| ## index dir |
| krill.indexDir = ../sample-index |
| |
| krill.index.commit.count = 134217000 |
| krill.index.commit.log = log/krill.commit.log |
| krill.index.commit.auto = 500 |
| krill.index.relations.max = 100 |
| ## Directory path of virtual corpora to cache |
| krill.namedVC = vc |
| |
| #LDAP |
| ldap.config = file-path-to-ldap-config |
| |
| # Kustvakt |
| # multiple versions separated by space |
| supported.api.version = v0.1 v1.0 |
| |
| ## server |
| server.port=8089 |
| server.host=localhost |
| |
| ## mail settings |
| mail.enabled = false |
| mail.receiver = test@localhost |
| mail.sender = noreply@ids-mannheim.de |
| mail.address.retrieval = test |
| |
| ## mail.templates |
| template.group.invitation = notification.vm |
| |
| ## default layers |
| default.layer.partOfSpeech = tt |
| default.layer.lemma = tt |
| default.layer.orthography = opennlp |
| default.layer.dependency = mate |
| default.layer.constituent = corenlp |
| |
| ## delete configuration (default hard) |
| # delete.auto.group = hard |
| delete.group = soft |
| delete.group.member = soft |
| |
| ## availability regex |
| ## only support | |
| availability.regex.free = CC-BY.* |
| availability.regex.public = ACA.* | QAO-NC |
| availability.regex.all = QAO.* |
| |
| ## options referring to the security module! |
| |
| ## OAuth |
| ### (see de.ids_mannheim.korap.constant.AuthenticationMethod for possible |
| ### oauth.password.authentication values) |
| oauth2.password.authentication = TEST |
| oauth2.native.client.host = korap.ids-mannheim.de |
| oauth2.max.attempts = 2 |
| # expiry in seconds (S), minutes (M), hours (H), days (D) |
| oauth2.access.token.expiry = 3S |
| oauth2.refresh.token.expiry = 90D |
| oauth2.authorization.code.expiry = 10M |
| # -- scopes separated by space |
| oauth2.default.scopes = openid search match_info |
| oauth2.client.credentials.scopes = client_info |
| |
| ## OpenId |
| ### multiple values are separated by space |
| openid.grant.types = authorization_code |
| openid.response.types = code |
| openid.response.modes = query |
| openid.client.auth.methods = client_secret_basic client_secret_post |
| openid.token.signing.algorithms = RS256 |
| openid.subject.types = public |
| openid.display.types = page |
| openid.supported.scopes = openid email auth_time |
| openid.support.claim.param = false |
| openid.claim.types = normal |
| openid.supported.claims = iss sub aud exp iat |
| openid.ui.locales = en |
| #openid.privacy.policy = |
| #openid.term.of.service = |
| openid.service.doc = https://github.com/KorAP/Kustvakt/wiki |
| |
| ## JWT |
| security.jwt.issuer=https://korap.ids-mannheim.de |
| |
| ## JWK |
| ## must be set for openid |
| rsa.private = kustvakt_rsa.key |
| rsa.public = kustvakt_rsa_public.key |
| rsa.key.id = 74caa3a9-217c-49e6-94e9-2368fdd02c35 |
| |
| ## token expiration time |
| security.longTokenTTL = 1D |
| security.tokenTTL = 2S |
| security.shortTokenTTL = 1S |
| |
| ## see SecureRandom Number Generation Algorithms |
| ## default SHA1PRNG |
| security.secure.random.algorithm=SHA1PRNG |
| |
| ## see MessageDigest Algorithms |
| ## default MD5 |
| security.md.algoritm = SHA-256 |
| |
| ### secure hash support: BCRYPT, ESAPICYPHER |
| security.secure.hash.algorithm=BCRYPT |
| security.passcode.salt=salt |
| |
| security.idleTimeoutDuration = 25M |
| security.multipleLogIn = true |
| security.loginAttemptNum = 3 |
| security.authAttemptTTL = 45M |
| |
| security.encryption.loadFactor = 8 |
| security.validation.stringLength = 150 |
| security.validation.emailLength = 50 |
| |
| security.sharedSecret=this-is-shared-secret-code-for-JWT-Signing.It-must-contains-minimum-256-bits |
| |
| ## applicable: rewrite, foundry, filter, deny |
| security.rewrite.strategies=filter, foundry, rewrite |