# Logging logging.level.org.springframework.web=DEBUG # Service path server.servlet.context-path=/eidas-ps #proxy-service.path.prefix=${spring.config.additional.location}.. #proxy-service.config.location=file://${spring.config.additional.location} proxy-service.image.logo=${spring.config.additional.location}/img/idp-logo.svg proxy-service.image.icon=${spring.config.additional.location}/img/idp-logo-notext.svg # Service port connector settings server.port=8443 #server.ssl.key-store=${proxy-service.path.prefix}/keystore/sslSnakeOil.p12 #server.ssl.key-store-type=PKCS12 #server.ssl.key-store-password=secret #server.ssl.key-password=secret tomcat.ajp.port=8009 tomcat.ajp.remoteauthentication=false tomcat.ajp.enabled=true # For development. Allowing signature check on metadata to be skipped. Default false. #proxy-service.dev.ignoreMetadataSignCheck=true # Initial delay in milliseconds (default 5000) and seconds between metadata configuration recache (default 240 sec). #proxy-service.daemon.inital.delay.ms=5000 proxy-service.daemon.recache.delay.sec=240 # Location of other properties files (general-metadata.properties, psidp-metadata.properties and natsp-metadata.properties) # Example specifying external location: 'proxy-service.config.location=file:///opt/webapp/eidas-ps/cfg/' # Example specifying src/main/resources config location: 'classpath:' proxy-service.country=SE # Key Store properties # Location can be specified as "classpath:" or as file path e.g "/opt/webapp/eidas-ps/keystore/keyStore.jks" proxy-service.pkcs11.external-config-locations=${spring.config.additional.location}/pkcs11.cfg proxy-service.pkcs11.reloadable-keys=false proxy-service.keySourceType=PKCS11 proxy-service.keySourcePass=${proxy-service.pkcs11.pin} proxy-service.keySourceAlias=sc_eidas_sign proxy-service.keySourceCertLocation=${spring.config.additional.location}/sign.crt proxy-service.encryption.keySourceType=PKCS11 proxy-service.encryption.keySourcePass=${proxy-service.pkcs11.pin} proxy-service.encryption.keySourceAlias=sc_eidas_encrypt proxy-service.encryption.keySourceCertLocation=${spring.config.additional.location}/enc.crt proxy-service.metadata.keySourceType=PKCS11 proxy-service.metadata.keySourcePass=${proxy-service.pkcs11.pin} proxy-service.metadata.keySourceAlias=sctest2 proxy-service.metadata.keySourceCertLocation=${spring.config.additional.location}/sctest2.crt # Session Encryption properties #proxy-service.cookieEncryptPw=changeme # Requirements to show consent dialogue (Default false); proxy-service.consent=true proxy-service.consent.attributes=urn:oid:1.2.752.201.3.7,\ urn:oid:2.5.4.4,\ urn:oid:2.5.4.42,\ urn:oid:1.3.6.1.5.5.7.9.3,\ urn:oid:1.3.6.1.5.5.7.9.1 proxy-service.consent.valuetranslation=urn:oid:1.3.6.1.5.5.7.9.3 # Welcome page presentation text location proxy-service.welcomepage.markdown=${proxy-service.path.prefix}/cfg/infotext.md #Metadata Service List location specified as either URL (http or https), "file://" or "classpath:" #proxy-service.eidasMdListLocation=https://test.md.eidas.swedenconnect.se/mdservicelist-aggregate.xml # Optional certificate file for validating metadata service list file signatures # If no certificate is specified then proxy-service.dev.ignoreMetadataSignCheck=true must be set #proxy-service.eidasMdListCertFile=${proxy-service.path.prefix}/cfg/sctest2.crt #Metadata location for aggregated metadata specified as either URL (http or https), "file://" or "classpath:" proxy-service.eidasMetadataLocation=https://test.md.eidas.swedenconnect.se/role/sp.xml # Optional certificate file for validating metadata signatures # If no certificate is specified then proxy-service.dev.ignoreMetadataSignCheck=true must be set proxy-service.eidasMetadataCertFile=${proxy-service.path.prefix}/cfg/sctest2.crt # Optional cache dir for caching downloaded metadata. If not set, cache is stored in memory. proxy-service.eidasMetadataCacheDirName=${proxy-service.path.prefix}/ps-mdcache #Metadata location for national IdP metadata specified as either URL (http or https), "file://" or "classpath:" proxy-service.nationalMetadata.test.location=https://test.md.swedenconnect.se/role/idp.xml proxy-service.nationalMetadata.test.certFile=${proxy-service.path.prefix}/cfg/sctest2.crt proxy-service.nationalMetadata.test.cacheFile=${proxy-service.path.prefix}/cache/test-metadata.xml proxy-service.nationalMetadata.test.index=0 management.server.context-path=/manage management.server.security.enabled=false management.server.port=8444 management.server.ssl.enabled=true proxy-service.syslog.enabled=true # Override default signature algorithms proxy-service.signature-algorithm=http://www.w3.org/2007/05/xmldsig-more#sha256-rsa-MGF1 proxy-service.signature-algorithm.md=${proxy-service.signature-algorithm} proxy-service.signature-algorithm.natsp=http://www.w3.org/2001/04/xmldsig-more#rsa-sha256 proxy-service.signature-algorithm.natsp.md=${proxy-service.signature-algorithm.natsp} #Private SP requests from other eIDAS countries proxy-service.private-sp.enabled=true #HTTP configuration #These configuration properties allow configuration of the HTTP client used to obtain metadata as well as for OpenID connect operations such as retrieving ID tokens and user-info tokens from the OP. proxy-service.http.connect-timeout=1000 proxy-service.http.read-timeout=5000