A Oracle Autonomous Mobile Cloud Enterprise Policies
This chapter lists the policies that you can configure in Oracle Autonomous Mobile Cloud Enterprise (AMCe). Policies control a variety of things, including logging level, password expiration times, means for restricting user access, and proxies. Policies can affect all artifacts of a specific type, or they can affect an individual artifact.
Note:
The scope value shown is the narrowest level at which the property can be set.AMCe Policies and Values
Policies determine the behavior of various aspects of AMCe. As AMCe administrator, you can view and modify the policies in the policies.properties
file by exporting the file from the Administration page.
Policy | Type / Description | Default Value | Scope / Affects |
---|---|---|---|
|
String. Stores an association between the backend and the Analytics application. The value is the Application ID. |
There is no default value for this policy. |
Scope: Backend Affects: Backend |
|
String. Stores the name of the CSF key that stores the Baidu application key (ak). |
There is no default value for this policy. |
Scope: Backend Affects: Backend |
|
String. Controls whether or not Draft and Published artifacts in the trash can be purged (deleted permanently). Valid values are:
|
All |
Scope: Instance Affects: Backend, Custom API, API Implementation, Connector, and Collection |
|
String. Controls whether or not Draft and Published artifacts can be moved to the trash. Valid values are:
|
All |
Scope: Instance Affects: Backend, Custom API, API Implementation, Connector, and Collection |
|
String. Controls whether or not Draft and Published artifacts can be restored from the trash. Valid values are:
|
All |
Scope: Instance Affects: Backend, Custom API, API Implementation, Connector, and Collection |
|
String. Sets the default version for all newly created artifacts. |
1.0 Note: Generally, the default value should be used. |
Scope: Instance Affects: All artifacts that have versions |
|
String. Sets the default node.js configuration used by the API implementation (custom code). The custom code implementation can override the default node configuration in its package.json. |
For instances of AMCe provisioned before 18.3.3, the default node.js configuration by default is 6.10. For instances provisioned as 18.3.3 or above, the default node.js configuration by default is 8.9.4. |
Scope: Instance Affects: Custom Code |
Valid values are:
|
|||
|
Boolean. Determines whether to log the body of a request in custom code. Bodies will be logged in the following circumstances:
|
false |
Scope: Backend Affects: Custom Code |
|
Integer. Sets the maximum number of characters to log if the custom code is logging the request body. |
512 |
Scope: Backend Affects: Custom Code |
|
Boolean. Determines whether or not to send the stack trace from node.js with the REST response from the custom code container indicating that there is a code problem. |
false |
Scope: Backend Affects: Custom Code |
|
String. Stores the endpoint URL of the particular connector instance. Set this policy by uncommenting the policy. |
There is no default value for this policy. The initial value is set when the connector is created. |
Scope: Connector Affects: Connectors |
|
String. Identifies the JSON document representing connections to each configured ICS instance. |
null |
Scope: Instance Affects: ICS Connector |
|
String. Controls whether the Database API can create, alter, or drop tables from custom code or SQL. The default value ( Setting this policy to |
allow |
Scope: Instance Affects: Database Service |
|
Integer. Sets the maximum number of rows that can be returned by a single database query. |
1000 |
Scope: Instance Affects: Database Service |
|
Integer. Sets the number of seconds to wait for a database query to return before canceling it. |
20 |
Scope: Instance Affects: Database Service |
|
String. Creates a list of headers that shouldn’t be logged with each API request in the API History log file. |
Authorization header, cookie name |
Scope: Instance Affects: Administration |
|
Double. Sets the percentage of requests returning error codes compared with total request above which the service will report an error condition. Set this value higher than the one set for the |
10 |
Scope: Instance Affects: Administration |
|
Double. Sets the percentage of requests returning error codes compared with total request above which the service will report a warning condition. |
1 |
Scope: Instance Affects: Administration |
|
Integer. Sets the logging level. |
800 |
Scope: Backend Affects: Custom APIs, Storage |
|
Integer. Sets the amount of time spent in milliseconds (ms) connecting to the remote URL. The value should be less than the value of |
There is no default value for this policy. The initial value is set when the connector is created. |
Scope: Instance, Backend, Connector, Fully-Qualified Connector Affects: Connectors |
|
Integer. Sets the maximum time (in milliseconds) spent waiting to read data. The value should be less than the value of |
There is no default value for this policy. The initial value is set when the connector is created. |
Scope: Instance, Backend, Connector, Fully-Qualified Connector Affects: Connectors |
|
Integer. Sets the amount of time in milliseconds (ms) on an HTTP request before it times out. |
40,000 ms |
Scope: Instance Affects: Custom APIs |
|
Double. Defines the threshold level (percentage) of messages sent successfully without returning an error. If the proportion of messages accepted by the service provider is below the threshold, then a warning is displayed. The default value is 70.0 (70%). Set this policy as needed. |
70.0 Note: For testing purposes only, consider setting this value to 100.0 (100%). |
Scope: Instance Affects: Notifications |
|
String. Determines which core service to use to resolve the API request. |
There is no default value for this policy. |
Scope: API Affects: Custom APIs, Connectors |
|
Boolean. Resolves the API request to a mock service instead of the implementation that’s bound to the API. |
false Note: Do not modify this policy. |
Scope: Fully-Qualified API Affects: Backend, Custom APIs |
|
String. Specifies the default implementation for the initially created API (that is, the mock service). |
MockService/1.0 Note: Do not modify this policy. |
Scope: Instance Affects: Custom APIs |
|
String. Reroutes mobile API calls made to a backend to the target backend specified. |
There is no default value for this policy. |
Scope: Backend Affects: Dispatcher |
|
String. Enables Cross Origin Resource Sharing (CORS) from HTML5 clients on an external domain. Supported values are:
|
disallow Note: When dealing with browser-based applications, it’s highly recommended that cross-site access to APIs either be restricted completely, or be restricted to trusted origins where legitimate applications are known to be hosted to prevent vulnerability to cross-site attacks (e.g., Cross-Site Request Forgery). |
Scope: Instance Affects: All cross origin calls to a given instance |
|
JSON Object. Provides a configuration to integrate with third-party identity providers that support JWT, which mobile app users can use to authenticate. |
Scope: Environment Affects: Security |
|
|
A comma-separated list of storage collections following this pattern:
Sets a storage collection to allow anonymous access. For each storage collection listed in the policy, anonymous read and write access will be allowed, provided that the correct anonymous access key is defined in the request headers. Specifying '* ' as the version allows anonymous access to all versions of the collection.
|
No default value |
Scope: Storage Collections Affects: Only the listed Collections |
|
String. Provides a means for browsers to access the server whitelist headers. By default, Cross Origin Resource Sharing (CORS) disallows accessing returned headers by the browser. Applies to HTML5 clients accessing a given resource from an external domain. |
"" Indicates that no response headers are to be exposed to the browser. |
Scope: Instance Affects: All cross origin calls to a given instance |
|
String. Stores identity providers configuration. |
Facebook identity provider configuration |
Scope: Instance Affects: Security |
|
Boolean. Disables the SSL host name verification. To be applied to connectors (in development) that call outbound services using SSL certificates with an invalid or incomplete hostname. |
false |
Scope: Instance Affects: REST, SOAP, ICS, and Fusion Applications Connectors |
|
Object. Sets the security policy used for outbound security. |
There is no default value for this policy. The initial value is set when the connector is created. |
Scope: Connector Affects: Connectors |
|
String. Lists the URL patterns for the SSO |
disallow |
Scope: Instance, Backend Affects: SSO Token Relay |
|
String. Defines the policy that governs the expiration time for tokens generated and issued as a result of token exchange. Valid values are:
|
|
Scope: Instance Affects: SSO Token Exchange |
|
Integer. Sets the token expiration time for SSO login. |
216000 s |
Scope: Instance Affects: SSO Token Relay |
|
String. Specifies a list of the TLS/SSL protocols that should be used for the outbound connection for the specific connector. By default, only TLSv1.2 protocols are used for outbound connections. This property can be used to override the system defaults so that connections can be established to legacy systems that don't support new versions of TLS/SSL. Caution: Use this property carefully as older protocols are more vulnerable to security exploits. Valid value is a comma separated list of the TLS/SSL protocols. Note that extra spaces around the protocol names are ignored. For example, TLSv1, TLSv1.1, TLSv1.2. Supported protocols are: SSLv2Hello, TLSv1, TLSv1.1, TLSv1.2. |
No default value |
Scope: Connectors, Fully-qualified Connectors Affects: All Connectors |
|
Integer. Sets the default amount of time that data requested by a mobile app from a storage collection remains in the local cache that’s used by the Synchronization library. |
86400 s Set this policy as needed. |
Scope: Instance Affects: Storage |
|
Boolean. Controls how spaces in query parameters of a URL are encoded. If set to true encodes spaces as |
false |
Scope: Connector Affects: REST Connector |