|
1 # |
|
2 # Licensed to Jasig under one or more contributor license |
|
3 # agreements. See the NOTICE file distributed with this work |
|
4 # for additional information regarding copyright ownership. |
|
5 # Jasig licenses this file to you under the Apache License, |
|
6 # Version 2.0 (the "License"); you may not use this file |
|
7 # except in compliance with the License. You may obtain a |
|
8 # copy of the License at the following location: |
|
9 # |
|
10 # http://www.apache.org/licenses/LICENSE-2.0 |
|
11 # |
|
12 # Unless required by applicable law or agreed to in writing, |
|
13 # software distributed under the License is distributed on an |
|
14 # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
|
15 # KIND, either express or implied. See the License for the |
|
16 # specific language governing permissions and limitations |
|
17 # under the License. |
|
18 # |
|
19 |
|
20 server.name=http://localhost:8080 |
|
21 server.prefix=${server.name}/cas |
|
22 # IP address or CIDR subnet allowed to access the /status URI of CAS that exposes health check information |
|
23 cas.securityContext.status.allowedSubnet=127.0.0.1 |
|
24 |
|
25 |
|
26 cas.themeResolver.defaultThemeName=cas-theme-default |
|
27 cas.viewResolver.basename=default_views |
|
28 |
|
29 ## |
|
30 # Unique CAS node name |
|
31 # host.name is used to generate unique Service Ticket IDs and SAMLArtifacts. This is usually set to the specific |
|
32 # hostname of the machine running the CAS node, but it could be any label so long as it is unique in the cluster. |
|
33 host.name=cas01.example.org |
|
34 |
|
35 ## |
|
36 # Database flavors for Hibernate |
|
37 # |
|
38 # One of these is needed if you are storing Services or Tickets in an RDBMS via JPA. |
|
39 # |
|
40 # database.hibernate.dialect=org.hibernate.dialect.OracleDialect |
|
41 # database.hibernate.dialect=org.hibernate.dialect.MySQLInnoDBDialect |
|
42 # database.hibernate.dialect=org.hibernate.dialect.HSQLDialect |
|
43 |
|
44 ## |
|
45 # CAS Logout Behavior |
|
46 # WEB-INF/cas-servlet.xml |
|
47 # |
|
48 # Specify whether CAS should redirect to the specified service parameter on /logout requests |
|
49 cas.logout.followServiceRedirects=true |
|
50 |
|
51 ## |
|
52 # Single Sign-On Session Timeouts |
|
53 # Defaults sourced from WEB-INF/spring-configuration/ticketExpirationPolices.xml |
|
54 # |
|
55 # Maximum session timeout - TGT will expire in maxTimeToLiveInSeconds regardless of usage |
|
56 # tgt.maxTimeToLiveInSeconds=28800 |
|
57 # |
|
58 # Idle session timeout - TGT will expire sooner than maxTimeToLiveInSeconds if no further requests |
|
59 # for STs occur within timeToKillInSeconds |
|
60 # tgt.timeToKillInSeconds=7200 |
|
61 |
|
62 ## |
|
63 # Service Ticket Timeout |
|
64 # Default sourced from WEB-INF/spring-configuration/ticketExpirationPolices.xml |
|
65 # |
|
66 # Service Ticket timeout - typically kept short as a control against replay attacks, default is 10s. You'll want to |
|
67 # increase this timeout if you are manually testing service ticket creation/validation via tamperdata or similar tools |
|
68 # st.timeToKillInSeconds=10 |
|
69 |
|
70 ## |
|
71 # Single Logout Out Callbacks |
|
72 # Default sourced from WEB-INF/spring-configuration/argumentExtractorsConfiguration.xml |
|
73 # |
|
74 # To turn off all back channel SLO requests set slo.disabled to true |
|
75 # slo.callbacks.disabled=false |
|
76 |
|
77 ## |
|
78 # Service Registry Periodic Reloading Scheduler |
|
79 # Default sourced from WEB-INF/spring-configuration/applicationContext.xml |
|
80 # |
|
81 # Force a startup delay of 2 minutes. |
|
82 # service.registry.quartz.reloader.startDelay=120000 |
|
83 # |
|
84 # Reload services every 2 minutes |
|
85 # service.registry.quartz.reloader.repeatInterval=120000 |
|
86 |
|
87 ## |
|
88 # Log4j |
|
89 # Default sourced from WEB-INF/spring-configuration/log4jConfiguration.xml: |
|
90 # |
|
91 # It is often time helpful to externalize log4j.xml to a system path to preserve settings between upgrades. |
|
92 # e.g. log4j.config.location=/etc/cas/log4j.xml |
|
93 log4j.config.location=/etc/cas/log4j.xml |
|
94 # |
|
95 log4j refresh interval in millis |
|
96 log4j.refresh.interval=60000 |
|
97 |
|
98 ## |
|
99 # Password Policy |
|
100 # |
|
101 # Warn all users of expiration date regardless of warningDays value. |
|
102 password.policy.warnAll=false |
|
103 |
|
104 # Threshold number of days to begin displaying password expiration warnings. |
|
105 password.policy.warningDays=30 |
|
106 |
|
107 # URL to which the user will be redirected to change the passsword. |
|
108 password.policy.url=https://password.example.edu/change |