parent
ecda000395
commit
f890415bae
@ -0,0 +1,74 @@
|
|||||||
|
<?xml version="1.0" encoding="ISO-8859-1"?>
|
||||||
|
|
||||||
|
<!--
|
||||||
|
~ Copyright 2005-2011 WSO2, Inc. (http://wso2.com)
|
||||||
|
~
|
||||||
|
~ Licensed under the Apache License, Version 2.0 (the "License");
|
||||||
|
~ you may not use this file except in compliance with the License.
|
||||||
|
~ You may obtain a copy of the License at
|
||||||
|
~
|
||||||
|
~ http://www.apache.org/licenses/LICENSE-2.0
|
||||||
|
~
|
||||||
|
~ Unless required by applicable law or agreed to in writing, software
|
||||||
|
~ distributed under the License is distributed on an "AS IS" BASIS,
|
||||||
|
~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||||
|
~ See the License for the specific language governing permissions and
|
||||||
|
~ limitations under the License.
|
||||||
|
-->
|
||||||
|
|
||||||
|
<!--
|
||||||
|
This is the configuration file for Carbon authenticators. All the authenticator related configurations
|
||||||
|
should go here.
|
||||||
|
-->
|
||||||
|
<Authenticators xmlns="http://wso2.org/projects/carbon/authenticators.xml">
|
||||||
|
|
||||||
|
<!-- Authenticator Configurations for TokenUIAuthenticator -->
|
||||||
|
<Authenticator name="TokenUIAuthenticator" disabled="true">
|
||||||
|
<Priority>5</Priority>
|
||||||
|
</Authenticator>
|
||||||
|
|
||||||
|
<!-- Authenticator Configurations for SAML2SSOAuthenticator -->
|
||||||
|
<Authenticator name="SAML2SSOAuthenticator" disabled="true">
|
||||||
|
<Priority>10</Priority>
|
||||||
|
<Config>
|
||||||
|
<Parameter name="LoginPage">/carbon/admin/login.jsp</Parameter>
|
||||||
|
<Parameter name="ServiceProviderID">carbonServer</Parameter>
|
||||||
|
<Parameter name="IdentityProviderSSOServiceURL">https://localhost:9443/samlsso</Parameter>
|
||||||
|
<Parameter name="NameIDPolicyFormat">urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</Parameter>
|
||||||
|
<Parameter name="AssertionConsumerServiceURL">https://localhost:9443/acs</Parameter>
|
||||||
|
|
||||||
|
<!-- <Parameter name="IdPCertAlias">wso2carbon</Parameter> -->
|
||||||
|
<!-- <Parameter name="ResponseSignatureValidationEnabled">false</Parameter> -->
|
||||||
|
<!-- <Parameter name="AssertionSignatureValidationEnabled">false</Parameter> -->
|
||||||
|
<!-- <Parameter name="LoginAttributeName"></Parameter> -->
|
||||||
|
<!-- <Parameter name="RoleClaimAttribute"></Parameter> -->
|
||||||
|
<!-- <Parameter name="AttributeValueSeparator">,</Parameter> -->
|
||||||
|
|
||||||
|
<!-- <Parameter name="JITUserProvisioning">true</Parameter> -->
|
||||||
|
<!-- <Parameter name="ProvisioningDefaultUserstore">PRIMARY</Parameter> -->
|
||||||
|
<!-- <Parameter name="ProvisioningDefaultRole">admin</Parameter> -->
|
||||||
|
<!-- <Parameter name="IsSuperAdminRoleRequired">true</Parameter> -->
|
||||||
|
</Config>
|
||||||
|
|
||||||
|
<!-- If this authenticator should skip any URI from authentication, specify it under "SkipAuthentication"
|
||||||
|
<SkipAuthentication>
|
||||||
|
<UrlContains></UrlContains>
|
||||||
|
</SkipAuthentication> -->
|
||||||
|
|
||||||
|
<!-- If this authenticator should skip any URI from session validation, specify it under "SkipAuthentication
|
||||||
|
<SkipSessionValidation>
|
||||||
|
<UrlContains></UrlContains>
|
||||||
|
</SkipSessionValidation> -->
|
||||||
|
</Authenticator>
|
||||||
|
|
||||||
|
<!-- Authenticator Configurations for MutualSSLAuthenticator -->
|
||||||
|
<Authenticator name="MutualSSLAuthenticator" disabled="false">
|
||||||
|
<Priority>5</Priority>
|
||||||
|
<Config>
|
||||||
|
<Parameter name="UsernameHeader">UserName</Parameter>
|
||||||
|
<Parameter name="WhiteListEnabled">false</Parameter>
|
||||||
|
<Parameter name="WhiteList"/>
|
||||||
|
</Config>
|
||||||
|
</Authenticator>
|
||||||
|
|
||||||
|
</Authenticators>
|
@ -0,0 +1,99 @@
|
|||||||
|
<?xml version='1.0' encoding='utf-8'?>
|
||||||
|
<!--
|
||||||
|
Licensed to the Apache Software Foundation (ASF) under one or more
|
||||||
|
contributor license agreements. See the NOTICE file distributed with
|
||||||
|
this work for additional information regarding copyright ownership.
|
||||||
|
The ASF licenses this file to You under the Apache License, Version 2.0
|
||||||
|
(the "License"); you may not use this file except in compliance with
|
||||||
|
the License. You may obtain a copy of the License at
|
||||||
|
|
||||||
|
http://www.apache.org/licenses/LICENSE-2.0
|
||||||
|
|
||||||
|
Unless required by applicable law or agreed to in writing, software
|
||||||
|
distributed under the License is distributed on an "AS IS" BASIS,
|
||||||
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||||
|
See the License for the specific language governing permissions and
|
||||||
|
limitations under the License.
|
||||||
|
-->
|
||||||
|
|
||||||
|
<Server port="8005" shutdown="SHUTDOWN">
|
||||||
|
|
||||||
|
<Service className="org.wso2.carbon.tomcat.ext.service.ExtendedStandardService" name="Catalina">
|
||||||
|
|
||||||
|
<!--
|
||||||
|
optional attributes:
|
||||||
|
|
||||||
|
proxyPort="80"
|
||||||
|
-->
|
||||||
|
<Connector protocol="org.apache.coyote.http11.Http11NioProtocol"
|
||||||
|
port="9763"
|
||||||
|
redirectPort="9443"
|
||||||
|
bindOnInit="false"
|
||||||
|
maxHttpHeaderSize="8192"
|
||||||
|
acceptorThreadCount="2"
|
||||||
|
maxThreads="250"
|
||||||
|
minSpareThreads="50"
|
||||||
|
disableUploadTimeout="false"
|
||||||
|
connectionUploadTimeout="120000"
|
||||||
|
maxKeepAliveRequests="200"
|
||||||
|
acceptCount="200"
|
||||||
|
server="WSO2 Carbon Server"
|
||||||
|
compression="on"
|
||||||
|
compressionMinSize="2048"
|
||||||
|
noCompressionUserAgents="gozilla, traviata"
|
||||||
|
compressableMimeType="text/html,text/javascript,application/x-javascript,application/javascript,application/xml,text/css,application/xslt+xml,text/xsl,image/gif,image/jpg,image/jpeg"
|
||||||
|
URIEncoding="UTF-8"/>
|
||||||
|
|
||||||
|
<!--
|
||||||
|
optional attributes:
|
||||||
|
|
||||||
|
proxyPort="443"
|
||||||
|
Added sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2" for poodle vulnerability fix
|
||||||
|
-->
|
||||||
|
<Connector protocol="org.apache.coyote.http11.Http11NioProtocol"
|
||||||
|
port="9443"
|
||||||
|
bindOnInit="false"
|
||||||
|
sslProtocol="TLS"
|
||||||
|
sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2"
|
||||||
|
maxHttpHeaderSize="8192"
|
||||||
|
acceptorThreadCount="2"
|
||||||
|
maxThreads="250"
|
||||||
|
minSpareThreads="50"
|
||||||
|
disableUploadTimeout="false"
|
||||||
|
enableLookups="false"
|
||||||
|
connectionUploadTimeout="120000"
|
||||||
|
maxKeepAliveRequests="200"
|
||||||
|
acceptCount="200"
|
||||||
|
server="WSO2 Carbon Server"
|
||||||
|
clientAuth="want"
|
||||||
|
compression="on"
|
||||||
|
scheme="https"
|
||||||
|
secure="true"
|
||||||
|
SSLEnabled="true"
|
||||||
|
compressionMinSize="2048"
|
||||||
|
noCompressionUserAgents="gozilla, traviata"
|
||||||
|
compressableMimeType="text/html,text/javascript,application/x-javascript,application/javascript,application/xml,text/css,application/xslt+xml,text/xsl,image/gif,image/jpg,image/jpeg"
|
||||||
|
keystoreFile="${carbon.home}/repository/resources/security/wso2carbon.jks"
|
||||||
|
keystorePass="wso2carbon"
|
||||||
|
URIEncoding="UTF-8"/>
|
||||||
|
|
||||||
|
|
||||||
|
<Engine name="Catalina" defaultHost="localhost">
|
||||||
|
|
||||||
|
<!--Realm className="org.apache.catalina.realm.MemoryRealm" pathname="${carbon.home}/repository/conf/tomcat/tomcat-users.xml"/-->
|
||||||
|
|
||||||
|
<Realm className="org.wso2.carbon.tomcat.ext.realms.CarbonTomcatRealm"/>
|
||||||
|
|
||||||
|
<Host name="localhost" unpackWARs="true" deployOnStartup="false" autoDeploy="false"
|
||||||
|
appBase="${carbon.home}/repository/deployment/server/webapps/">
|
||||||
|
<Valve className="org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve"/>
|
||||||
|
<Valve className="org.apache.catalina.valves.AccessLogValve" directory="${carbon.home}/repository/logs"
|
||||||
|
prefix="http_access_" suffix=".log"
|
||||||
|
pattern="combined"/>
|
||||||
|
<Valve className="org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetectionValve" threshold="600"/>
|
||||||
|
<Valve className="org.wso2.carbon.tomcat.ext.valves.CompositeValve"/>
|
||||||
|
</Host>
|
||||||
|
</Engine>
|
||||||
|
</Service>
|
||||||
|
</Server>
|
||||||
|
|
@ -0,0 +1,99 @@
|
|||||||
|
<?xml version='1.0' encoding='utf-8'?>
|
||||||
|
<!--
|
||||||
|
Licensed to the Apache Software Foundation (ASF) under one or more
|
||||||
|
contributor license agreements. See the NOTICE file distributed with
|
||||||
|
this work for additional information regarding copyright ownership.
|
||||||
|
The ASF licenses this file to You under the Apache License, Version 2.0
|
||||||
|
(the "License"); you may not use this file except in compliance with
|
||||||
|
the License. You may obtain a copy of the License at
|
||||||
|
|
||||||
|
http://www.apache.org/licenses/LICENSE-2.0
|
||||||
|
|
||||||
|
Unless required by applicable law or agreed to in writing, software
|
||||||
|
distributed under the License is distributed on an "AS IS" BASIS,
|
||||||
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||||
|
See the License for the specific language governing permissions and
|
||||||
|
limitations under the License.
|
||||||
|
-->
|
||||||
|
|
||||||
|
<Server port="8005" shutdown="SHUTDOWN">
|
||||||
|
|
||||||
|
<Service className="org.wso2.carbon.tomcat.ext.service.ExtendedStandardService" name="Catalina">
|
||||||
|
|
||||||
|
<!--
|
||||||
|
optional attributes:
|
||||||
|
|
||||||
|
proxyPort="80"
|
||||||
|
-->
|
||||||
|
<Connector protocol="org.apache.coyote.http11.Http11NioProtocol"
|
||||||
|
port="9763"
|
||||||
|
redirectPort="9443"
|
||||||
|
bindOnInit="false"
|
||||||
|
maxHttpHeaderSize="8192"
|
||||||
|
acceptorThreadCount="2"
|
||||||
|
maxThreads="250"
|
||||||
|
minSpareThreads="50"
|
||||||
|
disableUploadTimeout="false"
|
||||||
|
connectionUploadTimeout="120000"
|
||||||
|
maxKeepAliveRequests="200"
|
||||||
|
acceptCount="200"
|
||||||
|
server="WSO2 Carbon Server"
|
||||||
|
compression="on"
|
||||||
|
compressionMinSize="2048"
|
||||||
|
noCompressionUserAgents="gozilla, traviata"
|
||||||
|
compressableMimeType="text/html,text/javascript,application/x-javascript,application/javascript,application/xml,text/css,application/xslt+xml,text/xsl,image/gif,image/jpg,image/jpeg"
|
||||||
|
URIEncoding="UTF-8"/>
|
||||||
|
|
||||||
|
<!--
|
||||||
|
optional attributes:
|
||||||
|
|
||||||
|
proxyPort="443"
|
||||||
|
Added sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2" for poodle vulnerability fix
|
||||||
|
-->
|
||||||
|
<Connector protocol="org.apache.coyote.http11.Http11NioProtocol"
|
||||||
|
port="9443"
|
||||||
|
bindOnInit="false"
|
||||||
|
sslProtocol="TLS"
|
||||||
|
sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2"
|
||||||
|
maxHttpHeaderSize="8192"
|
||||||
|
acceptorThreadCount="2"
|
||||||
|
maxThreads="250"
|
||||||
|
minSpareThreads="50"
|
||||||
|
disableUploadTimeout="false"
|
||||||
|
enableLookups="false"
|
||||||
|
connectionUploadTimeout="120000"
|
||||||
|
maxKeepAliveRequests="200"
|
||||||
|
acceptCount="200"
|
||||||
|
server="WSO2 Carbon Server"
|
||||||
|
clientAuth="want"
|
||||||
|
compression="on"
|
||||||
|
scheme="https"
|
||||||
|
secure="true"
|
||||||
|
SSLEnabled="true"
|
||||||
|
compressionMinSize="2048"
|
||||||
|
noCompressionUserAgents="gozilla, traviata"
|
||||||
|
compressableMimeType="text/html,text/javascript,application/x-javascript,application/javascript,application/xml,text/css,application/xslt+xml,text/xsl,image/gif,image/jpg,image/jpeg"
|
||||||
|
keystoreFile="${carbon.home}/repository/resources/security/wso2carbon.jks"
|
||||||
|
keystorePass="wso2carbon"
|
||||||
|
URIEncoding="UTF-8"/>
|
||||||
|
|
||||||
|
|
||||||
|
<Engine name="Catalina" defaultHost="localhost">
|
||||||
|
|
||||||
|
<!--Realm className="org.apache.catalina.realm.MemoryRealm" pathname="${carbon.home}/repository/conf/tomcat/tomcat-users.xml"/-->
|
||||||
|
|
||||||
|
<Realm className="org.wso2.carbon.tomcat.ext.realms.CarbonTomcatRealm"/>
|
||||||
|
|
||||||
|
<Host name="localhost" unpackWARs="true" deployOnStartup="false" autoDeploy="false"
|
||||||
|
appBase="${carbon.home}/repository/deployment/server/webapps/">
|
||||||
|
<Valve className="org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve"/>
|
||||||
|
<Valve className="org.apache.catalina.valves.AccessLogValve" directory="${carbon.home}/repository/logs"
|
||||||
|
prefix="http_access_" suffix=".log"
|
||||||
|
pattern="combined"/>
|
||||||
|
<Valve className="org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetectionValve" threshold="600"/>
|
||||||
|
<Valve className="org.wso2.carbon.tomcat.ext.valves.CompositeValve"/>
|
||||||
|
</Host>
|
||||||
|
</Engine>
|
||||||
|
</Service>
|
||||||
|
</Server>
|
||||||
|
|
Loading…
Reference in new issue