blob: 694abcec7dc87ca15a31347ea5da4eb61d5cd021 [file] [log] [blame]
margarethafc9e4072017-08-29 18:34:01 +02001## index dir
margarethacfea1ae2018-01-15 20:27:26 +01002krill.indexDir = ../sample-index
margarethafc9e4072017-08-29 18:34:01 +02003
4krill.index.commit.count = 134217000
5krill.index.commit.log = log/krill.commit.log
6krill.index.commit.auto = 500
7krill.index.relations.max = 100
8
margaretha56e8e552017-12-05 16:31:21 +01009#LDAP
10ldap.config = file-path-to-ldap-config
11
12# Kustvakt
margaretha56e8e552017-12-05 16:31:21 +010013## server
14server.port=8089
15server.host=localhost
16
margarethaa86b1412018-02-21 20:40:35 +010017## mail settings
18mail.enabled = false
19mail.receiver = test@localhost
20mail.sender = noreply@ids-mannheim.de
margaretha7d0165c2018-02-26 15:31:37 +010021mail.address.retrieval = test
margarethaa86b1412018-02-21 20:40:35 +010022
23## mail.templates
24template.group.invitation = notification.vm
25
margaretha56e8e552017-12-05 16:31:21 +010026## default layers
margaretha6fca7292018-03-13 13:19:00 +010027default.layer.partOfSpeech = tt
28default.layer.lemma = tt
29default.layer.orthography = opennlp
30default.layer.dependency = mate
31default.layer.constituent = corenlp
margarethafc9e4072017-08-29 18:34:01 +020032
margaretha2c019fa2018-02-01 19:50:51 +010033## delete configuration (default hard)
34# delete.auto.group = hard
35delete.group = soft
36delete.group.member = soft
37
margaretha56e8e552017-12-05 16:31:21 +010038## availability regex
margarethadfecb4b2017-12-12 19:32:30 +010039## only support |
margarethac38c8562017-11-21 19:02:08 +010040availability.regex.free = CC-BY.*
margarethaad618d22017-12-11 19:58:49 +010041availability.regex.public = ACA.* | QAO-NC
margarethac38c8562017-11-21 19:02:08 +010042availability.regex.all = QAO.*
margarethafc9e4072017-08-29 18:34:01 +020043
margarethafc9e4072017-08-29 18:34:01 +020044## options referring to the security module!
45
margaretha9c78e1a2018-06-27 14:12:35 +020046## OAuth
margaretha6374f722018-04-17 18:45:57 +020047### (see de.ids_mannheim.korap.constant.AuthenticationMethod for possible
48### oauth.password.authentication values)
margaretha9c78e1a2018-06-27 14:12:35 +020049oauth2.password.authentication = TEST
50oauth2.native.client.host = korap.ids-mannheim.de
margarethabe4c5c92018-05-03 18:55:49 +020051oauth2.max.attempts = 2
margaretha064eb6f2018-07-10 18:33:01 +020052# expiry in seconds (S), minutes (M), hours (H), days (D)
53oauth2.access.token.expiry = 3S
54oauth2.refresh.token.expiry = 90D
55oauth2.authorization.code.expiry = 10M
margarethabe4c5c92018-05-03 18:55:49 +020056# -- scopes separated by space
margaretha20f31232018-07-09 17:49:39 +020057oauth2.default.scopes = openid search match_info
margaretha9c78e1a2018-06-27 14:12:35 +020058oauth2.client.credentials.scopes = client_info
59
60## OpenId
61### multiple values are separated by space
62openid.grant.types = authorization_code
63openid.response.types = code
64openid.response.modes = query
65openid.client.auth.methods = client_secret_basic client_secret_post
66openid.token.signing.algorithms = RS256
67openid.subject.types = public
68openid.display.types = page
margarethaa2ce63d2018-06-28 10:11:43 +020069openid.supported.scopes = openid email auth_time
margaretha9c78e1a2018-06-27 14:12:35 +020070openid.support.claim.param = false
71openid.claim.types = normal
72openid.supported.claims = iss sub aud exp iat
73openid.ui.locales = en
74#openid.privacy.policy =
75#openid.term.of.service =
76openid.service.doc = https://github.com/KorAP/Kustvakt/wiki
margaretha6374f722018-04-17 18:45:57 +020077
margaretha19295962018-06-26 16:00:47 +020078## JWT
margaretha9c78e1a2018-06-27 14:12:35 +020079security.jwt.issuer=https://korap.ids-mannheim.de
margaretha6374f722018-04-17 18:45:57 +020080
margaretha19295962018-06-26 16:00:47 +020081## JWK
margaretha07a356a2018-07-11 19:12:21 +020082## must be set for openid
margaretha19295962018-06-26 16:00:47 +020083rsa.private = kustvakt_rsa.key
84rsa.public = kustvakt_rsa_public.key
85rsa.key.id = 74caa3a9-217c-49e6-94e9-2368fdd02c35
86
87## token expiration time
margarethafc9e4072017-08-29 18:34:01 +020088security.longTokenTTL = 1D
margaretha49cb6882018-07-04 04:19:54 +020089security.tokenTTL = 2S
90security.shortTokenTTL = 1S
margarethafc9e4072017-08-29 18:34:01 +020091
margaretha33fa3d92018-07-26 13:50:17 +020092## see SecureRandom Number Generation Algorithms
93## default SHA1PRNG
94security.secure.random.algorithm=SHA1PRNG
95
96## see MessageDigest Algorithms
97## default MD5
98security.md.algoritm = SHA-256
99
100### secure hash support: BCRYPT, ESAPICYPHER
101security.secure.hash.algorithm=BCRYPT
margarethaf18298b2017-09-14 22:14:32 +0200102security.passcode.salt=salt
margarethafc9e4072017-08-29 18:34:01 +0200103
104security.idleTimeoutDuration = 25M
105security.multipleLogIn = true
106security.loginAttemptNum = 3
107security.authAttemptTTL = 45M
108
109security.encryption.loadFactor = 8
110security.validation.stringLength = 150
111security.validation.emailLength = 50
margaretha33fa3d92018-07-26 13:50:17 +0200112
margarethae4034a82018-07-02 14:46:59 +0200113security.sharedSecret=this-is-shared-secret-code-for-JWT-Signing.It-must-contains-minimum-256-bits
margarethafc9e4072017-08-29 18:34:01 +0200114
115## applicable: rewrite, foundry, filter, deny
116security.rewrite.strategies=filter, foundry, rewrite