C SSO Properties (Sun Java System Access Manager 7 2005Q4 Developer's Guide)

Sun Java System Access Manager 7 2005Q4 Developer's Guide

C SSO Properties

Certain properties must be read in and passed to am_sso_init(), the routine which initializes C API. Because of this, am_sso_init() must be called before any other SSO interface. The default properties file used is AMAgent.properties, located in AccessManager-base/SUNWam/config/. The following properties must be set:

The com.sun.am.namingURL property specifies the URL for the Naming Service. This service is used to find the URL of the Session Service for the given SSOToken ID. This property must be set as:

com.sun.am.namingURL = https://myhost.mydomain.com:58080/amserver/namingservice
The com.sun.am.notificationEnabled and com.sun.am.notificationURL properties specify whether notification is enabled, and if enabled, a URL where the application can listen for messages from Access Manager. These properties must be set as:

com.sun.am.notificationEnabled=true

Note –

If com.sun.am.notificationEnabled is not found in the properties file, the default is false.

com.sun.am.notificationURL=https://myhost.mydomain.com:8000/myURL

The com.sun.am.sso.cacheEntryLifeTime property specifies how long, in minutes, a session token can live in cache before it should be removed. This property must be set as:

com.sun.am.sso.cacheEntryLifeTime=5

If not set, the default is 3 minutes.
The com.sun.am.sso.checkCacheInterval property specifies how often, in minutes, the cache should be checked for entries that have reached the cache entry life time. This property must be set as:

com.sun.am.sso.checkCacheInterval=5
The com.sun.am.sso.maxThreads specify the maximum number threads the SSO API should invoke for handling notifications. The API maintains a thread pool and invokes a thread for each notification. If the maximum number of threads has been reached, the notification will wait until a thread is available. If not specified the default maximum number of threads is 10. This property must be set as:

com.sun.am.sso.maxThreads = 5
The com.sun.am.cookieEnabled property specifies whether the session ID found in the cookie is URL encoded. If true, it will be URL decoded before sent to Access Manager for any session operation. This property must be set as:

com.sun.am.cookieEncoded = true|false

More information on properties in the AMAgent.properties file can be found in the J2EE Policy Agent Guide.