/tx"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	41	xmlns:util="http://www.springframework.org/schema/util"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	42	xmlns:sec="http://www.springframework.org/schema/security"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	43	xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.2.xsd
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	44	http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx-3.2.xsd
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	45	http://www.springframework.org/schema/security http://www.springframework.org/schema/security/spring-security-3.2.xsd
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	46	http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util.xsd">
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	47
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	48	<!--
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	49	\| The authentication manager defines security policy for authentication by specifying at a minimum
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	50	\| the authentication handlers that will be used to authenticate credential. While the AuthenticationManager
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	51	\| interface supports plugging in another implementation, the default PolicyBasedAuthenticationManager should
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	52	\| be sufficient in most cases.
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	53	+-->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	54	<bean id="authenticationManager" class="org.jasig.cas.authentication.PolicyBasedAuthenticationManager">
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	55	<constructor-arg>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	56	<map>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	57	<!--
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	58	\| IMPORTANT
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	59	\| Every handler requires a unique name.
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	60	\| If more than one instance of the same handler class is configured, you must explicitly
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	61	\| set its name to something other than its default name (typically the simple class name).
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	62	-->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	63	<entry key-ref="proxyAuthenticationHandler" value-ref="proxyPrincipalResolver" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	64	<entry key-ref="primaryAuthenticationHandler" value-ref="primaryPrincipalResolver" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	65	</map>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	66	</constructor-arg>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	67
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	68	<!-- Uncomment the metadata populator to allow clearpass to capture and cache the password
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	69	This switch effectively will turn on clearpass.
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	70	<property name="authenticationMetaDataPopulators">
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	71	<util:list>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	72	<bean class="org.jasig.cas.extension.clearpass.CacheCredentialsMetaDataPopulator"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	73	c:credentialCache-ref="encryptedMap" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	74	</util:list>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	75	</property>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	76	-->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	77
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	78	<!--
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	79	\| Defines the security policy around authentication. Some alternative policies that ship with CAS:
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	80	\|
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	81	\| * NotPreventedAuthenticationPolicy - all credential must either pass or fail authentication
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	82	\| * AllAuthenticationPolicy - all presented credential must be authenticated successfully
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	83	\| * RequiredHandlerAuthenticationPolicy - specifies a handler that must authenticate its credential to pass
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	84	-->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	85	<property name="authenticationPolicy">
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	86	<bean class="org.jasig.cas.authentication.AnyAuthenticationPolicy" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	87	</property>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	88	</bean>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	89
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	90	<!-- Required for proxy ticket mechanism. -->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	91	<bean id="proxyAuthenticationHandler"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	92	class="org.jasig.cas.authentication.handler.support.HttpBasedServiceCredentialsAuthenticationHandler"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	93	p:httpClient-ref="httpClient" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	94
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	95	<!--
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	96	\| TODO: Replace this component with one suitable for your enviroment.
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	97	\|
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	98	\| This component provides authentication for the kind of credential used in your environment. In most cases
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	99	\| credential is a username/password pair that lives in a system of record like an LDAP directory.
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	100	\| The most common authentication handler beans:
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	101	\|
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	102	\| * org.jasig.cas.authentication.LdapAuthenticationHandler
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	103	\| * org.jasig.cas.adaptors.jdbc.QueryDatabaseAuthenticationHandler
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	104	\| * org.jasig.cas.adaptors.x509.authentication.handler.support.X509CredentialsAuthenticationHandler
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	105	\| * org.jasig.cas.support.spnego.authentication.handler.support.JCIFSSpnegoAuthenticationHandler
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	106	-->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	107	<bean id="primaryAuthenticationHandler"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	108	class="org.jasig.cas.authentication.AcceptUsersAuthenticationHandler">
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	109	<property name="users">
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	110	<map>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	111	<entry key="casuser" value="Mellon"/>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	112	<entry key="casadmin" value="casadmin"/>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	113	</map>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	114	</property>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	115	</bean>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	116
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	117	<!-- Required for proxy ticket mechanism -->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	118	<bean id="proxyPrincipalResolver"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	119	class="org.jasig.cas.authentication.principal.BasicPrincipalResolver" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	120
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	121	<!--
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	122	\| Resolves a principal from a credential using an attribute repository that is configured to resolve
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	123	\| against a deployer-specific store (e.g. LDAP).
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	124	-->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	125	<bean id="primaryPrincipalResolver"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	126	class="org.jasig.cas.authentication.principal.PersonDirectoryPrincipalResolver" >
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	127	<property name="attributeRepository" ref="attributeRepository" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	128	</bean>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	129
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	130	<!--
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	131	Bean that defines the attributes that a service may return. This example uses the Stub/Mock version. A real implementation
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	132	may go against a database or LDAP server. The id should remain "attributeRepository" though.
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	133	+-->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	134	<bean id="attributeRepository" class="org.jasig.services.persondir.support.StubPersonAttributeDao"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	135	p:backingMap-ref="attrRepoBackingMap" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	136
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	137	<util:map id="attrRepoBackingMap">
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	138	<entry key="uid" value="uid" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	139	<entry key="eduPersonAffiliation" value="eduPersonAffiliation" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	140	<entry key="groupMembership" value="groupMembership" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	141	</util:map>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	142
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	143	<!--
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	144	Sample, in-memory data store for the ServiceRegistry. A real implementation
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	145	would probably want to replace this with the JPA-backed ServiceRegistry DAO
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	146	The name of this bean should remain "serviceRegistryDao".
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	147	+-->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	148	<bean id="serviceRegistryDao" class="org.jasig.cas.services.InMemoryServiceRegistryDaoImpl"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	149	p:registeredServices-ref="registeredServicesList" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	150
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	151	<util:list id="registeredServicesList">
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	152	<bean class="org.jasig.cas.services.RegexRegisteredService"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	153	p:id="0" p:name="HTTP and IMAP" p:description="Allows HTTP(S) and IMAP(S) protocols"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	154	p:serviceId="^(https?\|imaps?)://.*" p:evaluationOrder="10000001" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	155	<!--
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	156	Use the following definition instead of the above to further restrict access
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	157	to services within your domain (including sub domains).
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	158	Note that example.com must be replaced with the domain you wish to permit.
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	159	This example also demonstrates the configuration of an attribute filter
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	160	that only allows for attributes whose length is 3.
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	161	-->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	162	<!--
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	163	<bean class="org.jasig.cas.services.RegexRegisteredService">
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	164	<property name="id" value="1" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	165	<property name="name" value="HTTP and IMAP on example.com" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	166	<property name="description" value="Allows HTTP(S) and IMAP(S) protocols on example.com" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	167	<property name="serviceId" value="^(https?\|imaps?)://([A-Za-z0-9_-]+\.)example\.com/." />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	168	<property name="evaluationOrder" value="0" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	169	<property name="attributeFilter">
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	170	<bean class="org.jasig.cas.services.support.RegisteredServiceRegexAttributeFilter" c:regex="^\w{3}$" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	171	</property>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	172	</bean>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	173	-->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	174	</util:list>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	175
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	176	<bean id="auditTrailManager" class="com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	177
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	178	<bean id="healthCheckMonitor" class="org.jasig.cas.monitor.HealthCheckMonitor" p:monitors-ref="monitorsList" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	179
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	180	<util:list id="monitorsList">
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	181	<bean class="org.jasig.cas.monitor.MemoryMonitor" p:freeMemoryWarnThreshold="10" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	182	<!--
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	183	NOTE
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	184	The following ticket registries support SessionMonitor:
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	185	* DefaultTicketRegistry
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	186	* JpaTicketRegistry
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	187	Remove this monitor if you use an unsupported registry.
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	188	-->
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	189	<bean class="org.jasig.cas.monitor.SessionMonitor"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	190	p:ticketRegistry-ref="ticketRegistry"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	191	p:serviceTicketCountWarnThreshold="5000"
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	192	p:sessionCountWarnThreshold="100000" />
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	193	</util:list>
1afc9d2ab94d first commit of cas auth env ymh <ymh.work@gmail.com> parents: diff changeset	194	</beans>

author	ymh <ymh.work@gmail.com>
	Wed, 01 Apr 2015 15:31:12 +0200
changeset 0	1afc9d2ab94d
child 8	5a0cbbe0922a
permissions	-rw-r--r--