C policy.properties
The policy.properties
file, provided here, is a multipurpose configuration file that contains basic parameters required by the single sign-on server. The file is also used to implement advanced features such as multilevel authentication.
# SSO Server policy configurations############################################################# Authentication Levels# ---------------------# Set the auth levels from lower value to higher value.# 10 being the lowest authentication level# The auth level names (on the left hand side) can be changed to# some other names if desired as long as the change is consistent# in other usages within the policy file.NoSecurity = 10LowSecurity = 20LowMediumSecurity = 30MediumSecurity = 40MediumHighSecurity = 50HighSecurity = 60################################################################ DefaultAuthLevel# ----------------# DefaultAuthLevel entry must have a value assigned.DefaultAuthLevel = MediumSecurity###################################################################### Authentication plugins# ----------------------# Assign a class name that implements SSOServerAuthInterface# for each auth level referenced.## The Authentication level name must be appended with# "_AuthPlugin" keyword.MediumSecurity_AuthPlugin = oracle.security.sso.server.auth.SSOServerAuth
###################################################################### Custom Cookie Provider Class name# ---------------------------------# Sample custom cookie tester provider class# CustomCookie_ProviderPlugin = oracle.security.sso.server.auth.CustomCookieTester# Custom Cookie auth level# ------------------------# This is a mandatory attribute. If custom cookies are not needed it should# be set to a higher value than any of the authentication levels used.CustomCookieAuthLevel = HighSecurity
######################################################################### Protected URL configurations# ------------------------------# Assign a auth level to each protected (partner) application that is# participating in SSO. If any of the partner apps are not listed with# a specific auth level, then the DefaultAuthLevel will be used.## Protected application URL configuration format:# "Partner Application Root URL" = "AuthenticationLevel"# host.company.com\:port = AuthLevelName# NOTE: The required backslash(escape character) before the# colon (:) character immediately preceding.# There should be a corresponding auth plugin configured for the# "AuthenticationLevel" used.## Examples:# The following example configures a SSO partner application hosted# on host1.company.com:7777 machine using LowSecurity authentication level.# This configuration will secure all URLs hosted on this host/port.# host1.company.com\:7777 = LowSecurity## The following example configures a SSO partner application hosted# on host2.company.com:7777 machine using MediumSecurity authentication level# This configuration will secure all URLs hosted on this host/port.# host2.company.com\:7777 = MediumSecurity##################################################################SSO Server specfic configurations# set the cache size in kbytes#default is 250cacheSize = -1#set the minimum number of connections in the connection pool#default is 5minConnectionsInPool = 5#set the maximum number of connections in the connection pool#default is 150maxConnectionsInPool = 150
#LDAP and database connection pool timeout in minutes
connectionIdleTimeout = 120
#Debug level {ERROR, WARN, INFO, DEBUG}
# default debug level is set to ERROR
debugLevel = ERROR
#Debug file location
#This is a mandatory property that needs to be passed
#the SSO server. A valid file location should be specified here
debugFile = /private/vshriram/infra1012/sso/log/ssoServer.log
#Deployment login page link
loginPageUrl = /sso/pages/login.jsp
#Deployment logout page link
logoutPageUrl = /sso/pages/logout.jsp
#Deployment external application login page link
extAppLoginPageUrl = /sso/pages/ealogin.jsp
#Deployment change password page linkchgPasswordPageUrl = /sso/pages/password.jsp#Wireless login page linkwirelessLoginPageUrl = /wirelesssso/wirelesslogin.jspwirelessChgPasswordPageUrl = /wirelesssso/wirelesscpwd.jspSASSOAuthnUrl = http\://stads41.us.oracle.com\:/sso/authnSASSOLogoutUrl = http\://stads41.us.oracle.com\:/sso/jsp/sasso_logout_success.jspSASSOAuthLevel = HighSecurity
#SASSO keyfile
SASSOConfigFile = %s_ssoLogOH%/sso/conf/keystore
#SASSO key rollover interval
ROLLOVER_INTERVAL = 600